Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366DC11/995946BC967811EA8799955AF8AEA228/73CF35D0B0D611ECA0847BBD5A40D577.roa
File: 73CF35D0B0D611ECA0847BBD5A40D577.roa (raw, json)
Hash identifier: 5YOdoaN/nTrUVBHfwF7bO4BngZbRv1YMgLNCZWSSDi0=
Subject key identifier: EA:DA:11:77:D8:03:55:D6:CC:9E:B4:6F:C5:11:66:79:E8:03:65:1B
Certificate issuer: /CN=F366DC11AR/serialNumber=7F9EF436B31E592089063C1E6C437CD2C3FEA04B
Certificate serial: 02BE
Authority key identifier: 7F:9E:F4:36:B3:1E:59:20:89:06:3C:1E:6C:43:7C:D2:C3:FE:A0:4B
Authority info access: rsync://rpki.afrinic.net/repository/arin/f570NrMeWSCJBjwebEN80sP-oEs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366DC11/995946BC967811EA8799955AF8AEA228/73CF35D0B0D611ECA0847BBD5A40D577.roa
Signing time: Thu 31 Mar 2022 09:39:25 +0000
ROA not before: Fri 01 Apr 2022 09:39:14 +0000
ROA not after: Wed 31 Mar 2032 09:39:14 +0000
asID: 328638
IP address blocks: 160.226.160.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366DC11/995946BC967811EA8799955AF8AEA228/f570NrMeWSCJBjwebEN80sP-oEs.crl
rsync://rpki.afrinic.net/repository/member_repository/F366DC11/995946BC967811EA8799955AF8AEA228/f570NrMeWSCJBjwebEN80sP-oEs.mft
rsync://rpki.afrinic.net/repository/arin/f570NrMeWSCJBjwebEN80sP-oEs.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 28 Apr 2024 00:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 702 (0x2be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366DC11AR/serialNumber=7F9EF436B31E592089063C1E6C437CD2C3FEA04B
Validity
Not Before: Apr 1 09:39:14 2022 GMT
Not After : Mar 31 09:39:14 2032 GMT
Subject: CN=624576cd-e662
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:16:eb:e8:d9:35:cb:c3:1d:df:87:36:93:63:
72:3c:4c:0b:8c:05:92:69:31:a1:97:2a:b2:0a:d1:
d1:5c:19:c8:f2:28:18:db:d4:5b:2d:73:21:ce:bb:
33:75:d0:0f:f7:8e:9f:c3:07:d2:c3:63:c5:ad:82:
c5:e5:1c:ff:4d:79:b2:1b:d4:bf:8b:b4:b6:82:8b:
b9:e2:e5:c3:66:7d:be:1c:99:01:1f:15:2f:89:92:
54:bd:4b:a1:4b:5e:07:e0:c6:9a:be:67:4b:a4:79:
3e:bf:80:09:76:aa:3e:07:a0:04:c4:f2:42:92:bd:
0b:2e:11:10:02:82:82:54:fa:b9:17:76:bc:07:c5:
63:e6:99:d8:23:69:07:49:83:7b:2f:f8:52:76:d1:
60:a8:fd:89:22:cf:50:f9:c0:87:fb:f5:25:bc:09:
36:89:d3:83:e2:e0:bd:26:2f:06:40:49:60:9b:5a:
e5:cd:cc:36:83:d0:dc:e1:93:c6:a1:d8:f5:2f:36:
e4:03:b6:b1:e8:8c:d5:1e:f7:fc:c1:d4:83:fc:a2:
e1:76:d8:40:7d:36:0b:04:cb:b0:fc:24:8e:a3:9d:
bb:0a:fa:75:87:e4:e9:98:2e:dc:f2:ca:95:0a:51:
6a:de:00:07:a3:3f:35:15:77:2a:96:c9:0f:4f:2d:
19:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:DA:11:77:D8:03:55:D6:CC:9E:B4:6F:C5:11:66:79:E8:03:65:1B
X509v3 Authority Key Identifier:
keyid:7F:9E:F4:36:B3:1E:59:20:89:06:3C:1E:6C:43:7C:D2:C3:FE:A0:4B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366DC11/995946BC967811EA8799955AF8AEA228/f570NrMeWSCJBjwebEN80sP-oEs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/f570NrMeWSCJBjwebEN80sP-oEs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366DC11/995946BC967811EA8799955AF8AEA228/73CF35D0B0D611ECA0847BBD5A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.226.160.0/20
Signature Algorithm: sha256WithRSAEncryption
cc:c4:11:f4:90:c6:6d:6a:e1:bd:a6:5e:bb:0f:0d:46:54:16:
1b:b5:26:e6:64:cb:21:f7:20:52:bf:1b:7d:e2:3c:bc:a0:9c:
40:b3:92:21:d7:f8:0e:ff:cc:a2:16:99:de:45:95:74:b7:3d:
fd:1d:f0:79:2d:f4:45:32:57:d6:75:f8:c6:87:64:2d:0f:88:
31:2c:e3:4f:59:c5:43:46:f0:43:a9:1b:1e:f6:be:51:20:81:
74:e3:8d:06:cd:13:45:8f:57:5f:d3:53:c5:87:28:a0:05:3b:
d1:3b:c4:61:a8:f4:70:35:f3:c5:c0:23:f5:7a:f1:68:b1:f7:
e8:aa:d8:f6:a6:f1:e1:10:12:31:fe:f9:29:9a:61:ac:e4:88:
fe:4e:db:b9:be:fb:5e:4c:ad:9f:5c:c5:6c:8e:93:b0:1c:76:
98:4a:44:72:13:1c:88:b8:06:aa:09:95:21:5f:1d:3c:29:78:
97:e4:de:08:83:31:de:da:56:a7:0c:b2:15:ef:b5:85:bd:a9:
1b:ab:21:8b:1d:89:b0:00:f7:40:bb:3f:3d:ad:e5:df:0f:bf:
69:c6:83:7a:4d:ee:c2:13:f9:6c:86:36:97:4c:9b:68:03:e5:
08:08:f4:c9:81:d3:0d:f1:b4:66:52:88:a6:dd:26:e9:7a:f4:
ab:24:c2:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 02:47:51 2024 by rpki-client on console-ams.rpki-client.org