Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F144C/9030157CD2E511E99A4CE368F8AEA228/CB93F5E833EE11EEBDC7FD504AD9E6FC.roa
File: CB93F5E833EE11EEBDC7FD504AD9E6FC.roa (raw, json)
Hash identifier: qPl2PBrzX4lGAxLauLu6noiX+qgdnaxiDcL/YoL2Mts=
Subject key identifier: AA:6D:E8:7B:1F:80:96:6B:60:8B:BC:31:B1:64:AB:92:CB:13:41:28
Certificate issuer: /CN=F36F144CAR/serialNumber=BFF10D73AA8138DCE36742A766F96523859E487C
Certificate serial: 05BB
Authority key identifier: BF:F1:0D:73:AA:81:38:DC:E3:67:42:A7:66:F9:65:23:85:9E:48:7C
Authority info access: rsync://rpki.afrinic.net/repository/arin/v_ENc6qBONzjZ0KnZvllI4WeSHw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F144C/9030157CD2E511E99A4CE368F8AEA228/CB93F5E833EE11EEBDC7FD504AD9E6FC.roa
Signing time: Sun 06 Aug 2023 00:18:41 +0000
ROA not before: Sun 06 Aug 2023 00:00:37 +0000
ROA not after: Tue 06 Aug 2030 00:00:37 +0000
asID: 328209
IP address blocks: 160.119.99.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F144C/9030157CD2E511E99A4CE368F8AEA228/v_ENc6qBONzjZ0KnZvllI4WeSHw.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F144C/9030157CD2E511E99A4CE368F8AEA228/v_ENc6qBONzjZ0KnZvllI4WeSHw.mft
rsync://rpki.afrinic.net/repository/arin/v_ENc6qBONzjZ0KnZvllI4WeSHw.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 27 Nov 2024 00:21:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1467 (0x5bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F144CAR/serialNumber=BFF10D73AA8138DCE36742A766F96523859E487C
Validity
Not Before: Aug 6 00:00:37 2023 GMT
Not After : Aug 6 00:00:37 2030 GMT
Subject: CN=64cee6e0-b4cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:a3:d5:2d:79:f8:ef:cb:41:0c:8c:60:b0:78:
f0:88:f0:96:8a:94:59:e7:46:9f:42:41:eb:ff:c0:
2e:79:fe:8b:85:ed:9a:33:31:e4:0c:25:08:46:48:
52:0b:03:5a:15:7f:14:bd:2a:1f:fe:06:d1:fc:68:
9c:48:b2:65:bd:4c:d1:25:6d:6f:02:87:44:14:e4:
3c:a6:f8:d7:ac:65:88:5a:b6:9a:07:c7:41:31:85:
bb:75:f0:2e:25:e7:e9:74:aa:be:0d:03:3a:a0:a8:
63:62:d4:7b:5a:75:f8:85:32:7a:d9:87:20:22:e5:
21:5e:02:23:a1:50:18:c4:5a:80:6d:2b:0c:d9:39:
de:ec:bc:15:3b:6d:98:86:04:16:5b:79:64:bd:11:
75:15:25:9b:39:1c:fc:66:56:28:50:58:0c:1d:be:
86:5f:44:79:13:b0:bb:fe:fd:90:fb:47:79:89:5d:
3e:65:bf:5d:ff:79:02:25:f3:0d:f6:90:e7:83:68:
59:f8:74:40:ab:f3:6a:9c:3d:de:ae:a4:56:a0:2a:
10:4c:53:79:c7:ea:7c:2c:ff:d7:30:5f:7f:f2:55:
21:9d:b8:4f:fb:5a:80:13:bf:d1:e9:b1:66:ba:b9:
11:c3:a2:12:61:34:01:c2:78:43:c7:1d:82:11:50:
03:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:6D:E8:7B:1F:80:96:6B:60:8B:BC:31:B1:64:AB:92:CB:13:41:28
X509v3 Authority Key Identifier:
keyid:BF:F1:0D:73:AA:81:38:DC:E3:67:42:A7:66:F9:65:23:85:9E:48:7C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F144C/9030157CD2E511E99A4CE368F8AEA228/v_ENc6qBONzjZ0KnZvllI4WeSHw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/v_ENc6qBONzjZ0KnZvllI4WeSHw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F144C/9030157CD2E511E99A4CE368F8AEA228/CB93F5E833EE11EEBDC7FD504AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.119.99.0/24
Signature Algorithm: sha256WithRSAEncryption
49:07:20:25:a6:a8:9c:cf:9e:1a:4d:4d:0f:49:34:7d:16:f2:
a7:69:78:df:be:17:6c:4a:5e:13:0c:70:1a:1f:bd:22:f8:68:
b2:d7:b9:c9:fb:09:f4:c4:a5:a4:3f:18:0d:03:b8:c6:9c:35:
e4:ca:70:5f:fb:6c:95:76:90:c7:eb:c5:03:41:a1:80:e4:b1:
e8:4e:3e:24:6e:3f:c5:a9:f0:1a:bd:f3:ab:2f:13:55:3d:ef:
06:1b:7a:05:e5:ab:b5:a1:5c:4a:0b:2f:57:a4:c1:0b:b0:80:
cd:e5:cf:ec:78:0c:d0:b2:bd:84:dd:0e:38:be:1e:12:74:8e:
bf:dc:ab:31:13:5d:5e:81:9a:46:f0:7c:b3:ed:69:4d:b2:2a:
bc:87:b5:2c:7a:44:4b:96:cc:e4:f8:d9:80:5e:bc:e6:03:43:
4e:09:2a:68:bc:3e:4b:7e:fa:b1:c1:26:4c:de:98:ec:3a:cf:
2e:7b:20:40:20:38:ee:80:ec:b8:4f:30:6e:6b:61:50:0b:3f:
3d:75:a6:94:0e:6d:6f:2b:39:aa:c0:ed:d3:3e:64:fc:b2:a9:
27:fc:24:88:23:6d:bb:21:23:39:dd:0b:2d:e5:ab:d5:d1:eb:
14:dd:2f:c2:a4:14:c5:60:d5:5f:ac:c2:5a:1a:c1:74:16:c1:
7e:94:e9:79
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICBbswDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
RjE0NENBUjExMC8GA1UEBRMoQkZGMTBENzNBQTgxMzhEQ0UzNjc0MkE3NjZGOTY1
MjM4NTlFNDg3QzAeFw0yMzA4MDYwMDAwMzdaFw0zMDA4MDYwMDAwMzdaMBgxFjAU
BgNVBAMTDTY0Y2VlNmUwLWI0Y2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDuo9Utefjvy0EMjGCwePCI8JaKlFnnRp9CQev/wC55/ouF7ZozMeQMJQhG
SFILA1oVfxS9Kh/+BtH8aJxIsmW9TNElbW8Ch0QU5Dym+NesZYhatpoHx0Exhbt1
8C4l5+l0qr4NAzqgqGNi1HtadfiFMnrZhyAi5SFeAiOhUBjEWoBtKwzZOd7svBU7
bZiGBBZbeWS9EXUVJZs5HPxmVihQWAwdvoZfRHkTsLv+/ZD7R3mJXT5lv13/eQIl
8w32kOeDaFn4dECr82qcPd6upFagKhBMU3nH6nws/9cwX3/yVSGduE/7WoATv9Hp
sWa6uRHDohJhNAHCeEPHHYIRUAPvAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUqm3o
ex+Almtgi7wxsWSrkssTQSgwHwYDVR0jBBgwFoAUv/ENc6qBONzjZ0KnZvllI4We
SHwwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkYxNDRDLzkwMzAxNTdDRDJFNTExRTk5QTRDRTM2OEY4QUVBMjI4L3ZfRU5j
NnFCT056alowS25admxsSTRXZVNIdy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L3ZfRU5jNnFCT056alowS25admxsSTRXZVNIdy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNkYxNDRDLzkwMzAxNTdDRDJFNTExRTk5QTRDRTM2OEY4QUVB
MjI4L0NCOTNGNUU4MzNFRTExRUVCREM3RkQ1MDRBRDlFNkZDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACgd2MwDQYJKoZIhvcNAQELBQAD
ggEBAEkHICWmqJzPnhpNTQ9JNH0W8qdpeN++F2xKXhMMcBofvSL4aLLXucn7CfTE
paQ/GA0DuMacNeTKcF/7bJV2kMfrxQNBoYDksehOPiRuP8Wp8Bq986svE1U97wYb
egXlq7WhXEoLL1ekwQuwgM3lz+x4DNCyvYTdDji+HhJ0jr/cqzETXV6BmkbwfLPt
aU2yKryHtSx6REuWzOT42YBevOYDQ04JKmi8Pkt++rHBJkzemOw6zy57IEAgOO6A
7LhPMG5rYVALPz11ppQObW8rOarA7dM+ZPyyqSf8JIgjbbshIzndCy3lq9XR6xTd
L8KkFMVg1V+swloawXQWwX6U6Xk=
-----END CERTIFICATE-----
Generated at Mon Nov 25 03:00:16 2024 by rpki-client on console-fra.rpki-client.org