Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3642C0F/608E7226C07911EC96A968D55A40D577/4B269958C07A11ECB90830D85A40D577.roa
File: 4B269958C07A11ECB90830D85A40D577.roa (raw, json)
Hash identifier: yaxY+KQy+R39p+7QEIl8HXiozhgGT13utOHvDA6DceM=
Subject key identifier: 04:77:CA:58:74:93:B0:2F:CB:A1:53:4C:19:06:1B:FF:E4:4C:F2:D4
Certificate issuer: /CN=F3642C0FAR/serialNumber=A20B539BC7925F7AEC29A70CF6A1847891A9B312
Certificate serial: 02
Authority key identifier: A2:0B:53:9B:C7:92:5F:7A:EC:29:A7:0C:F6:A1:84:78:91:A9:B3:12
Authority info access: rsync://rpki.afrinic.net/repository/arin/ogtTm8eSX3rsKacM9qGEeJGpsxI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3642C0F/608E7226C07911EC96A968D55A40D577/4B269958C07A11ECB90830D85A40D577.roa
Signing time: Wed 20 Apr 2022 07:20:02 +0000
ROA not before: Wed 20 Apr 2022 07:19:58 +0000
ROA not after: Sat 20 Apr 2024 07:19:58 +0000
asID: 328167
IP address blocks: 160.19.232.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3642C0F/608E7226C07911EC96A968D55A40D577/ogtTm8eSX3rsKacM9qGEeJGpsxI.crl
rsync://rpki.afrinic.net/repository/member_repository/F3642C0F/608E7226C07911EC96A968D55A40D577/ogtTm8eSX3rsKacM9qGEeJGpsxI.mft
rsync://rpki.afrinic.net/repository/arin/ogtTm8eSX3rsKacM9qGEeJGpsxI.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 20 Apr 2024 07:19:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3642C0FAR/serialNumber=A20B539BC7925F7AEC29A70CF6A1847891A9B312
Validity
Not Before: Apr 20 07:19:58 2022 GMT
Not After : Apr 20 07:19:58 2024 GMT
Subject: CN=625fb422-c8d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:90:1c:67:a7:05:03:18:97:06:cf:1d:2d:42:
bc:d9:2e:f2:ca:86:12:bd:41:f9:2a:8d:13:fa:e3:
fe:53:b3:7a:4a:92:35:33:a1:56:c7:0d:b4:d3:f6:
9e:af:92:76:ed:fe:ab:97:c6:0f:b4:2b:c6:7d:b5:
96:2b:c6:52:cd:62:86:bf:eb:4b:78:c1:d9:31:38:
c3:9a:25:02:c2:95:00:f0:80:c6:16:d6:d4:33:03:
24:e2:71:e0:98:bb:02:2d:04:d8:c9:ed:e6:17:67:
bd:c2:f8:e2:90:00:9a:11:e6:25:cf:f3:5f:4f:e9:
f7:ca:19:c0:ec:82:f8:ac:7a:27:57:89:65:b7:15:
b4:0a:8b:9d:5a:2d:10:4b:d7:28:4d:5f:6b:a7:78:
1c:2a:8c:42:88:f3:ce:cb:c2:9a:90:ef:01:ee:48:
32:0a:63:4b:27:ad:a7:fd:88:1e:e9:94:b8:56:01:
77:f9:29:b0:f4:35:21:ae:42:f4:d4:8b:e9:26:90:
d5:fd:26:b9:86:12:56:9a:64:ac:25:06:a1:fc:73:
eb:0b:9d:3f:39:47:45:3d:dd:26:6a:ab:75:0c:25:
0e:22:24:f1:2a:dc:a5:0b:75:0d:32:45:10:91:28:
6f:f3:2e:39:6d:06:58:e8:ca:cc:b3:cc:24:db:e3:
e8:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:77:CA:58:74:93:B0:2F:CB:A1:53:4C:19:06:1B:FF:E4:4C:F2:D4
X509v3 Authority Key Identifier:
keyid:A2:0B:53:9B:C7:92:5F:7A:EC:29:A7:0C:F6:A1:84:78:91:A9:B3:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3642C0F/608E7226C07911EC96A968D55A40D577/ogtTm8eSX3rsKacM9qGEeJGpsxI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/ogtTm8eSX3rsKacM9qGEeJGpsxI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3642C0F/608E7226C07911EC96A968D55A40D577/4B269958C07A11ECB90830D85A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.19.232.0/22
Signature Algorithm: sha256WithRSAEncryption
92:11:92:db:8a:7e:be:70:1e:dc:6d:93:f7:db:52:0a:bf:55:
53:5a:54:60:eb:aa:ae:43:fb:da:72:7e:68:2b:69:1f:0c:a9:
79:87:6a:6c:12:b9:e6:09:fe:25:4b:45:68:be:33:f0:b2:be:
bb:0e:a8:7b:85:14:ea:ca:1d:e7:91:db:70:6c:2f:1c:17:ef:
94:20:b6:8d:52:a3:98:7c:0e:c1:d0:6a:22:08:ee:78:42:ff:
fb:22:bc:69:92:99:fb:a8:c9:43:c0:f7:24:91:b7:5a:97:d3:
3a:ab:0b:af:f9:1c:6c:8a:68:dc:af:89:89:cf:b7:6a:3c:01:
7b:b6:cf:f5:5d:66:a0:2d:5d:38:8c:03:30:37:29:d2:9b:1b:
98:2c:79:f0:f6:5b:e3:c0:c9:7d:63:5e:81:a1:4d:a1:2e:85:
53:bf:12:fb:a9:f1:66:9c:ea:2b:f5:c1:32:4f:c8:5b:c3:0b:
10:88:70:0d:d1:d2:86:fc:65:7b:34:77:20:45:c3:6b:8c:50:
54:b7:ea:a9:f4:b4:63:74:4d:04:26:84:6e:50:7f:b1:ac:b6:
06:8a:f9:55:db:f2:b7:8c:ca:fd:62:41:fd:7f:cd:dc:e8:21:
fe:fe:b9:b2:5b:09:c7:e6:1c:9e:2a:6a:6a:05:7b:26:fd:aa:
3c:77:fa:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 02:38:47 2024 by rpki-client on console-ams.rpki-client.org