Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C1E88/346B2F2278E711EE9F4E993C4AD9E6FC/52B737FE365711EF93C48163762E951A.roa
File: 52B737FE365711EF93C48163762E951A.roa (raw, json)
Hash identifier: uhifOEwJuf00GYSopn1tLQdSysjL2MxwNmP+zqGUAaw=
Subject key identifier: 5A:17:72:57:EE:51:94:45:23:4F:DF:95:4D:F3:A3:B2:EA:BB:94:52
Certificate issuer: /CN=F36C1E88AR/serialNumber=5B6F8B0D862E612104D1FCBA691F0368DD34F0A1
Certificate serial: 0102
Authority key identifier: 5B:6F:8B:0D:86:2E:61:21:04:D1:FC:BA:69:1F:03:68:DD:34:F0:A1
Authority info access: rsync://rpki.afrinic.net/repository/arin/W2-LDYYuYSEE0fy6aR8DaN008KE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C1E88/346B2F2278E711EE9F4E993C4AD9E6FC/52B737FE365711EF93C48163762E951A.roa
Signing time: Sat 29 Jun 2024 20:36:55 +0000
ROA not before: Sat 29 Jun 2024 20:36:51 +0000
ROA not after: Sat 29 Jun 2030 20:36:51 +0000
asID: 328162
IP address blocks: 160.119.216.0/22 maxlen: 24
160.119.217.0/24 maxlen: 24
160.119.218.0/24 maxlen: 24
160.119.219.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C1E88/346B2F2278E711EE9F4E993C4AD9E6FC/W2-LDYYuYSEE0fy6aR8DaN008KE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C1E88/346B2F2278E711EE9F4E993C4AD9E6FC/W2-LDYYuYSEE0fy6aR8DaN008KE.mft
rsync://rpki.afrinic.net/repository/arin/W2-LDYYuYSEE0fy6aR8DaN008KE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 258 (0x102)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C1E88AR/serialNumber=5B6F8B0D862E612104D1FCBA691F0368DD34F0A1
Validity
Not Before: Jun 29 20:36:51 2024 GMT
Not After : Jun 29 20:36:51 2030 GMT
Subject: CN=66807067-6335
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:87:b5:05:d3:cb:58:86:fb:93:5f:52:5f:a3:
b4:1d:41:57:5c:a4:5c:80:01:02:db:e3:d8:22:1b:
2d:99:fd:5c:12:9c:b7:2e:63:79:b5:78:48:f6:76:
a6:8d:b1:39:33:66:dd:65:08:b4:09:4d:ce:7f:2e:
24:20:52:a7:62:0a:a8:94:a8:1c:1e:65:b5:d0:58:
27:ae:fd:ca:44:64:16:92:95:95:1a:73:f4:d1:f3:
b5:5b:0b:7e:92:0c:92:e0:b9:09:0e:d8:74:92:2f:
a9:39:a6:4d:66:d8:60:d0:25:68:e0:94:7a:cc:c8:
23:92:58:f2:f9:87:ab:6a:d4:7d:81:bc:27:51:2b:
5c:82:c2:40:dc:36:04:6c:54:0e:c3:93:2d:53:47:
97:8a:da:1d:69:8a:d4:ee:38:ca:ca:42:83:4a:59:
79:7c:29:f1:9b:54:f5:e5:0c:3b:92:80:7e:50:7e:
0c:1b:b2:2d:1d:8a:12:8d:3c:62:a7:44:e1:84:1e:
e9:e9:99:8f:b7:10:7a:d6:e5:a4:54:00:00:e6:e2:
97:70:c9:4c:3e:58:61:05:90:e6:e5:8a:92:e3:e6:
2b:ca:98:d7:dc:15:7d:1b:45:5f:f3:99:82:68:ce:
55:a7:ac:54:ea:bd:cc:69:36:7e:f4:72:d8:65:63:
50:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:17:72:57:EE:51:94:45:23:4F:DF:95:4D:F3:A3:B2:EA:BB:94:52
X509v3 Authority Key Identifier:
keyid:5B:6F:8B:0D:86:2E:61:21:04:D1:FC:BA:69:1F:03:68:DD:34:F0:A1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C1E88/346B2F2278E711EE9F4E993C4AD9E6FC/W2-LDYYuYSEE0fy6aR8DaN008KE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/W2-LDYYuYSEE0fy6aR8DaN008KE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C1E88/346B2F2278E711EE9F4E993C4AD9E6FC/52B737FE365711EF93C48163762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.119.216.0/22
Signature Algorithm: sha256WithRSAEncryption
b9:0e:d4:e9:a3:7c:f6:02:b0:52:4c:74:bc:c1:bc:e0:fc:e9:
72:29:a6:fe:23:54:9c:1b:36:d5:ae:6c:9c:dc:e1:5f:b6:ab:
58:9d:de:fa:6f:08:45:d9:49:20:07:c4:67:3d:1d:9f:f7:fc:
50:78:4b:7b:2e:90:dd:49:6d:a8:d8:c0:79:24:a8:fc:57:b6:
51:e8:ec:90:5f:3c:cc:1b:07:80:fc:75:ad:46:a5:09:c9:4e:
d3:08:5e:cc:f6:b2:0e:40:ef:91:cd:7f:87:7a:44:20:b0:62:
f4:4c:46:af:b9:11:1d:b5:0e:43:bc:00:76:8e:12:f6:02:64:
e4:77:02:a4:75:e5:ce:0d:62:6e:87:77:3e:f7:0b:d9:f6:3b:
39:8e:05:02:32:1c:b8:ee:e8:76:fd:2d:a8:e1:c0:71:de:19:
fe:fe:9a:f6:8c:ab:5a:b8:9e:ad:e6:e3:93:d6:c0:21:5a:34:
df:73:27:ba:d6:67:ec:8d:c4:a4:8c:7b:f3:90:65:99:32:cb:
84:3f:d1:47:1c:fe:b9:6b:21:01:53:8b:27:4f:c5:48:a1:c7:
ed:08:a3:51:08:79:11:00:f0:4d:c2:87:c2:54:12:17:27:0d:
9c:b3:61:40:6e:bb:9d:92:f5:ac:69:a6:09:c0:97:dd:a3:a9:
c6:53:b3:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:23 2024 by rpki-client on console-ams.rpki-client.org