Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C8371/FD8CE0E87AFA11E9B7D8D33CF8AEA228/925DC92049A411EB86AF3350F8AEA228.roa
File: 925DC92049A411EB86AF3350F8AEA228.roa (raw, json)
Hash identifier: beAKLWowWslyxjzkaqtCk4jGdD3m2ieuaQy34SQkbDY=
Subject key identifier: DF:83:DE:6F:F9:18:A8:28:A2:06:84:7F:86:2B:F0:77:E5:D5:CD:25
Certificate issuer: /CN=F36C8371AR/serialNumber=158B6A2C254C57F47CE2AF511368D9B63CF8E0D2
Certificate serial: 0264
Authority key identifier: 15:8B:6A:2C:25:4C:57:F4:7C:E2:AF:51:13:68:D9:B6:3C:F8:E0:D2
Authority info access: rsync://rpki.afrinic.net/repository/arin/FYtqLCVMV_R84q9RE2jZtjz44NI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C8371/FD8CE0E87AFA11E9B7D8D33CF8AEA228/925DC92049A411EB86AF3350F8AEA228.roa
Signing time: Tue 29 Dec 2020 07:07:55 +0000
ROA not before: Tue 29 Dec 2020 07:07:49 +0000
ROA not after: Mon 29 Dec 2025 07:07:49 +0000
asID: 327804
IP address blocks: 160.119.32.0/21 maxlen: 21
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C8371/FD8CE0E87AFA11E9B7D8D33CF8AEA228/FYtqLCVMV_R84q9RE2jZtjz44NI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C8371/FD8CE0E87AFA11E9B7D8D33CF8AEA228/FYtqLCVMV_R84q9RE2jZtjz44NI.mft
rsync://rpki.afrinic.net/repository/arin/FYtqLCVMV_R84q9RE2jZtjz44NI.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 612 (0x264)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C8371AR/serialNumber=158B6A2C254C57F47CE2AF511368D9B63CF8E0D2
Validity
Not Before: Dec 29 07:07:49 2020 GMT
Not After : Dec 29 07:07:49 2025 GMT
Subject: CN=5fead5cb-6bad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:b1:1b:8c:2d:1e:8a:e7:5e:70:90:7a:78:bf:
30:09:03:ea:b5:a9:ec:1e:7f:71:f8:e8:07:1b:41:
fa:34:a6:1c:40:93:31:5b:13:b3:5d:cd:0d:03:d5:
c3:3a:4f:83:27:13:56:27:9d:5e:d3:ff:ca:fd:75:
0a:ad:8f:62:94:20:39:e5:54:87:35:3f:15:2e:f0:
7b:97:0a:e2:ab:db:a3:36:ce:14:cb:c0:8f:c4:99:
ff:bb:a9:ac:c7:75:01:ed:26:0b:3b:02:d5:16:65:
56:7b:40:c6:13:8f:9e:2e:fe:5c:6d:e0:ae:ef:47:
c0:1a:78:9c:cc:18:d7:9f:5c:e5:97:26:ba:c1:79:
b9:90:3e:72:0f:ca:84:f2:9c:42:98:38:13:e8:f2:
db:3e:ea:96:8f:ef:85:bf:22:f7:e6:a6:38:62:c1:
fb:b9:ef:97:42:e9:86:08:ba:39:28:e5:b0:79:d2:
bd:c9:ff:0e:0a:73:9f:22:06:bb:63:1f:5a:e3:d1:
b1:3c:92:43:f9:0d:21:b6:e8:03:63:a4:d7:3c:99:
41:4c:27:68:49:83:2c:8e:b8:2b:fc:6d:01:34:dd:
b3:e8:be:ab:14:bc:4c:aa:e8:f9:6a:d2:4c:a3:bc:
5a:7d:fb:3e:d6:be:9d:e8:77:ec:1f:b9:50:e4:70:
37:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:83:DE:6F:F9:18:A8:28:A2:06:84:7F:86:2B:F0:77:E5:D5:CD:25
X509v3 Authority Key Identifier:
keyid:15:8B:6A:2C:25:4C:57:F4:7C:E2:AF:51:13:68:D9:B6:3C:F8:E0:D2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C8371/FD8CE0E87AFA11E9B7D8D33CF8AEA228/FYtqLCVMV_R84q9RE2jZtjz44NI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/FYtqLCVMV_R84q9RE2jZtjz44NI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C8371/FD8CE0E87AFA11E9B7D8D33CF8AEA228/925DC92049A411EB86AF3350F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.119.32.0/21
Signature Algorithm: sha256WithRSAEncryption
7c:d4:33:18:bd:f3:4c:6a:74:33:b9:46:22:c0:0d:09:6c:6c:
fe:c8:a8:41:80:05:97:cf:a7:16:3c:c6:59:7e:05:fc:04:07:
0e:ca:32:9b:c6:c9:0b:d6:db:69:c2:ee:62:6c:fc:81:a8:ff:
72:68:9b:77:47:18:36:76:d6:73:5c:87:55:98:48:f3:c1:64:
17:56:ab:0b:bc:b3:fb:b1:58:11:6e:1c:87:86:ec:47:4e:e7:
25:d7:18:2a:7b:f2:ed:e7:bd:4f:7d:19:67:cd:cc:da:32:36:
b3:e2:52:71:99:62:d7:d0:e7:1b:6e:f8:7c:70:3b:2a:33:f7:
55:1c:84:44:32:e3:9d:5c:33:cf:49:31:ec:1f:75:68:41:af:
ee:0a:ac:4b:14:f0:5f:08:c1:aa:1f:77:8b:63:19:24:51:05:
a1:63:5f:e9:6e:d1:af:ca:07:44:ad:af:e3:7b:a9:a1:1e:7b:
6e:2d:55:ff:49:fd:18:00:5a:64:01:6f:8c:f1:54:0f:04:51:
57:1f:f5:69:73:63:90:c0:3d:f3:dc:e0:d7:26:98:80:3c:59:
02:e5:3e:af:d6:77:84:09:a0:33:92:59:e8:02:86:2c:6e:19:
0c:04:47:d7:0e:36:3f:06:4c:c4:67:81:49:75:d0:68:46:18:
5f:41:50:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:17 2024 by rpki-client on console-fra.rpki-client.org