Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/59D45950C99811EC859EF596F1222468.roa
File: 59D45950C99811EC859EF596F1222468.roa (raw, json)
Hash identifier: RHVFzw2rU0VqZpCz7ohNPe48NPrKhxxuUv6IEnAudn4=
Subject key identifier: 66:78:48:28:C0:D4:EF:37:A4:8D:AB:4D:0E:FB:38:43:2F:89:C8:6D
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 06A0
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/59D45950C99811EC859EF596F1222468.roa
Signing time: Sun 01 May 2022 21:47:52 +0000
ROA not before: Sun 01 May 2022 21:47:47 +0000
ROA not after: Thu 01 May 2025 21:47:47 +0000
asID: 327790
IP address blocks: 161.123.0.0/16 maxlen: 16
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.mft
rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 26 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1696 (0x6a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: May 1 21:47:47 2022 GMT
Not After : May 1 21:47:47 2025 GMT
Subject: CN=626f0008-1d26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:97:20:ee:fd:ec:1d:0b:0d:70:38:88:88:dd:
69:3e:09:47:ba:d5:75:93:46:ec:b9:b4:1b:90:18:
05:ed:ce:6f:82:5e:ce:6e:0e:98:63:12:f4:5e:8a:
ac:e7:3e:4c:3a:2a:02:04:b7:ff:4c:a7:19:c5:1b:
5e:27:97:a2:bd:3a:ba:98:59:7b:78:b7:b8:66:f8:
12:af:f9:1a:60:87:48:a2:f3:01:1b:f2:cd:78:da:
35:bd:ce:8a:d7:38:28:8c:bf:c8:47:1d:10:98:4f:
38:66:aa:e8:e1:29:69:3b:d6:46:fe:6c:c2:d6:f8:
01:44:fd:95:04:be:5a:42:bb:00:38:63:97:1a:d7:
98:3a:b6:95:cd:1f:fa:f9:01:7c:ae:3f:4e:15:87:
4c:21:03:0f:b9:92:e5:59:9c:aa:f2:d9:09:63:87:
f5:46:02:86:25:10:af:c3:3b:ca:f1:5e:4b:f0:56:
f1:73:13:19:80:c1:90:82:c3:bc:97:95:bd:c1:ff:
68:69:c2:56:6a:31:ac:17:5c:a7:f2:55:89:01:ac:
6a:2b:46:79:64:c0:51:7e:7a:7a:b5:a9:66:9c:6f:
bf:19:85:2b:d0:42:07:be:ba:e6:79:da:0a:e0:5b:
91:05:c1:d0:dd:5e:0f:22:47:2c:66:5b:0c:60:53:
b0:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:78:48:28:C0:D4:EF:37:A4:8D:AB:4D:0E:FB:38:43:2F:89:C8:6D
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/59D45950C99811EC859EF596F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.0.0/16
Signature Algorithm: sha256WithRSAEncryption
0f:64:c6:16:79:80:6a:15:57:43:58:28:24:32:4f:1b:b8:23:
78:c9:7c:69:56:16:3a:dd:d1:a7:f5:04:e5:7c:2b:98:1f:e7:
d7:1c:ce:de:79:29:73:5c:d4:a6:1e:fb:79:63:0e:4b:94:0b:
75:7c:05:7a:78:34:88:65:6b:d2:28:fd:91:dd:ba:56:58:0f:
01:62:5c:1b:ae:76:34:69:b6:07:d8:c4:74:84:4f:f2:33:26:
1d:70:c4:ba:fa:05:98:4c:57:80:b5:fb:9a:eb:03:8a:da:7a:
2e:3e:90:61:fa:99:f0:08:9a:f2:d1:9b:d9:3f:a5:c8:c3:53:
67:ac:84:df:d9:60:d3:3b:70:4a:6f:9a:9d:19:cf:c1:9b:00:
70:9a:57:ea:c6:00:f1:ac:f0:e9:da:5e:36:e8:ae:a9:3f:92:
f1:9b:23:b3:29:d1:7c:38:d1:34:ba:fe:54:d0:94:fb:65:d5:
bf:48:e5:33:e1:c0:5b:83:db:91:95:39:9b:06:e1:62:cb:0c:
f3:e3:a2:9d:dd:cc:73:e7:72:58:29:98:bd:bc:ff:02:76:45:
08:ec:e4:97:55:a3:81:7a:3f:c9:25:dc:b9:11:01:6b:7c:2d:
37:b9:6d:4a:af:a4:fb:3b:50:37:9a:67:c9:ed:40:67:31:b2:
a8:54:53:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 24 02:40:12 2024 by rpki-client on console-ams.rpki-client.org