Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363CC24/056BF3E26CD011ED8D69ACA2F1222468/70D117F66CD611ED923FD0B3F1222468.roa
File: 70D117F66CD611ED923FD0B3F1222468.roa (raw, json)
Hash identifier: txZAMVXkl2H2InuuPJiS6nC2O9wGE8oK3t6mwrxz9Xc=
Subject key identifier: 04:41:FB:DD:8F:4A:4C:F9:A6:46:E0:AA:87:70:EC:3E:44:D3:6C:41
Certificate issuer: /CN=F363CC24AR/serialNumber=A9CB76AF6BC2B486D581AF29A19E595D9C04CD04
Certificate serial: 05
Authority key identifier: A9:CB:76:AF:6B:C2:B4:86:D5:81:AF:29:A1:9E:59:5D:9C:04:CD:04
Authority info access: rsync://rpki.afrinic.net/repository/arin/qct2r2vCtIbVga8poZ5ZXZwEzQQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363CC24/056BF3E26CD011ED8D69ACA2F1222468/70D117F66CD611ED923FD0B3F1222468.roa
Signing time: Fri 25 Nov 2022 15:32:59 +0000
ROA not before: Fri 25 Nov 2022 15:32:55 +0000
ROA not after: Thu 25 Nov 2032 15:32:55 +0000
asID: 328029
IP address blocks: 164.160.52.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363CC24/056BF3E26CD011ED8D69ACA2F1222468/qct2r2vCtIbVga8poZ5ZXZwEzQQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F363CC24/056BF3E26CD011ED8D69ACA2F1222468/qct2r2vCtIbVga8poZ5ZXZwEzQQ.mft
rsync://rpki.afrinic.net/repository/arin/qct2r2vCtIbVga8poZ5ZXZwEzQQ.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363CC24AR/serialNumber=A9CB76AF6BC2B486D581AF29A19E595D9C04CD04
Validity
Not Before: Nov 25 15:32:55 2022 GMT
Not After : Nov 25 15:32:55 2032 GMT
Subject: CN=6380e02b-99dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:ed:de:73:48:48:8d:d0:d6:ab:37:27:9c:63:
50:b6:1b:88:de:b8:dd:85:4e:93:3a:7c:73:ab:f5:
bf:17:8e:0b:49:fd:40:22:aa:c2:e6:e3:c5:21:64:
03:a0:37:c2:6d:ed:94:4c:89:de:c8:12:6a:37:c3:
a7:0c:45:24:39:b4:9b:37:09:a6:77:59:26:99:09:
1e:e8:60:c9:98:dc:9c:ef:cb:cc:a1:18:92:ad:99:
d6:ec:08:0a:78:c9:85:ae:44:93:d1:1e:2a:03:13:
9e:48:f3:94:62:c1:18:69:f0:b7:e9:e0:e0:0c:3f:
fe:8e:16:55:82:08:68:4d:9e:87:2c:41:44:7f:ed:
9d:d7:b6:a0:29:6a:45:dc:7b:1a:79:f7:78:13:06:
c1:10:bf:ee:8c:2c:f9:9b:c9:a3:94:9b:3b:35:b6:
95:8c:0e:a4:8d:45:72:ae:a5:fc:37:ec:ee:e6:16:
78:f4:a7:01:b5:78:a8:10:1c:dc:68:fd:e1:ab:f3:
6c:c9:14:38:94:51:a3:29:95:b9:a8:8b:5b:71:a7:
55:be:6d:7a:22:b9:c9:1b:bb:79:e2:ee:87:cc:23:
e2:58:c7:43:11:c8:50:44:2c:bc:8a:09:1c:7f:52:
76:d9:a9:ad:a0:b7:aa:66:dd:ee:d6:ca:ff:4f:66:
4e:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:41:FB:DD:8F:4A:4C:F9:A6:46:E0:AA:87:70:EC:3E:44:D3:6C:41
X509v3 Authority Key Identifier:
keyid:A9:CB:76:AF:6B:C2:B4:86:D5:81:AF:29:A1:9E:59:5D:9C:04:CD:04
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363CC24/056BF3E26CD011ED8D69ACA2F1222468/qct2r2vCtIbVga8poZ5ZXZwEzQQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/qct2r2vCtIbVga8poZ5ZXZwEzQQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363CC24/056BF3E26CD011ED8D69ACA2F1222468/70D117F66CD611ED923FD0B3F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
164.160.52.0/22
Signature Algorithm: sha256WithRSAEncryption
66:da:ab:ab:62:96:23:c9:58:5b:19:37:9d:2e:42:58:7a:c2:
95:a3:55:c2:46:f2:0d:4d:04:b2:5d:3a:f4:a9:b6:13:35:d9:
94:cc:4e:b9:40:7f:87:66:07:f7:98:38:d8:fe:45:fe:c5:cb:
0c:78:44:24:59:63:4a:5c:fa:21:18:21:d8:f0:85:fd:d6:7a:
47:9a:7a:38:fa:68:52:60:5a:46:b6:d6:0b:42:c6:00:2e:57:
d2:d4:96:af:b1:4d:ca:ef:57:f7:a5:ca:d4:bd:c1:80:36:8c:
c0:e2:19:5c:17:e3:63:ac:43:23:6b:1d:3a:f3:1f:ab:f9:3b:
81:a2:05:dc:02:26:17:39:35:86:78:b5:29:06:af:9d:e9:29:
4d:03:08:d1:be:ef:45:dd:1d:f2:eb:81:29:e3:66:a7:c6:04:
19:c9:6a:74:9a:76:ae:98:b8:9b:37:6e:16:35:8b:dd:13:12:
00:6b:2f:f1:24:a5:fc:fd:1e:56:ed:d7:e1:82:82:d0:c5:bc:
0a:7c:8d:e2:c1:81:57:d9:45:0a:1d:7b:fd:79:45:ca:54:07:
b1:3b:84:67:cd:f0:12:9b:f5:67:c8:35:4e:cc:76:41:f8:9e:
0d:12:60:28:14:20:35:c0:5d:97:f8:10:a5:eb:b5:36:80:51:
07:2b:05:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:33 2024 by rpki-client on console-ams.rpki-client.org