Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3656177/C2857264C85811E6A8EE465FF8AEA228/66123256C8C811E99A726E58F8AEA228.roa
File: 66123256C8C811E99A726E58F8AEA228.roa (raw, json)
Hash identifier: u5cowoJMX4Hxd12oQmnhhFSMAoh12QYhoXjiZuk5pKI=
Subject key identifier: 5A:59:0A:05:17:C0:A7:ED:42:05:FE:E2:93:9C:3B:4F:1D:26:C8:84
Certificate issuer: /CN=F3656177AR/serialNumber=1A8F0F74FA3A602F47FCEC36B8B3F79E21F30018
Certificate serial: 03EF
Authority key identifier: 1A:8F:0F:74:FA:3A:60:2F:47:FC:EC:36:B8:B3:F7:9E:21:F3:00:18
Authority info access: rsync://rpki.afrinic.net/repository/arin/Go8PdPo6YC9H_Ow2uLP3niHzABg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3656177/C2857264C85811E6A8EE465FF8AEA228/66123256C8C811E99A726E58F8AEA228.roa
Signing time: Tue 27 Aug 2019 12:44:25 +0000
ROA not before: Tue 27 Aug 2019 12:44:20 +0000
ROA not after: Wed 29 Aug 2029 12:44:20 +0000
asID: 328032
IP address blocks: 164.160.46.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3656177/C2857264C85811E6A8EE465FF8AEA228/Go8PdPo6YC9H_Ow2uLP3niHzABg.crl
rsync://rpki.afrinic.net/repository/member_repository/F3656177/C2857264C85811E6A8EE465FF8AEA228/Go8PdPo6YC9H_Ow2uLP3niHzABg.mft
rsync://rpki.afrinic.net/repository/arin/Go8PdPo6YC9H_Ow2uLP3niHzABg.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 27 Apr 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1007 (0x3ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3656177AR/serialNumber=1A8F0F74FA3A602F47FCEC36B8B3F79E21F30018
Validity
Not Before: Aug 27 12:44:20 2019 GMT
Not After : Aug 29 12:44:20 2029 GMT
Subject: CN=5d6525a8-a5cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:6f:a3:45:67:d0:72:04:37:77:fd:34:11:d3:
4c:0c:ca:9c:9e:f4:df:1e:de:ab:1f:94:d6:66:c0:
28:3a:8e:62:17:fc:f9:81:dd:ba:39:cd:32:b5:cc:
99:6d:9e:43:88:17:38:a3:fc:4a:5b:ff:60:81:8d:
8f:ab:8a:82:7a:c6:6a:ad:9c:87:c7:b3:a3:6b:f7:
e8:a3:40:74:c1:e1:3c:3c:9a:45:57:65:4d:dc:cd:
d8:94:88:d7:3c:0a:0f:08:f8:f3:1f:03:21:9a:17:
54:31:12:ac:4f:1e:56:9b:2a:3b:16:6f:2b:c4:2c:
18:d8:66:04:b5:20:fa:c4:b8:a6:8e:19:da:27:02:
f2:f0:96:e7:03:13:5a:3d:38:79:72:02:84:c7:fe:
2e:53:eb:4f:fe:b6:0e:89:6b:73:e0:b0:d4:ae:57:
5a:b1:51:e6:f5:72:af:63:4a:3e:1d:ce:68:ea:04:
73:a0:10:dc:dc:7c:04:b3:a7:cd:5e:8c:dd:c8:de:
01:9a:ad:c5:0c:b5:9f:c2:c9:3f:ee:ae:57:bb:79:
45:3f:dc:5f:49:3d:cb:f6:f3:f8:68:a6:a6:82:47:
5b:b4:c7:71:8a:76:5a:53:b6:ef:eb:57:92:0b:6c:
97:89:3c:6f:f5:25:a9:43:41:e2:aa:af:d8:da:94:
59:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:59:0A:05:17:C0:A7:ED:42:05:FE:E2:93:9C:3B:4F:1D:26:C8:84
X509v3 Authority Key Identifier:
keyid:1A:8F:0F:74:FA:3A:60:2F:47:FC:EC:36:B8:B3:F7:9E:21:F3:00:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3656177/C2857264C85811E6A8EE465FF8AEA228/Go8PdPo6YC9H_Ow2uLP3niHzABg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/Go8PdPo6YC9H_Ow2uLP3niHzABg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3656177/C2857264C85811E6A8EE465FF8AEA228/66123256C8C811E99A726E58F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
164.160.46.0/23
Signature Algorithm: sha256WithRSAEncryption
25:51:2b:1a:8b:42:67:e9:d0:44:da:70:16:6e:72:79:0d:2a:
70:66:43:7b:c3:cc:20:74:2a:71:65:79:0f:dd:97:59:55:73:
1b:94:a1:a9:d8:34:04:7f:68:53:db:cc:47:af:8e:09:9d:bc:
d5:fc:d1:4e:67:86:ac:a8:64:af:d2:8d:76:22:18:93:82:91:
9e:20:82:8c:92:da:29:f1:ab:01:11:70:2d:3d:f7:6b:38:60:
72:53:ea:ea:14:b9:7c:07:7e:e9:34:0d:1d:7e:b5:f5:6b:50:
7c:5a:c1:39:ac:55:03:1f:5a:3b:bc:7a:1a:64:85:b5:8d:80:
9f:07:b5:1b:e6:c0:1b:7b:14:df:c2:78:5f:62:d1:f4:d9:6a:
54:5b:a5:bb:ca:74:81:06:c8:2e:b3:5d:fb:f3:79:86:35:b7:
f7:19:9d:54:d0:67:c2:57:8a:f2:f1:3e:41:ac:56:cf:01:ca:
5d:ca:77:2b:6a:5c:b1:5e:2c:3b:f2:31:78:32:72:89:67:0e:
9f:4a:8a:bf:15:be:47:d5:8e:ee:5d:a8:68:5b:91:6d:0f:76:
44:6f:09:a1:3d:6e:c1:2a:c5:4a:4d:4e:c3:58:c7:1b:0e:83:
a0:ee:45:60:1f:34:b9:e7:a6:4d:1d:f5:6d:50:4b:eb:df:d5:
2c:8b:09:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 02:00:23 2024 by rpki-client on console-ams.rpki-client.org