Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3651254/CD02A612C85311E69198EA57F8AEA228/14F1F27CD8C911E686B23863F8AEA228.roa
File: 14F1F27CD8C911E686B23863F8AEA228.roa (raw, json)
Hash identifier: bStN1pwltgaw97ERqptdQwfCi/altyvUGhKkmY10fFU=
Subject key identifier: DA:CF:36:3E:D6:6D:B9:20:54:A8:49:DC:E0:1F:D2:37:2D:9F:04:EB
Certificate issuer: /CN=F3651254AR/serialNumber=1D43E41D01CF85FF940F6606E1646147D8728B28
Certificate serial: 19
Authority key identifier: 1D:43:E4:1D:01:CF:85:FF:94:0F:66:06:E1:64:61:47:D8:72:8B:28
Authority info access: rsync://rpki.afrinic.net/repository/arin/HUPkHQHPhf-UD2YG4WRhR9hyiyg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3651254/CD02A612C85311E69198EA57F8AEA228/14F1F27CD8C911E686B23863F8AEA228.roa
Signing time: Thu 12 Jan 2017 13:14:44 +0000
ROA not before: Thu 12 Jan 2017 13:14:37 +0000
ROA not after: Tue 12 Jan 2027 13:14:37 +0000
asID: 37670
IP address blocks: 164.160.72.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3651254/CD02A612C85311E69198EA57F8AEA228/HUPkHQHPhf-UD2YG4WRhR9hyiyg.crl
rsync://rpki.afrinic.net/repository/member_repository/F3651254/CD02A612C85311E69198EA57F8AEA228/HUPkHQHPhf-UD2YG4WRhR9hyiyg.mft
rsync://rpki.afrinic.net/repository/arin/HUPkHQHPhf-UD2YG4WRhR9hyiyg.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 18 May 2024 00:16:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25 (0x19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3651254AR/serialNumber=1D43E41D01CF85FF940F6606E1646147D8728B28
Validity
Not Before: Jan 12 13:14:37 2017 GMT
Not After : Jan 12 13:14:37 2027 GMT
Subject: CN=58778143-9fb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:81:3a:8e:5a:6f:e6:38:d7:5a:1f:f7:0d:a8:
62:51:58:91:30:0c:ce:e0:0a:34:cd:82:7e:3e:92:
07:41:1a:3d:6d:8f:2b:e8:59:f7:60:cf:75:52:a4:
d2:6e:86:71:00:9f:9a:14:21:33:e4:16:61:0e:bf:
76:49:6f:68:64:0a:19:b8:d2:99:89:51:6a:14:1f:
97:18:52:21:60:81:b7:e7:56:4f:46:02:38:cb:7c:
ec:b3:60:72:97:2c:74:4b:60:41:3f:74:82:15:80:
42:6f:2c:89:4f:3c:3d:e5:23:89:04:bc:a0:78:b3:
01:6e:a6:2f:72:0b:6d:09:e2:2c:58:a9:e8:c3:9a:
d2:00:2e:4c:c8:3c:0f:c1:78:0c:02:89:5c:1c:08:
d7:cd:e4:d4:be:b6:c1:c0:83:8f:35:9e:9c:75:d4:
12:c0:65:d6:9b:de:6a:cd:f1:f4:ca:b5:d0:6f:15:
c9:67:43:21:63:68:61:4f:f7:69:3a:bd:d4:4f:a5:
50:ca:9e:fe:74:67:d0:48:fc:8f:f5:29:c2:e8:dc:
9e:d8:4e:69:0c:a2:d3:62:bc:18:fa:e5:57:95:49:
09:0c:b5:a8:60:55:78:28:c1:e0:38:85:8c:93:61:
4d:1a:4b:37:ed:da:b3:03:f5:ad:4e:24:0c:88:34:
c7:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:CF:36:3E:D6:6D:B9:20:54:A8:49:DC:E0:1F:D2:37:2D:9F:04:EB
X509v3 Authority Key Identifier:
keyid:1D:43:E4:1D:01:CF:85:FF:94:0F:66:06:E1:64:61:47:D8:72:8B:28
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3651254/CD02A612C85311E69198EA57F8AEA228/HUPkHQHPhf-UD2YG4WRhR9hyiyg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/HUPkHQHPhf-UD2YG4WRhR9hyiyg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3651254/CD02A612C85311E69198EA57F8AEA228/14F1F27CD8C911E686B23863F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
164.160.72.0/21
Signature Algorithm: sha256WithRSAEncryption
15:47:a6:a3:aa:6c:0b:58:4b:00:8d:6d:91:07:19:dc:8a:c1:
b4:c5:8c:f0:13:27:dd:23:ac:b8:6b:c4:ab:ce:ec:dd:25:0b:
4c:e5:9c:36:03:3b:6d:a1:52:70:bf:77:ca:f2:0a:25:09:0a:
1e:67:4f:21:17:8b:b3:a2:b3:2c:e7:ce:c5:94:65:80:9c:7b:
70:b5:81:8c:60:c8:9d:96:d4:a3:97:66:a5:ff:e3:d7:fc:54:
05:8a:30:42:38:56:50:6d:47:5a:2a:4f:68:1e:b1:a6:2b:7e:
dc:4b:78:ff:7c:43:6d:ab:6c:97:00:9a:98:4c:84:14:6f:fd:
bd:07:00:d8:2a:c4:45:45:dc:3e:57:38:60:4a:2e:6e:fe:ae:
70:2c:50:ec:1a:53:8e:de:03:b7:c8:79:5f:b1:78:22:58:af:
8b:b1:f7:50:bb:2f:42:d7:dc:83:8b:56:b9:7d:5f:26:42:c0:
d0:10:ef:b8:e3:37:16:9f:d3:81:ba:e3:e1:71:29:e2:53:26:
a2:73:08:11:35:d8:62:4b:22:89:6f:e7:1a:e7:95:4c:82:90:
77:db:77:92:07:98:37:35:39:ca:c2:9e:29:b9:0c:f5:f3:84:
a9:58:e0:81:6e:53:9c:09:31:d2:1f:bd:15:78:88:a0:4f:59:
2a:a4:11:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 16 01:22:40 2024 by rpki-client on console-fra.rpki-client.org