Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FC6C8/BCADBE8C70E311EFB4AB1745762E951A/12C10A588D4611EFB445E072762E951A.roa
File: 12C10A588D4611EFB445E072762E951A.roa (raw, json)
Hash identifier: eewTY8tgWHm825N9T7CjR1TH1/Q9o9EcO4kO/LJ3U4I=
Subject key identifier: 5A:A3:E3:0B:5B:76:08:C5:DC:91:24:24:AD:63:FE:00:03:65:A5:6C
Certificate issuer: /CN=F36FC6C8AR/serialNumber=1A8185FCF63D079B206A34A8B99487A59D818E5D
Certificate serial: 31
Authority key identifier: 1A:81:85:FC:F6:3D:07:9B:20:6A:34:A8:B9:94:87:A5:9D:81:8E:5D
Authority info access: rsync://rpki.afrinic.net/repository/arin/GoGF_PY9B5sgajSouZSHpZ2Bjl0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/BCADBE8C70E311EFB4AB1745762E951A/12C10A588D4611EFB445E072762E951A.roa
Signing time: Fri 18 Oct 2024 11:42:37 +0000
ROA not before: Fri 18 Oct 2024 11:42:34 +0000
ROA not after: Wed 18 Oct 2034 11:42:34 +0000
asID: 37680
IP address blocks: 155.93.160.0/20 maxlen: 20
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/BCADBE8C70E311EFB4AB1745762E951A/GoGF_PY9B5sgajSouZSHpZ2Bjl0.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/BCADBE8C70E311EFB4AB1745762E951A/GoGF_PY9B5sgajSouZSHpZ2Bjl0.mft
rsync://rpki.afrinic.net/repository/arin/GoGF_PY9B5sgajSouZSHpZ2Bjl0.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Oct 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49 (0x31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FC6C8AR/serialNumber=1A8185FCF63D079B206A34A8B99487A59D818E5D
Validity
Not Before: Oct 18 11:42:34 2024 GMT
Not After : Oct 18 11:42:34 2034 GMT
Subject: CN=671249ad-f395
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:2a:20:5d:4a:ca:58:75:aa:1e:a4:d5:dc:43:
85:17:b7:c9:9c:15:ee:2e:69:22:08:1d:a2:eb:61:
8d:56:eb:dd:aa:12:17:e1:b3:ad:4e:92:d2:a8:22:
0e:b4:8e:4b:ac:f9:c4:7e:fc:1c:7f:e0:6a:12:f1:
7b:b3:f7:65:86:d1:d3:2e:b8:63:78:f5:ac:36:32:
b3:e6:69:1d:53:67:dc:da:f2:4b:3c:5e:be:3d:58:
33:7f:da:8c:c6:0c:6e:8c:2b:2e:9d:8e:ac:da:66:
57:91:a3:a1:fa:70:e4:f3:fc:95:4f:7b:7b:c1:fd:
c1:5f:93:47:b8:53:1c:4c:5f:d9:2f:59:f5:00:d8:
98:2a:8e:10:c4:55:73:e4:6f:a7:85:f5:4b:16:91:
a3:75:c6:47:42:f9:74:a5:9d:46:8d:a8:39:41:4d:
3a:0c:65:63:01:22:ce:58:d6:ac:93:0a:b0:67:44:
64:45:26:2c:bd:8a:e4:cf:d1:ce:80:f1:50:9a:61:
82:e0:32:b7:01:f3:d3:a5:ab:eb:a8:69:b5:9d:fe:
c2:3d:b7:a9:4c:0a:d9:c7:d7:81:b1:4c:7b:97:8a:
60:7d:29:ae:37:fb:b4:3b:4b:14:20:33:b8:c0:70:
75:df:54:f3:7f:75:2c:29:85:6e:6f:71:29:81:3b:
98:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:A3:E3:0B:5B:76:08:C5:DC:91:24:24:AD:63:FE:00:03:65:A5:6C
X509v3 Authority Key Identifier:
keyid:1A:81:85:FC:F6:3D:07:9B:20:6A:34:A8:B9:94:87:A5:9D:81:8E:5D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/BCADBE8C70E311EFB4AB1745762E951A/GoGF_PY9B5sgajSouZSHpZ2Bjl0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/GoGF_PY9B5sgajSouZSHpZ2Bjl0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FC6C8/BCADBE8C70E311EFB4AB1745762E951A/12C10A588D4611EFB445E072762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
155.93.160.0/20
Signature Algorithm: sha256WithRSAEncryption
72:41:c9:ce:fc:e2:cb:c1:7b:1f:ef:d0:ac:8b:c6:d4:45:98:
ae:1f:8b:64:b1:f7:6a:66:d7:9d:a4:c3:2e:e5:da:a9:88:14:
25:7d:3c:37:34:b0:45:0f:63:84:2d:1f:a3:f0:de:a5:ea:c7:
42:bf:c0:ae:78:95:ec:df:e6:a9:a2:92:01:71:6e:51:6f:54:
d0:24:a2:8e:7e:8e:6b:ba:7b:75:cc:0f:6b:f9:c2:f0:74:72:
90:f1:f1:fa:e5:29:90:08:7e:96:de:a8:18:2f:0f:fc:01:24:
b1:36:5e:59:85:83:30:b1:10:ac:97:75:75:1c:80:53:2b:06:
31:de:e0:41:80:0e:1e:0f:ce:8d:48:de:6b:0a:31:53:35:6b:
d2:09:a9:61:6a:c3:4d:e4:a6:db:cb:20:55:b0:9b:54:35:8d:
f4:55:81:82:c2:32:d7:ce:04:e0:d2:89:a1:35:3f:8c:28:bb:
3d:0c:bd:68:17:33:f5:f4:5c:b2:3b:bd:96:10:96:71:6a:c9:
80:83:b5:68:6a:1c:59:a1:6a:c5:66:f2:44:74:7b:b0:57:34:
e2:8c:50:a2:6f:8b:3c:10:f0:a0:2a:da:87:a0:a3:ec:a5:df:
b5:38:af:db:58:75:80:35:56:d7:a4:7b:ef:b3:f3:a3:c0:d1:
b2:3b:b9:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 06:47:52 2024 by rpki-client on console-fra.rpki-client.org