Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3695A2A/8EF5357CC42E11EE997AFD4F775412E6/6FFF2C08413411EFA7FB5A60762E951A.roa
File: 6FFF2C08413411EFA7FB5A60762E951A.roa (raw, json)
Hash identifier: iN5LnQR83/zdvQSHnZNsxLnJVE/qt/FcoEST3TDCqcY=
Subject key identifier: 5D:93:55:D1:DA:8F:6E:75:29:A3:D7:E2:5B:FA:7C:B2:10:46:09:68
Certificate issuer: /CN=F3695A2AAR/serialNumber=C676FFCB432C5B852415FC63B894C527052939A4
Certificate serial: A7
Authority key identifier: C6:76:FF:CB:43:2C:5B:85:24:15:FC:63:B8:94:C5:27:05:29:39:A4
Authority info access: rsync://rpki.afrinic.net/repository/arin/xnb_y0MsW4UkFfxjuJTFJwUpOaQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3695A2A/8EF5357CC42E11EE997AFD4F775412E6/6FFF2C08413411EFA7FB5A60762E951A.roa
Signing time: Sat 13 Jul 2024 16:24:55 +0000
ROA not before: Sat 13 Jul 2024 16:24:51 +0000
ROA not after: Sun 13 Sep 2026 16:24:51 +0000
asID: 328733
IP address blocks: 160.19.96.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3695A2A/8EF5357CC42E11EE997AFD4F775412E6/xnb_y0MsW4UkFfxjuJTFJwUpOaQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F3695A2A/8EF5357CC42E11EE997AFD4F775412E6/xnb_y0MsW4UkFfxjuJTFJwUpOaQ.mft
rsync://rpki.afrinic.net/repository/arin/xnb_y0MsW4UkFfxjuJTFJwUpOaQ.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167 (0xa7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3695A2AAR/serialNumber=C676FFCB432C5B852415FC63B894C527052939A4
Validity
Not Before: Jul 13 16:24:51 2024 GMT
Not After : Sep 13 16:24:51 2026 GMT
Subject: CN=6692aa56-d81f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:25:b3:24:a9:67:28:d6:77:0c:46:b7:da:40:
e7:5b:2d:bf:dd:e2:b3:ec:1e:8d:8a:b1:e0:be:55:
2f:d9:65:ef:99:86:7a:73:cb:46:b6:7f:a8:f5:e1:
20:93:3e:59:cd:98:fd:3b:aa:14:bc:ce:aa:b9:7a:
ca:39:e2:a7:f1:59:ad:6e:ab:af:f2:fc:9f:7e:12:
7f:b1:95:42:b8:26:47:32:48:83:40:e5:c7:8a:dd:
28:04:cd:de:3e:7a:e2:32:61:77:5a:cd:b9:41:b4:
90:33:b6:e7:b9:c8:5c:47:6f:11:31:c4:15:b6:42:
92:66:66:6a:4b:0b:dc:db:6a:ff:a0:27:71:62:b1:
89:c5:68:88:34:52:cd:fa:4f:12:6a:95:8c:27:b8:
74:15:18:40:15:c7:42:bf:e3:01:3d:fa:2b:d4:c7:
f3:28:96:52:9d:bf:40:9b:b5:89:65:be:8c:84:19:
d9:72:9a:d3:e4:52:9f:25:c7:ae:e1:af:a0:0b:06:
14:ea:13:f0:67:d4:18:f0:ec:13:5d:57:1a:ca:12:
69:55:b9:15:e3:79:5f:92:cb:7f:ef:e3:ee:7f:21:
31:8e:c5:57:f3:a0:6e:e6:d5:53:ad:9e:a9:4b:7d:
67:a6:f0:d7:67:1b:59:ed:1e:54:63:fd:fd:a2:7b:
dc:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:93:55:D1:DA:8F:6E:75:29:A3:D7:E2:5B:FA:7C:B2:10:46:09:68
X509v3 Authority Key Identifier:
keyid:C6:76:FF:CB:43:2C:5B:85:24:15:FC:63:B8:94:C5:27:05:29:39:A4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3695A2A/8EF5357CC42E11EE997AFD4F775412E6/xnb_y0MsW4UkFfxjuJTFJwUpOaQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/xnb_y0MsW4UkFfxjuJTFJwUpOaQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3695A2A/8EF5357CC42E11EE997AFD4F775412E6/6FFF2C08413411EFA7FB5A60762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.19.96.0/24
Signature Algorithm: sha256WithRSAEncryption
26:84:1c:50:53:18:ab:ac:87:49:80:02:c1:30:de:5d:1d:f9:
98:1d:a6:3b:56:a4:b2:7f:af:3d:ef:34:02:6e:2d:fc:c7:9d:
be:16:0b:1c:37:44:96:a1:25:45:ba:1f:74:5e:14:53:8e:40:
71:fe:4d:ae:d8:aa:eb:f8:17:e3:bf:d0:e1:44:01:c6:6f:c4:
96:11:7a:dc:2b:69:4f:96:aa:af:92:09:fc:35:6d:43:e4:12:
c8:e7:de:f4:a4:49:85:ae:4b:6c:9c:fa:e2:23:d7:bc:9d:7d:
a6:aa:3d:a2:ee:4f:48:57:37:38:ce:6c:98:34:31:f0:b6:96:
7c:02:81:da:5b:d6:b3:f2:53:06:ff:0f:32:e5:2a:63:8a:35:
4e:fa:43:8d:f8:d4:19:67:86:b4:a1:a7:bd:96:bf:32:da:ae:
02:f3:16:b4:95:be:50:9a:90:95:ba:a6:47:ae:3b:ac:ba:eb:
01:c7:4e:27:00:a6:32:84:1f:cc:ec:a1:a6:93:de:c0:4f:4b:
57:95:19:ca:7e:67:c7:cc:4a:ed:71:03:72:3c:7d:b8:39:8e:
26:30:25:27:d0:84:bd:f2:37:56:14:ee:de:51:ee:f7:fc:4c:
d3:12:e8:1c:59:bd:20:db:9c:0f:a8:00:fd:a9:5f:33:73:c1:
60:f7:12:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:57 2024 by rpki-client on console-fra.rpki-client.org