Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C8371/FD8CE0E87AFA11E9B7D8D33CF8AEA228/BA290AC4846E11EF92EC03A8762E951A.roa
File: BA290AC4846E11EF92EC03A8762E951A.roa (raw, json)
Hash identifier: wcG8k07mQfDJcFKYWAJy1egkiEiey2YspQqvCKzNu2U=
Subject key identifier: 21:E1:C2:B2:1E:25:33:E9:C4:8A:2D:44:8A:61:32:4B:EA:08:30:A4
Certificate issuer: /CN=F36C8371AR/serialNumber=158B6A2C254C57F47CE2AF511368D9B63CF8E0D2
Certificate serial: 07F4
Authority key identifier: 15:8B:6A:2C:25:4C:57:F4:7C:E2:AF:51:13:68:D9:B6:3C:F8:E0:D2
Authority info access: rsync://rpki.afrinic.net/repository/arin/FYtqLCVMV_R84q9RE2jZtjz44NI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C8371/FD8CE0E87AFA11E9B7D8D33CF8AEA228/BA290AC4846E11EF92EC03A8762E951A.roa
Signing time: Mon 07 Oct 2024 05:40:58 +0000
ROA not before: Mon 07 Oct 2024 05:40:54 +0000
ROA not after: Sun 07 Oct 2029 05:40:54 +0000
asID: 327804
IP address blocks: 160.119.32.0/20 maxlen: 20
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C8371/FD8CE0E87AFA11E9B7D8D33CF8AEA228/FYtqLCVMV_R84q9RE2jZtjz44NI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C8371/FD8CE0E87AFA11E9B7D8D33CF8AEA228/FYtqLCVMV_R84q9RE2jZtjz44NI.mft
rsync://rpki.afrinic.net/repository/arin/FYtqLCVMV_R84q9RE2jZtjz44NI.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2036 (0x7f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C8371AR/serialNumber=158B6A2C254C57F47CE2AF511368D9B63CF8E0D2
Validity
Not Before: Oct 7 05:40:54 2024 GMT
Not After : Oct 7 05:40:54 2029 GMT
Subject: CN=6703746a-aeb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ce:49:ee:a4:b4:55:8b:dd:33:5c:bc:17:83:
da:e6:1b:e2:bc:13:26:75:5a:74:80:37:7d:d1:c6:
fd:db:27:0e:b2:84:19:88:60:91:a3:81:07:59:aa:
59:53:6f:9f:cb:a8:19:cf:5b:03:c4:9e:21:b4:8f:
0a:94:10:50:46:d0:82:68:09:0e:a9:19:b4:b7:8b:
77:50:ba:8b:8c:34:d9:b4:f0:6a:97:26:b5:5f:56:
30:94:b3:56:bc:59:7a:b2:06:ce:cd:1a:50:61:ff:
b6:85:f5:95:98:83:5b:34:fa:58:1a:51:38:4c:b5:
e0:07:b5:58:60:81:ad:74:ea:84:e0:e6:22:11:ab:
93:1d:72:89:93:2f:71:ff:8f:f0:5b:62:b6:87:64:
2a:1d:59:31:b2:07:1e:25:48:fa:a4:c3:ec:7b:2e:
e3:9c:e0:69:17:1b:e1:b7:2b:9d:02:77:35:d1:a6:
97:fa:52:14:8d:f9:32:3d:56:30:bd:04:80:90:fd:
31:75:99:6f:d2:3d:64:d8:30:e4:98:b2:8a:56:19:
bf:5f:1d:82:69:75:ac:b9:db:a5:be:c9:61:13:04:
d7:7a:ff:61:0d:36:00:53:6b:d9:58:4e:b7:5a:75:
85:87:7a:43:17:3e:3c:f4:93:96:bd:e5:a2:92:c4:
b8:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:E1:C2:B2:1E:25:33:E9:C4:8A:2D:44:8A:61:32:4B:EA:08:30:A4
X509v3 Authority Key Identifier:
keyid:15:8B:6A:2C:25:4C:57:F4:7C:E2:AF:51:13:68:D9:B6:3C:F8:E0:D2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C8371/FD8CE0E87AFA11E9B7D8D33CF8AEA228/FYtqLCVMV_R84q9RE2jZtjz44NI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/FYtqLCVMV_R84q9RE2jZtjz44NI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C8371/FD8CE0E87AFA11E9B7D8D33CF8AEA228/BA290AC4846E11EF92EC03A8762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.119.32.0/20
Signature Algorithm: sha256WithRSAEncryption
3d:2e:7b:3e:c0:ec:ff:6f:f5:74:a9:72:16:70:96:92:04:1b:
01:69:b6:6f:95:27:59:fa:2a:3e:10:cb:6a:fe:3b:0b:b1:b2:
71:d2:4d:cc:7c:28:69:23:e6:84:36:e6:de:00:b3:55:99:39:
06:aa:de:2c:4f:08:eb:10:98:4f:50:d5:c6:7f:5c:10:39:dd:
07:b0:bd:bf:dc:44:66:b5:39:c5:14:54:f0:a6:2a:61:0d:a6:
18:b2:a8:10:0c:f1:d3:bd:c3:f5:6d:01:e8:68:08:92:9b:b4:
fa:8c:c8:a6:2e:bd:55:3a:c8:27:ea:25:ca:bd:05:b9:ed:24:
c8:d0:51:c3:88:c4:ef:89:c5:9e:0b:5b:ea:92:4c:87:c7:0a:
91:22:ed:6f:c4:8d:94:4c:33:6e:cf:8f:cf:4f:d6:d0:35:13:
8f:cc:d8:9a:6c:49:24:53:e4:47:59:72:64:7a:07:06:07:7f:
09:d2:56:4f:76:57:a0:82:60:0e:73:e3:7e:33:11:73:61:85:
79:91:2f:47:ba:b7:5d:64:23:71:7a:91:7d:b9:41:a3:0c:5c:
be:be:2d:5f:8a:c3:41:0f:9d:42:a3:41:1c:65:2f:80:f2:3d:
30:be:8c:45:2c:4f:ef:25:5c:98:5b:95:dd:e2:c1:dc:cd:70:
84:11:b0:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:17 2024 by rpki-client on console-fra.rpki-client.org