Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3656177/C2857264C85811E6A8EE465FF8AEA228/361323CCC8C711E9B652C156F8AEA228.roa
File: 361323CCC8C711E9B652C156F8AEA228.roa (raw, json)
Hash identifier: ZDrsLI1RWkFdQohl1nTyw5JGa4/mTeCrLl2gQVNYxnU=
Subject key identifier: D5:8B:D2:52:6D:E0:E1:64:DE:1C:86:B7:30:B1:BB:8A:11:1A:14:B2
Certificate issuer: /CN=F3656177AR/serialNumber=1A8F0F74FA3A602F47FCEC36B8B3F79E21F30018
Certificate serial: 03EB
Authority key identifier: 1A:8F:0F:74:FA:3A:60:2F:47:FC:EC:36:B8:B3:F7:9E:21:F3:00:18
Authority info access: rsync://rpki.afrinic.net/repository/arin/Go8PdPo6YC9H_Ow2uLP3niHzABg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3656177/C2857264C85811E6A8EE465FF8AEA228/361323CCC8C711E9B652C156F8AEA228.roa
Signing time: Tue 27 Aug 2019 12:35:54 +0000
ROA not before: Tue 27 Aug 2019 12:35:50 +0000
ROA not after: Mon 27 Aug 2029 12:35:50 +0000
asID: 328032
IP address blocks: 164.160.47.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3656177/C2857264C85811E6A8EE465FF8AEA228/Go8PdPo6YC9H_Ow2uLP3niHzABg.crl
rsync://rpki.afrinic.net/repository/member_repository/F3656177/C2857264C85811E6A8EE465FF8AEA228/Go8PdPo6YC9H_Ow2uLP3niHzABg.mft
rsync://rpki.afrinic.net/repository/arin/Go8PdPo6YC9H_Ow2uLP3niHzABg.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 27 Apr 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1003 (0x3eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3656177AR/serialNumber=1A8F0F74FA3A602F47FCEC36B8B3F79E21F30018
Validity
Not Before: Aug 27 12:35:50 2019 GMT
Not After : Aug 27 12:35:50 2029 GMT
Subject: CN=5d6523aa-58be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:e1:b8:e4:c1:c2:bb:c0:8d:4d:6e:a6:92:fd:
09:4b:3c:60:8f:0e:04:21:f5:0e:17:f7:bd:74:10:
70:6b:4c:36:3f:66:03:cd:48:19:d2:ce:31:91:43:
0e:6a:87:c3:81:aa:34:f3:b1:a5:d6:ae:ad:c5:9a:
05:8f:62:1f:b9:ed:49:93:3f:35:3a:70:2f:8e:6f:
14:f7:ac:24:bb:af:3e:6d:1a:11:72:f9:55:12:bf:
d4:b4:de:93:b1:25:74:c7:73:3e:00:5c:dd:93:82:
05:af:8b:01:8e:27:6d:82:4e:0c:0e:14:8b:b7:31:
50:f1:ca:82:31:de:ee:ce:36:8d:72:10:3a:33:b5:
4b:08:a1:ac:99:10:59:35:f1:86:90:d8:a7:6c:4b:
c2:d3:d1:39:fa:a9:b6:cb:ac:00:29:5f:25:fb:d3:
9f:7e:b7:47:81:e9:ee:1f:a0:56:59:a8:b3:8b:ae:
7a:9d:73:89:5f:d8:ff:37:18:ca:65:44:9e:ab:8e:
56:0b:52:6e:f8:ce:f9:f2:4c:06:3f:fc:ec:32:b1:
6f:13:6b:79:a5:30:6e:a6:0d:6d:d8:52:60:51:12:
7c:10:e7:d8:70:bc:56:8a:32:81:59:d4:e3:c9:40:
5f:55:63:a7:ff:49:b0:59:e0:e3:22:39:10:2d:1a:
20:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:8B:D2:52:6D:E0:E1:64:DE:1C:86:B7:30:B1:BB:8A:11:1A:14:B2
X509v3 Authority Key Identifier:
keyid:1A:8F:0F:74:FA:3A:60:2F:47:FC:EC:36:B8:B3:F7:9E:21:F3:00:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3656177/C2857264C85811E6A8EE465FF8AEA228/Go8PdPo6YC9H_Ow2uLP3niHzABg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/Go8PdPo6YC9H_Ow2uLP3niHzABg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3656177/C2857264C85811E6A8EE465FF8AEA228/361323CCC8C711E9B652C156F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
164.160.47.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:db:62:76:c0:25:f4:41:9d:cb:64:60:c0:2b:cc:71:26:6c:
69:78:8d:eb:3c:c1:fd:24:36:67:2f:45:93:ba:8b:82:69:09:
00:0a:e9:f1:8c:27:16:51:54:1d:4d:c3:da:ea:3b:d5:91:02:
8d:2e:53:66:8d:d9:20:bd:cb:f6:70:bb:66:55:c9:7f:a0:e6:
27:3f:03:69:93:01:ec:48:b9:4f:a5:18:1d:83:82:61:fe:23:
f3:1c:70:98:55:a6:fb:c1:08:46:eb:b0:25:a7:34:e2:fa:c9:
25:39:5f:9f:2d:08:8e:a1:a0:e3:57:f2:30:a1:10:41:cd:ba:
75:f7:e5:a7:bb:1d:f5:a5:c5:38:0e:77:00:90:47:7c:b7:89:
0a:7f:e4:e0:a7:c1:d4:87:1f:c0:e1:dd:8d:3b:45:85:45:ac:
e0:9a:fc:fd:e9:d5:d4:e9:dc:fa:42:03:6d:d1:8a:cb:4c:58:
1a:ef:8c:76:c6:0f:ca:a7:9a:b1:97:43:38:89:34:ba:9f:9b:
be:40:95:cd:e1:9f:a8:2c:62:0f:ac:85:5d:16:6f:bb:fb:2c:
21:9b:be:9b:7f:99:41:67:60:33:7f:0f:32:ec:15:72:59:85:
de:f4:46:ca:22:9e:2f:7f:9d:7f:09:7c:81:ad:44:64:42:87:
10:7e:7b:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 01:20:06 2024 by rpki-client on console-fra.rpki-client.org