Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C8371/FD8CE0E87AFA11E9B7D8D33CF8AEA228/1C921A4C49A511EB867ECF50F8AEA228.roa
File: 1C921A4C49A511EB867ECF50F8AEA228.roa (raw, json)
Hash identifier: MBdV9Z+biO9eQdjjEA0zbGM+buIkC4MulNUIL+e4Cto=
Subject key identifier: B4:12:B2:2C:67:21:A3:1B:17:B6:FA:51:B1:43:91:25:42:EF:4A:04
Certificate issuer: /CN=F36C8371AR/serialNumber=158B6A2C254C57F47CE2AF511368D9B63CF8E0D2
Certificate serial: 026A
Authority key identifier: 15:8B:6A:2C:25:4C:57:F4:7C:E2:AF:51:13:68:D9:B6:3C:F8:E0:D2
Authority info access: rsync://rpki.afrinic.net/repository/arin/FYtqLCVMV_R84q9RE2jZtjz44NI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C8371/FD8CE0E87AFA11E9B7D8D33CF8AEA228/1C921A4C49A511EB867ECF50F8AEA228.roa
Signing time: Tue 29 Dec 2020 07:11:47 +0000
ROA not before: Tue 29 Dec 2020 07:11:42 +0000
ROA not after: Mon 29 Dec 2025 07:11:42 +0000
asID: 327804
IP address blocks: 160.119.56.0/21 maxlen: 21
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C8371/FD8CE0E87AFA11E9B7D8D33CF8AEA228/FYtqLCVMV_R84q9RE2jZtjz44NI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C8371/FD8CE0E87AFA11E9B7D8D33CF8AEA228/FYtqLCVMV_R84q9RE2jZtjz44NI.mft
rsync://rpki.afrinic.net/repository/arin/FYtqLCVMV_R84q9RE2jZtjz44NI.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 618 (0x26a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C8371AR/serialNumber=158B6A2C254C57F47CE2AF511368D9B63CF8E0D2
Validity
Not Before: Dec 29 07:11:42 2020 GMT
Not After : Dec 29 07:11:42 2025 GMT
Subject: CN=5fead6b2-282b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c2:ce:90:8f:c7:b4:e3:ae:a1:c1:fc:15:44:
fc:89:77:1a:7f:7c:89:f2:54:b3:66:85:42:8c:73:
9f:e1:d7:66:21:18:41:cd:07:14:c1:22:5f:ea:4e:
5c:12:e4:7c:78:5b:c7:23:7d:8c:b3:a4:26:3f:fe:
9f:7a:82:7a:63:67:13:33:e2:49:85:b2:5b:b3:0c:
68:bb:f5:64:7a:bc:83:98:08:14:88:e2:1e:11:5d:
ce:4c:ff:a9:17:7a:f1:f6:83:03:e8:47:b6:43:b7:
1c:dc:05:9f:9d:97:40:80:29:02:a5:08:21:bb:a9:
b0:d8:12:63:50:4c:c5:de:48:e1:bb:0e:a3:25:b6:
1c:54:38:c7:0e:7c:ff:46:ee:2e:8d:20:32:34:e4:
4a:b0:30:05:f9:42:4c:b2:43:9b:2c:61:dc:b7:42:
f3:dd:3a:37:cc:84:14:5f:df:36:0a:5d:f1:2c:19:
ab:57:39:92:f4:ee:a0:d4:35:3d:65:91:20:e2:f3:
1d:90:56:2e:6e:66:01:a3:00:58:25:bd:e3:6f:2c:
63:18:b7:82:50:3f:01:e5:1d:ce:fa:2a:40:bb:a4:
41:86:52:99:f7:27:f5:6e:f6:aa:7f:ce:62:93:7e:
a5:12:fe:10:60:ed:12:e0:1d:4c:fe:38:9e:69:b4:
09:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:12:B2:2C:67:21:A3:1B:17:B6:FA:51:B1:43:91:25:42:EF:4A:04
X509v3 Authority Key Identifier:
keyid:15:8B:6A:2C:25:4C:57:F4:7C:E2:AF:51:13:68:D9:B6:3C:F8:E0:D2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C8371/FD8CE0E87AFA11E9B7D8D33CF8AEA228/FYtqLCVMV_R84q9RE2jZtjz44NI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/FYtqLCVMV_R84q9RE2jZtjz44NI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C8371/FD8CE0E87AFA11E9B7D8D33CF8AEA228/1C921A4C49A511EB867ECF50F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.119.56.0/21
Signature Algorithm: sha256WithRSAEncryption
36:b1:14:ee:6a:47:8a:bc:82:b3:4a:9a:0e:ac:19:e4:9a:b1:
0b:12:8f:08:1c:e7:46:15:6d:c6:12:7c:f2:d4:ce:60:98:df:
92:b5:f6:6c:6d:91:8a:af:71:de:a0:22:34:f1:9d:60:96:a9:
d9:82:d9:8d:a5:a6:6b:11:44:81:30:94:a9:6c:19:70:51:d6:
e8:03:8e:8c:dd:25:f9:e6:55:71:f9:11:e6:ee:d2:e9:43:40:
53:32:47:ba:2f:7e:6e:7d:6a:6d:b3:e5:55:e8:4b:cd:cf:4b:
79:46:57:07:82:76:86:9e:46:9e:53:2d:00:f5:76:79:11:9b:
35:22:61:a0:80:8b:59:ff:0d:bc:c4:9f:c6:a3:64:c8:0b:79:
33:b9:2d:a3:7b:fd:6b:c4:ba:5c:ea:e0:33:50:25:f9:2d:b8:
23:8b:6c:98:9a:07:a0:56:bb:9d:24:25:17:4b:fd:4f:b4:60:
b8:e7:25:49:f6:23:00:6b:10:5f:db:5b:31:ab:89:f3:e9:ac:
3f:b8:91:35:15:f0:3c:c0:85:49:c6:82:1e:ef:81:09:e9:fb:
44:b8:49:3f:1e:c1:3a:23:dd:a9:d3:0d:c7:4f:61:df:b2:4e:
8d:44:38:29:7d:b8:73:b3:34:83:cb:79:09:7b:23:b5:6d:6e:
09:f1:02:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:26 2024 by rpki-client on console-ams.rpki-client.org