Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363520F/1AE67086848811EAA67B9A80F8AEA228/4C654A8A8DE111EAB4F27232F8AEA228.roa
File: 4C654A8A8DE111EAB4F27232F8AEA228.roa (raw, json)
Hash identifier: PAOua0y1Pzuvi2pHZuLlx1NvAYhnlN2NSbaaKTiRzx8=
Subject key identifier: 54:A1:4F:F7:66:7A:53:5F:09:28:B2:30:4B:31:2C:16:E2:0A:75:C3
Certificate issuer: /CN=F363520FAR/serialNumber=8A99E3854604A21AADCF66518E4B59FE8A13A206
Certificate serial: 10
Authority key identifier: 8A:99:E3:85:46:04:A2:1A:AD:CF:66:51:8E:4B:59:FE:8A:13:A2:06
Authority info access: rsync://rpki.afrinic.net/repository/arin/ipnjhUYEohqtz2ZRjktZ_ooTogY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363520F/1AE67086848811EAA67B9A80F8AEA228/4C654A8A8DE111EAB4F27232F8AEA228.roa
Signing time: Mon 04 May 2020 08:28:58 +0000
ROA not before: Mon 04 May 2020 08:28:53 +0000
ROA not after: Sat 04 May 2030 08:28:53 +0000
asID: 37611
IP address blocks: 169.0.0.0/17 maxlen: 17
169.0.128.0/17 maxlen: 17
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363520F/1AE67086848811EAA67B9A80F8AEA228/ipnjhUYEohqtz2ZRjktZ_ooTogY.crl
rsync://rpki.afrinic.net/repository/member_repository/F363520F/1AE67086848811EAA67B9A80F8AEA228/ipnjhUYEohqtz2ZRjktZ_ooTogY.mft
rsync://rpki.afrinic.net/repository/arin/ipnjhUYEohqtz2ZRjktZ_ooTogY.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16 (0x10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363520FAR/serialNumber=8A99E3854604A21AADCF66518E4B59FE8A13A206
Validity
Not Before: May 4 08:28:53 2020 GMT
Not After : May 4 08:28:53 2030 GMT
Subject: CN=5eafd24a-76e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:eb:02:b0:26:9c:6f:7f:0b:0d:b3:ab:05:bb:
53:03:71:5a:3e:a2:11:b3:fe:3e:2f:54:b2:e9:1e:
dd:a1:cb:58:8b:e9:1e:81:62:c8:08:92:f4:a6:cb:
96:e1:b6:c1:0b:bd:0a:69:16:21:f2:e2:37:6e:f4:
a6:5d:1f:4d:e3:73:f3:de:60:7c:f4:c4:d5:8d:f7:
88:5e:e1:4a:ec:5c:10:71:76:0a:36:93:44:47:14:
90:21:7a:05:42:56:de:b4:ac:aa:d9:31:e0:81:e6:
5d:93:a2:d8:b2:f0:43:98:72:9a:c3:40:0b:9a:7f:
ee:8f:4e:bb:d9:28:38:54:ea:97:7e:bd:e8:81:5a:
4a:93:77:86:4b:dc:8e:6a:19:95:80:46:af:7d:ad:
7b:eb:5f:1e:ee:c3:00:86:8e:51:25:83:ff:1f:84:
b9:5c:48:c0:e4:fa:41:cf:73:24:7f:8b:eb:3f:23:
1d:bf:8e:3b:dc:fd:5b:03:ec:e8:4e:5a:63:00:c9:
2d:7f:a0:dd:9d:0a:c3:4f:a9:ad:fc:3f:5b:b9:68:
96:56:fa:0b:41:af:19:e7:46:96:0e:ad:a6:8f:84:
23:a4:15:00:82:64:cf:83:e9:da:84:ec:72:c8:0d:
b8:cd:9f:70:f7:b9:97:8d:e9:11:1e:11:d1:cc:fa:
46:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:A1:4F:F7:66:7A:53:5F:09:28:B2:30:4B:31:2C:16:E2:0A:75:C3
X509v3 Authority Key Identifier:
keyid:8A:99:E3:85:46:04:A2:1A:AD:CF:66:51:8E:4B:59:FE:8A:13:A2:06
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363520F/1AE67086848811EAA67B9A80F8AEA228/ipnjhUYEohqtz2ZRjktZ_ooTogY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/ipnjhUYEohqtz2ZRjktZ_ooTogY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363520F/1AE67086848811EAA67B9A80F8AEA228/4C654A8A8DE111EAB4F27232F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
169.0.0.0/16
Signature Algorithm: sha256WithRSAEncryption
6f:df:9f:4d:5e:aa:73:da:c9:63:c9:71:b4:3f:a8:11:84:7e:
42:12:a2:63:25:85:d8:87:15:9c:6b:b6:14:98:33:55:c6:92:
29:45:ed:1e:8b:89:67:b0:a6:4c:e4:38:88:89:da:a3:9c:11:
10:e6:de:47:7f:52:e3:e3:b8:46:13:a8:ba:05:a3:29:fc:92:
ca:2b:3e:91:5d:c0:98:b4:b9:b9:18:ea:76:f7:85:9e:59:6e:
69:da:e8:06:fb:58:c4:29:15:b9:2e:0c:b6:1a:55:91:f3:1e:
1a:91:1b:f4:ab:a3:df:38:4b:7d:83:eb:af:90:70:dc:d8:48:
ab:13:30:61:6f:4a:5f:2a:b3:95:b1:63:5e:6a:25:14:f9:22:
d0:ec:7c:a0:e2:dd:ac:96:ff:8b:b2:f6:69:f5:e6:76:ef:37:
29:cd:f9:9a:5d:17:fc:f9:73:f7:49:d8:9e:6b:c3:48:f6:88:
35:11:4c:2d:5b:f8:23:a4:76:c2:9c:c4:94:26:42:68:83:db:
59:84:43:42:70:45:b5:dc:cc:8e:a5:da:7b:a2:30:45:e8:3a:
1e:dc:46:a0:35:b5:70:cb:89:72:fd:3d:64:d2:16:12:ff:1f:
7b:7e:56:d1:87:72:11:12:fa:a3:92:36:8e:5b:89:b2:a5:94:
c2:57:ab:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:53 2024 by rpki-client on console-fra.rpki-client.org