Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A42DF/B36A9AF64D6311EE9B779F814AD9E6FC/3D7EECA2A8A711EFA1D51794762E951A.roa
File: 3D7EECA2A8A711EFA1D51794762E951A.roa (raw, json)
Hash identifier: W7jAbtCXoRcwI8Z2NvEM0UC/9LNhTC0NKo9Io5pOlnA=
Subject key identifier: 43:4C:C6:9A:30:5F:80:D7:98:22:33:79:80:5E:BC:FB:28:44:22:8C
Certificate issuer: /CN=F36A42DFAR/serialNumber=6189BF938C94C534D7843A7A034C5B6A8237D596
Certificate serial: 01CB
Authority key identifier: 61:89:BF:93:8C:94:C5:34:D7:84:3A:7A:03:4C:5B:6A:82:37:D5:96
Authority info access: rsync://rpki.afrinic.net/repository/arin/YYm_k4yUxTTXhDp6A0xbaoI31ZY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A42DF/B36A9AF64D6311EE9B779F814AD9E6FC/3D7EECA2A8A711EFA1D51794762E951A.roa
Signing time: Fri 22 Nov 2024 07:56:12 +0000
ROA not before: Fri 22 Nov 2024 07:56:02 +0000
ROA not after: Fri 24 Nov 2034 07:56:02 +0000
asID: 328170
IP address blocks: 160.119.100.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A42DF/B36A9AF64D6311EE9B779F814AD9E6FC/YYm_k4yUxTTXhDp6A0xbaoI31ZY.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A42DF/B36A9AF64D6311EE9B779F814AD9E6FC/YYm_k4yUxTTXhDp6A0xbaoI31ZY.mft
rsync://rpki.afrinic.net/repository/arin/YYm_k4yUxTTXhDp6A0xbaoI31ZY.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:21:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 459 (0x1cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A42DFAR/serialNumber=6189BF938C94C534D7843A7A034C5B6A8237D596
Validity
Not Before: Nov 22 07:56:02 2024 GMT
Not After : Nov 24 07:56:02 2034 GMT
Subject: CN=6740391c-fd8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e5:85:ec:6c:15:a5:69:27:53:6e:42:99:90:
cb:e3:fc:14:8b:81:ea:0a:0b:a5:f7:8e:ce:4b:36:
ec:c9:13:f2:f1:c6:13:8a:8c:ae:7d:6c:79:42:5b:
7a:84:1b:0a:df:5f:21:82:3e:76:64:e6:8f:93:9d:
bc:37:d2:a7:b6:ed:66:98:e5:80:57:56:67:db:41:
4d:cd:fa:f3:6b:98:1d:fb:1b:8e:e9:f7:91:99:b4:
f8:7e:d0:d7:e6:5b:b5:92:75:52:38:0f:73:e0:c9:
ec:6b:ed:e5:bd:18:44:53:b7:e8:ad:91:f0:2e:9b:
8a:b2:75:c4:02:df:66:7c:00:74:be:2a:31:37:80:
cc:c7:ca:55:91:85:e1:ac:84:03:29:f4:1b:7f:0e:
ff:85:9e:5e:74:e3:da:d7:d6:c1:d9:7c:4b:24:ab:
a9:f5:cc:dc:f4:7f:b3:69:67:9f:03:c0:ab:2c:5a:
f0:86:86:1f:e8:de:d6:95:69:0c:06:2d:3b:37:30:
01:75:54:62:57:9d:42:ae:76:20:9a:ca:c0:4c:d9:
07:06:8e:b7:bb:21:e1:26:4c:cb:47:0c:bb:ef:9e:
27:67:2e:6d:d8:72:eb:35:88:a1:e4:f1:4c:07:71:
6c:3b:7d:ab:b5:29:23:80:4c:7b:a2:fb:ea:4c:c6:
9c:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:4C:C6:9A:30:5F:80:D7:98:22:33:79:80:5E:BC:FB:28:44:22:8C
X509v3 Authority Key Identifier:
keyid:61:89:BF:93:8C:94:C5:34:D7:84:3A:7A:03:4C:5B:6A:82:37:D5:96
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A42DF/B36A9AF64D6311EE9B779F814AD9E6FC/YYm_k4yUxTTXhDp6A0xbaoI31ZY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/YYm_k4yUxTTXhDp6A0xbaoI31ZY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A42DF/B36A9AF64D6311EE9B779F814AD9E6FC/3D7EECA2A8A711EFA1D51794762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.119.100.0/22
Signature Algorithm: sha256WithRSAEncryption
8b:f0:c5:98:61:1d:a7:6e:79:98:59:7f:29:02:31:0b:08:0f:
8d:e3:94:fe:2c:2d:86:40:cc:14:70:c7:3b:c5:29:ec:22:2a:
97:24:9d:89:85:36:b7:e0:f8:b9:dd:a4:8d:a2:21:06:2e:91:
7b:18:23:cf:0b:99:42:55:02:f5:6d:1e:66:a4:74:af:76:cb:
56:ae:47:2a:07:5f:a9:01:dd:50:f3:77:e4:6f:43:71:ac:8b:
07:b3:2e:cf:02:c1:b3:bb:12:ee:65:46:72:8e:4d:dc:ab:cd:
bf:a6:03:59:7e:99:76:06:9e:2e:d6:98:c9:7c:9b:e9:de:f5:
1e:de:87:c0:26:80:21:c8:0c:ba:4f:71:a4:49:83:9b:7f:a1:
f5:2f:47:1b:77:b7:4f:05:63:d7:86:5e:67:c2:eb:79:9c:f2:
df:ef:34:6e:21:5b:eb:0f:b8:b3:9a:34:0b:3e:f2:0d:7d:2c:
f9:ce:c5:c5:4b:42:c3:47:af:a5:ba:b9:1f:53:c7:d4:3d:96:
b6:74:20:04:bb:55:6e:e1:d6:eb:58:fa:a9:ee:32:5e:82:42:
fd:5b:16:af:17:de:4f:b7:60:12:70:bb:9f:6d:96:f2:63:43:
50:ab:83:36:fc:69:63:7b:a3:4e:53:06:a8:ef:5d:bf:e1:f2:
aa:28:9d:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 04:54:25 2024 by rpki-client on console-fra.rpki-client.org