Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366FAD3/666F962464DF11E8AFE47627F8AEA228/053A807256FF11E996D74E7BF8AEA228.roa
File: 053A807256FF11E996D74E7BF8AEA228.roa (raw, json)
Hash identifier: hO2TDaSMWg20HoMHgfojmos9nkNQYyH0a66GXivwXhY=
Subject key identifier: 91:8E:22:33:56:7D:3A:44:46:B4:61:77:45:01:8A:EB:68:CE:89:36
Certificate issuer: /CN=F366FAD3AF/serialNumber=6B90FE34A8669A8838FD238CC65A1152C4416505
Certificate serial: 0147
Authority key identifier: 6B:90:FE:34:A8:66:9A:88:38:FD:23:8C:C6:5A:11:52:C4:41:65:05
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/a5D-NKhmmog4_SOMxloRUsRBZQU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366FAD3/666F962464DF11E8AFE47627F8AEA228/053A807256FF11E996D74E7BF8AEA228.roa
Signing time: Thu 04 Apr 2019 17:28:12 +0000
ROA not before: Thu 04 Apr 2019 17:28:07 +0000
ROA not after: Wed 04 Apr 2029 17:28:07 +0000
asID: 328262
IP address blocks: 102.177.64.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F366FAD3/666F962464DF11E8AFE47627F8AEA228/a5D-NKhmmog4_SOMxloRUsRBZQU.crl
rsync://rpki.afrinic.net/repository/member_repository/F366FAD3/666F962464DF11E8AFE47627F8AEA228/a5D-NKhmmog4_SOMxloRUsRBZQU.mft
rsync://rpki.afrinic.net/repository/afrinic/a5D-NKhmmog4_SOMxloRUsRBZQU.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 07 May 2024 00:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 327 (0x147)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366FAD3AF/serialNumber=6B90FE34A8669A8838FD238CC65A1152C4416505
Validity
Not Before: Apr 4 17:28:07 2019 GMT
Not After : Apr 4 17:28:07 2029 GMT
Subject: CN=5ca63eac-8836
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:25:86:f8:9a:fd:1b:13:3b:21:4c:31:a0:46:
77:cc:fb:98:78:aa:44:f9:22:49:61:b4:0a:68:57:
57:74:4b:0a:40:59:16:ec:6a:e2:a4:43:68:13:5c:
de:22:43:9d:15:eb:8b:a3:14:8c:75:17:09:27:eb:
e5:4d:7f:35:36:11:8f:e3:1d:fc:fb:49:3b:23:79:
9e:46:43:0f:40:a1:64:3e:ce:e7:7a:c2:da:7a:41:
90:51:c8:6f:4a:9c:3e:7b:22:e9:e8:44:80:b5:c1:
dd:6e:72:71:71:01:5c:84:d1:ff:9c:00:6b:ff:17:
c7:a8:4e:a1:3e:91:30:2f:e2:ea:0f:62:2e:ae:f7:
e7:0d:09:12:33:48:e5:1d:1b:a8:4a:a7:45:5b:9e:
ad:86:4c:8e:b7:eb:7e:0b:02:c5:6c:17:1d:18:44:
11:10:85:71:c6:57:22:3f:89:5a:b4:81:ce:ef:33:
58:4b:6b:ed:82:29:b9:1a:1b:80:a3:78:49:75:bd:
8d:07:93:4d:ed:98:77:c8:fa:78:5e:98:da:dd:cc:
d5:12:12:5b:30:2a:24:de:28:bf:64:67:85:51:5d:
da:8c:68:8b:17:34:89:b7:be:c3:1e:ac:1d:ee:60:
24:90:87:4a:fe:f2:71:bf:77:0c:ca:43:a4:f7:79:
64:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:8E:22:33:56:7D:3A:44:46:B4:61:77:45:01:8A:EB:68:CE:89:36
X509v3 Authority Key Identifier:
keyid:6B:90:FE:34:A8:66:9A:88:38:FD:23:8C:C6:5A:11:52:C4:41:65:05
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366FAD3/666F962464DF11E8AFE47627F8AEA228/a5D-NKhmmog4_SOMxloRUsRBZQU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/a5D-NKhmmog4_SOMxloRUsRBZQU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366FAD3/666F962464DF11E8AFE47627F8AEA228/053A807256FF11E996D74E7BF8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
102.177.64.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:7e:aa:43:e0:d6:a9:1e:46:55:9f:71:8a:b1:dc:c3:0d:c9:
f5:82:a6:fc:55:51:06:e1:bd:04:72:74:fd:d1:4c:96:51:b4:
78:25:b3:ac:1b:8c:1d:1b:2c:49:39:d5:74:e1:54:45:d6:d1:
5a:e8:db:ab:91:6b:ef:06:42:e1:90:50:d1:0a:96:83:ed:24:
21:80:ab:e1:a3:9a:af:3f:7e:17:ad:6a:1c:ae:28:9f:e3:43:
21:03:ed:1c:a2:62:90:ff:65:fe:14:5c:2a:13:3e:c0:0d:bb:
17:4a:cd:c6:93:4e:f2:ad:8e:7a:fb:00:bf:8f:f3:4d:e2:e9:
cd:2e:70:fa:78:eb:ec:2e:53:3c:70:e2:8b:dd:a7:14:f4:1b:
1a:45:79:4b:cd:02:38:d2:5b:5c:48:73:49:65:d7:4c:95:e4:
e6:3a:df:e5:39:e1:a3:40:af:8d:f2:56:77:ce:4f:a5:49:92:
4d:4d:59:b0:79:d1:4c:10:26:3e:25:ec:c3:72:c8:8f:c5:cf:
54:d8:0f:05:c5:cb:78:bb:4e:71:5a:1a:45:d4:06:34:c5:63:
e4:91:c2:3c:09:85:14:11:15:bf:a8:ce:f5:b2:2d:74:ad:24:
f2:eb:48:9f:fc:71:dd:8a:0b:dd:28:f8:bc:ce:16:c3:5c:61:
97:94:db:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 01:22:17 2024 by rpki-client on console-fra.rpki-client.org