Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3656177/C2857264C85811E6A8EE465FF8AEA228/B0CB3182C8C611E9B220F755F8AEA228.roa
File: B0CB3182C8C611E9B220F755F8AEA228.roa (raw, json)
Hash identifier: gqrU/z6iXLRtLiCnHFZa0s+2uBK1Ct+5G7ihg1BeuL0=
Subject key identifier: AD:12:10:C3:21:4B:F0:AA:73:60:8D:10:7F:34:0D:90:52:2D:EC:39
Certificate issuer: /CN=F3656177AR/serialNumber=1A8F0F74FA3A602F47FCEC36B8B3F79E21F30018
Certificate serial: 03E5
Authority key identifier: 1A:8F:0F:74:FA:3A:60:2F:47:FC:EC:36:B8:B3:F7:9E:21:F3:00:18
Authority info access: rsync://rpki.afrinic.net/repository/arin/Go8PdPo6YC9H_Ow2uLP3niHzABg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3656177/C2857264C85811E6A8EE465FF8AEA228/B0CB3182C8C611E9B220F755F8AEA228.roa
Signing time: Tue 27 Aug 2019 12:32:11 +0000
ROA not before: Tue 27 Aug 2019 12:32:05 +0000
ROA not after: Mon 27 Aug 2029 12:32:05 +0000
asID: 328032
IP address blocks: 164.160.44.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3656177/C2857264C85811E6A8EE465FF8AEA228/Go8PdPo6YC9H_Ow2uLP3niHzABg.crl
rsync://rpki.afrinic.net/repository/member_repository/F3656177/C2857264C85811E6A8EE465FF8AEA228/Go8PdPo6YC9H_Ow2uLP3niHzABg.mft
rsync://rpki.afrinic.net/repository/arin/Go8PdPo6YC9H_Ow2uLP3niHzABg.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 26 Apr 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 997 (0x3e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3656177AR/serialNumber=1A8F0F74FA3A602F47FCEC36B8B3F79E21F30018
Validity
Not Before: Aug 27 12:32:05 2019 GMT
Not After : Aug 27 12:32:05 2029 GMT
Subject: CN=5d6522cb-45f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:09:26:48:25:95:c0:92:8d:3e:2d:60:dc:5d:
48:2f:ee:3e:df:29:f0:d8:3f:ba:b6:51:d1:51:cb:
75:0b:6f:64:ec:c7:e5:75:ae:c1:ca:a5:2e:79:89:
04:68:fe:07:9f:ca:1b:8e:57:74:66:46:03:91:16:
1f:18:b6:fa:ae:30:7f:cc:ef:a6:e4:a3:d0:9b:c6:
25:d4:40:03:79:be:93:9e:c0:20:9b:36:7a:c7:1b:
25:a2:68:9f:06:63:35:0b:b8:c9:82:fc:05:15:90:
06:8f:23:a0:8d:ca:05:fc:3d:3b:ef:48:61:5c:ac:
e9:d8:3c:ff:67:66:c6:04:9a:95:b2:9b:6c:92:5e:
11:a9:73:ad:51:69:12:21:66:5e:d0:66:c5:31:12:
18:95:b9:cf:67:39:26:cb:54:21:ad:bd:4e:2c:c0:
6e:d6:28:2a:11:37:47:69:1d:95:a3:e0:5a:b1:86:
c1:4a:15:3c:ef:bd:19:bc:78:d9:8d:76:40:bc:e6:
68:b3:04:c6:29:45:5d:f8:58:4d:a8:bc:a2:d1:1b:
4e:18:3a:de:87:4a:0a:f3:d3:5e:2c:0d:08:b5:a5:
67:a2:52:3b:e6:64:53:e9:8a:e7:51:91:35:95:21:
3a:7e:d4:59:b9:67:1f:84:5a:25:19:c2:92:87:ae:
78:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:12:10:C3:21:4B:F0:AA:73:60:8D:10:7F:34:0D:90:52:2D:EC:39
X509v3 Authority Key Identifier:
keyid:1A:8F:0F:74:FA:3A:60:2F:47:FC:EC:36:B8:B3:F7:9E:21:F3:00:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3656177/C2857264C85811E6A8EE465FF8AEA228/Go8PdPo6YC9H_Ow2uLP3niHzABg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/Go8PdPo6YC9H_Ow2uLP3niHzABg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3656177/C2857264C85811E6A8EE465FF8AEA228/B0CB3182C8C611E9B220F755F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
164.160.44.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:68:99:8f:f3:ef:07:f0:d8:03:af:05:0e:1f:0f:b2:82:27:
a7:2f:27:20:73:13:cb:6c:44:36:d5:c7:2b:74:80:dd:20:71:
14:81:ba:d1:94:e8:2b:a7:3e:15:18:e6:30:3f:c0:70:8c:74:
9f:52:24:d6:23:cf:42:91:10:b5:41:77:1f:26:81:39:44:ab:
f0:7e:52:3a:6f:6b:6a:4c:6d:ea:c2:2e:cf:b6:05:7c:f5:be:
84:68:b4:29:7e:6a:fc:39:ea:9a:1f:ba:e1:84:49:a6:89:9d:
42:c3:6f:41:a1:0f:ac:46:41:7b:74:8b:fc:58:5e:36:9f:77:
7e:64:a7:cc:da:b6:b5:02:26:22:b4:10:75:fe:e3:56:46:47:
3c:12:55:6d:14:51:69:fe:f7:dc:c2:b0:59:6d:66:36:c1:7d:
15:02:c7:24:48:ae:b3:fa:d1:9e:52:dc:00:ca:f6:57:7d:8b:
de:95:64:d6:c7:a5:3f:47:0a:11:0c:09:b2:c8:25:7b:63:70:
ad:89:fb:e6:01:61:56:6c:67:8e:9d:82:0f:4f:cf:c0:fc:64:
fc:87:d5:27:91:5b:48:2e:f4:f7:7e:fe:22:04:3c:d0:16:f4:
88:c1:45:87:b4:3a:e6:03:6c:b7:25:fb:b0:d2:0b:d1:1c:fc:
cb:66:74:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 01:49:49 2024 by rpki-client on console-fra.rpki-client.org