Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F365062A/BA505688CD7211ED924A748FF1222468/7F3B5BC2CD7411EDB5BFA794F1222468.roa
File: 7F3B5BC2CD7411EDB5BFA794F1222468.roa (raw, json)
Hash identifier: rrBpzRqR7sMiDjAP48/5zF32fv6+rt5X/8YtwI75lSE=
Subject key identifier: A0:9B:CF:72:F0:32:0F:A4:63:B2:23:6C:09:E1:7B:01:D0:FD:F5:72
Certificate issuer: /CN=F365062AAR/serialNumber=1ADCB578254AC0C819B1C168EF55C01BB2C24A93
Certificate serial: 02
Authority key identifier: 1A:DC:B5:78:25:4A:C0:C8:19:B1:C1:68:EF:55:C0:1B:B2:C2:4A:93
Authority info access: rsync://rpki.afrinic.net/repository/arin/Gty1eCVKwMgZscFo71XAG7LCSpM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F365062A/BA505688CD7211ED924A748FF1222468/7F3B5BC2CD7411EDB5BFA794F1222468.roa
Signing time: Tue 28 Mar 2023 14:26:16 +0000
ROA not before: Tue 28 Mar 2023 14:26:10 +0000
ROA not after: Thu 31 Mar 2033 14:26:10 +0000
asID: 37309
IP address blocks: 160.182.0.0/15 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F365062A/BA505688CD7211ED924A748FF1222468/Gty1eCVKwMgZscFo71XAG7LCSpM.crl
rsync://rpki.afrinic.net/repository/member_repository/F365062A/BA505688CD7211ED924A748FF1222468/Gty1eCVKwMgZscFo71XAG7LCSpM.mft
rsync://rpki.afrinic.net/repository/arin/Gty1eCVKwMgZscFo71XAG7LCSpM.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F365062AAR/serialNumber=1ADCB578254AC0C819B1C168EF55C01BB2C24A93
Validity
Not Before: Mar 28 14:26:10 2023 GMT
Not After : Mar 31 14:26:10 2033 GMT
Subject: CN=6422f908-8c2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:1c:3f:70:d8:bb:ba:df:8a:f8:e2:26:45:e4:
c1:a7:82:52:23:5f:94:75:8c:ca:39:ca:04:fd:86:
42:aa:f8:d1:1a:cd:84:4d:0b:25:5c:dd:26:e9:07:
b8:56:2b:85:5d:1a:16:43:71:ce:c4:28:f7:98:ac:
0c:72:bb:9f:b5:03:7f:e5:87:81:1e:e6:94:98:4f:
6e:84:e7:35:b3:2c:7b:cb:ea:4a:6b:3f:68:14:89:
47:cf:2d:ad:07:6c:9c:e0:c2:06:3e:b5:38:4d:32:
18:dc:d4:f5:c7:66:ab:25:63:87:0b:99:40:68:63:
5c:b6:88:28:aa:79:0b:84:5b:27:95:86:11:92:a2:
ce:9d:cb:2a:28:ec:22:07:43:70:45:0d:d6:7a:11:
75:f2:df:55:41:5a:d3:cb:15:df:56:7e:62:9a:57:
85:3b:b8:89:da:b6:41:46:40:2d:4c:ee:5d:d4:79:
75:ba:de:46:36:67:95:be:27:08:98:84:25:cd:97:
5b:10:75:45:fb:4c:7a:46:9f:23:93:36:f6:e5:16:
4a:f9:f1:4b:d2:dc:1a:05:75:22:d7:40:d4:a0:0f:
e0:82:9d:ad:ba:dc:23:e3:f2:86:a6:9f:8f:7a:7f:
00:83:ba:a9:37:6f:3f:0b:7a:6c:17:8f:cc:e2:a5:
6b:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:9B:CF:72:F0:32:0F:A4:63:B2:23:6C:09:E1:7B:01:D0:FD:F5:72
X509v3 Authority Key Identifier:
keyid:1A:DC:B5:78:25:4A:C0:C8:19:B1:C1:68:EF:55:C0:1B:B2:C2:4A:93
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F365062A/BA505688CD7211ED924A748FF1222468/Gty1eCVKwMgZscFo71XAG7LCSpM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/Gty1eCVKwMgZscFo71XAG7LCSpM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F365062A/BA505688CD7211ED924A748FF1222468/7F3B5BC2CD7411EDB5BFA794F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.182.0.0/15
Signature Algorithm: sha256WithRSAEncryption
92:dd:ef:0f:a2:1c:c3:ce:d6:46:8c:f4:68:6d:6f:66:e3:80:
4f:3c:aa:14:42:0d:21:c0:d3:a8:bc:74:34:2a:f9:8d:da:d1:
c0:33:dc:53:15:71:41:e8:6b:42:75:10:21:a0:57:42:47:35:
96:ad:86:f7:32:35:8f:f7:82:af:a4:e7:e8:99:2b:d3:0d:81:
f5:6b:3a:ba:ef:71:f8:ec:5c:35:f8:4c:85:2f:55:6e:a8:3a:
06:ce:16:41:22:d9:06:24:bc:92:ff:9a:76:ea:8b:14:cf:a7:
6c:f4:fa:d4:d6:02:70:b5:a3:56:7e:93:71:64:aa:73:af:81:
47:1d:14:94:63:a2:34:52:36:bf:f7:6c:af:df:33:e2:29:e7:
11:c1:d8:e9:88:4d:47:c4:33:25:23:2f:1f:3f:46:1b:5d:c3:
dc:4d:0f:62:d1:56:85:e4:b5:ac:24:45:2e:84:33:ff:c5:20:
21:80:33:66:00:d3:ef:55:fb:37:b8:06:fb:ed:38:79:f9:88:
c0:83:27:6a:4a:dd:f7:3d:a4:b8:ee:90:98:d7:05:eb:13:dd:
41:b9:a3:65:e1:7e:2e:e0:b1:b9:ce:91:07:01:ce:c3:b1:2b:
05:58:85:a5:0c:64:b8:bb:d4:5a:31:7e:ce:42:ad:ba:d7:5b:
61:1d:9d:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:34 2024 by rpki-client on console-ams.rpki-client.org