Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F144C/9030157CD2E511E99A4CE368F8AEA228/80984E7C33EE11EE8D611F504AD9E6FC.roa
File: 80984E7C33EE11EE8D611F504AD9E6FC.roa (raw, json)
Hash identifier: 20utlKVSYy8VHbx7eHTuqPrmDbeXfRK6sJABVK7D9iA=
Subject key identifier: A6:71:F2:5A:20:38:B4:96:19:30:B6:AB:D1:39:9A:D0:8E:2D:01:C4
Certificate issuer: /CN=F36F144CAR/serialNumber=BFF10D73AA8138DCE36742A766F96523859E487C
Certificate serial: 05B7
Authority key identifier: BF:F1:0D:73:AA:81:38:DC:E3:67:42:A7:66:F9:65:23:85:9E:48:7C
Authority info access: rsync://rpki.afrinic.net/repository/arin/v_ENc6qBONzjZ0KnZvllI4WeSHw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F144C/9030157CD2E511E99A4CE368F8AEA228/80984E7C33EE11EE8D611F504AD9E6FC.roa
Signing time: Sun 06 Aug 2023 00:16:35 +0000
ROA not before: Sun 06 Aug 2023 00:00:31 +0000
ROA not after: Tue 06 Aug 2030 00:00:31 +0000
asID: 328209
IP address blocks: 160.119.97.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F144C/9030157CD2E511E99A4CE368F8AEA228/v_ENc6qBONzjZ0KnZvllI4WeSHw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F144C/9030157CD2E511E99A4CE368F8AEA228/v_ENc6qBONzjZ0KnZvllI4WeSHw.mft
rsync://rpki.afrinic.net/repository/arin/v_ENc6qBONzjZ0KnZvllI4WeSHw.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 12 May 2024 00:16:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1463 (0x5b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F144CAR/serialNumber=BFF10D73AA8138DCE36742A766F96523859E487C
Validity
Not Before: Aug 6 00:00:31 2023 GMT
Not After : Aug 6 00:00:31 2030 GMT
Subject: CN=64cee663-db18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:31:e8:f7:99:8b:85:57:12:f9:5c:20:0e:22:
13:82:49:9b:ff:2f:8f:e9:6c:9c:4b:2b:3b:13:bd:
89:17:9e:51:42:21:ee:0a:74:42:b3:9a:2c:f9:9f:
30:2c:62:7f:60:3f:43:e8:77:15:f3:10:ac:ed:e0:
7b:e0:f6:95:29:db:90:23:08:77:38:fe:55:90:94:
ec:14:f1:65:d7:f5:4e:cc:67:4b:2b:48:62:40:42:
e6:02:af:90:96:51:c7:1f:bd:91:28:2b:03:65:88:
a0:e2:e0:39:47:2a:7f:9d:39:22:6f:a0:26:52:be:
85:62:5b:f1:63:ae:ca:92:40:4d:14:c2:33:8a:96:
03:6d:42:c5:68:9f:76:ad:5a:9a:11:57:3b:cd:ad:
4d:ee:ae:10:96:2b:63:5b:77:98:5c:38:24:63:b2:
b8:fd:f4:f0:94:cd:1c:e1:6b:bc:2b:67:f0:fb:7a:
0e:ec:50:32:e5:6f:62:78:ae:81:13:6b:14:77:5f:
88:0d:76:e6:25:b6:31:c7:2b:a4:1e:b0:de:71:c6:
6a:f7:7c:3a:95:9b:1c:81:b3:f3:ff:1c:ae:9e:9b:
ab:8f:3f:4e:21:4a:73:cf:f1:96:82:55:44:55:6b:
66:6b:55:d8:4c:eb:1a:2e:c9:da:f5:9c:48:12:2e:
c2:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:71:F2:5A:20:38:B4:96:19:30:B6:AB:D1:39:9A:D0:8E:2D:01:C4
X509v3 Authority Key Identifier:
keyid:BF:F1:0D:73:AA:81:38:DC:E3:67:42:A7:66:F9:65:23:85:9E:48:7C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F144C/9030157CD2E511E99A4CE368F8AEA228/v_ENc6qBONzjZ0KnZvllI4WeSHw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/v_ENc6qBONzjZ0KnZvllI4WeSHw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F144C/9030157CD2E511E99A4CE368F8AEA228/80984E7C33EE11EE8D611F504AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.119.97.0/24
Signature Algorithm: sha256WithRSAEncryption
67:47:5a:8a:60:56:a6:86:95:5e:79:0d:ea:0d:8d:79:05:64:
6a:5c:d4:61:e5:1a:d5:cd:ce:cc:24:f7:f7:7a:45:8a:7f:8e:
8e:eb:1c:c1:11:fc:cb:a4:7e:4c:4d:59:75:21:e5:c5:f3:b2:
71:34:c1:d0:21:8a:52:89:3b:94:53:2e:1c:01:21:20:f7:47:
fe:49:29:36:85:3b:b9:21:9a:32:84:08:8f:90:f3:05:e3:71:
6b:81:8b:d3:2f:86:1e:18:05:8c:90:6e:1f:7e:79:2f:4c:af:
ae:3e:c8:ca:0a:24:95:91:38:93:37:29:9f:9c:ad:47:f5:6e:
61:80:5a:ef:37:4b:92:a9:dd:13:ee:11:56:94:8e:b3:4e:ee:
a2:6d:08:f6:2b:86:f4:b5:dc:86:3b:b0:01:f7:4a:f5:6e:58:
9f:eb:2b:ea:89:e4:4b:aa:2d:c1:2f:2b:42:d6:8e:31:c5:8b:
cf:e7:e7:5b:c4:18:35:be:cc:ec:0f:a7:aa:76:83:7e:db:44:
b5:ef:a9:a2:6f:26:91:6c:42:f5:ef:90:7e:6f:f8:5d:bf:cc:
01:0a:ab:ef:b7:87:62:1e:00:07:00:49:a8:8c:14:f3:0d:3a:
07:6e:57:9c:88:49:46:69:41:0d:d6:59:10:6b:f9:24:ce:32:
44:0f:b7:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 10 02:54:00 2024 by rpki-client on console-ams.rpki-client.org