Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368588E/B5F42540CB2F11E9A6292927F8AEA228/2A782EBC8E6511EBBA24DF6AF8AEA228.roa
File: 2A782EBC8E6511EBBA24DF6AF8AEA228.roa (raw, json)
Hash identifier: yGZ6SnXS1RSRZj/wE1QJtTRTtRj6tcY4vFXhT5iHrl4=
Subject key identifier: DA:86:60:89:87:63:17:AC:22:88:51:26:ED:E5:18:58:2D:07:51:18
Certificate issuer: /CN=F368588EAR/serialNumber=86EAEC4294DFBA7045A88642E9DFC4551B34C255
Certificate serial: 025B
Authority key identifier: 86:EA:EC:42:94:DF:BA:70:45:A8:86:42:E9:DF:C4:55:1B:34:C2:55
Authority info access: rsync://rpki.afrinic.net/repository/arin/hursQpTfunBFqIZC6d_EVRs0wlU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368588E/B5F42540CB2F11E9A6292927F8AEA228/2A782EBC8E6511EBBA24DF6AF8AEA228.roa
Signing time: Fri 26 Mar 2021 18:57:52 +0000
ROA not before: Fri 26 Mar 2021 18:57:47 +0000
ROA not after: Mon 31 Mar 2031 18:57:47 +0000
asID: 715
IP address blocks: 45.221.0.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368588E/B5F42540CB2F11E9A6292927F8AEA228/hursQpTfunBFqIZC6d_EVRs0wlU.crl
rsync://rpki.afrinic.net/repository/member_repository/F368588E/B5F42540CB2F11E9A6292927F8AEA228/hursQpTfunBFqIZC6d_EVRs0wlU.mft
rsync://rpki.afrinic.net/repository/arin/hursQpTfunBFqIZC6d_EVRs0wlU.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 603 (0x25b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368588EAR/serialNumber=86EAEC4294DFBA7045A88642E9DFC4551B34C255
Validity
Not Before: Mar 26 18:57:47 2021 GMT
Not After : Mar 31 18:57:47 2031 GMT
Subject: CN=605e2eb0-42dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:91:59:4e:84:46:49:d9:07:1e:57:63:0c:bd:
cb:60:87:3d:3d:2e:8d:c2:26:f1:e0:fa:51:04:b2:
54:31:30:7b:a7:be:c8:59:5d:5c:68:30:5f:d5:41:
3b:72:8f:78:f2:11:09:a6:20:f6:1a:e7:bd:5f:a9:
63:7a:de:ec:99:1d:c5:96:cd:04:c1:1e:5b:89:5d:
3a:e9:cf:f2:7a:1e:8b:2f:f0:0f:63:f3:03:3c:cc:
ed:03:43:a5:8e:c6:54:be:ef:0c:6e:dd:04:00:5c:
0c:d6:a8:7d:7b:af:93:bf:7c:aa:a6:3d:06:bc:63:
2d:03:f0:d2:36:4a:6a:17:3f:81:e2:55:30:07:65:
fc:83:90:f5:b9:a9:02:52:91:ac:92:5e:96:34:6e:
42:c5:41:8f:ea:b9:81:82:31:11:be:86:f2:1f:d9:
36:2b:96:29:9c:14:99:a7:dd:67:81:91:f1:bd:d2:
11:29:62:f9:5b:c3:78:2c:0f:83:a4:36:d6:cb:a0:
c3:09:62:f7:04:45:9d:56:75:41:9d:3c:2b:0b:6f:
56:b0:64:e7:59:8c:f8:45:a4:9d:c0:77:7e:e3:15:
97:4b:1b:f7:12:e9:37:81:d5:33:ae:7f:f9:85:02:
4b:2f:51:e0:12:43:f5:0d:7c:7d:4b:39:85:2e:58:
3c:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:86:60:89:87:63:17:AC:22:88:51:26:ED:E5:18:58:2D:07:51:18
X509v3 Authority Key Identifier:
keyid:86:EA:EC:42:94:DF:BA:70:45:A8:86:42:E9:DF:C4:55:1B:34:C2:55
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368588E/B5F42540CB2F11E9A6292927F8AEA228/hursQpTfunBFqIZC6d_EVRs0wlU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/hursQpTfunBFqIZC6d_EVRs0wlU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368588E/B5F42540CB2F11E9A6292927F8AEA228/2A782EBC8E6511EBBA24DF6AF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.221.0.0/22
Signature Algorithm: sha256WithRSAEncryption
41:c6:c3:f5:32:77:b5:a8:b2:42:31:b9:4f:6e:ea:35:f7:1f:
74:3f:d4:2c:6a:48:83:0e:bd:6a:6d:01:52:ea:5f:9d:de:94:
f1:3a:45:9f:03:11:a1:14:8d:c2:7f:96:df:5d:9e:2e:ab:b6:
27:51:96:ad:91:8c:9b:9c:55:7d:a5:0d:b3:91:7e:70:c4:d1:
b9:64:60:3a:13:00:39:3d:89:a2:88:fc:b2:9b:3f:a0:e2:0b:
70:27:d8:fd:75:1b:80:b4:7f:c4:fc:8c:37:15:0e:7f:c1:17:
49:18:9e:60:ed:5f:38:4e:b5:9c:a6:ee:86:eb:68:81:52:69:
e8:ff:94:62:a3:f9:18:cb:75:8a:7a:df:f7:c9:31:03:d4:8f:
de:8a:be:4c:ec:5e:b4:66:76:b2:91:d9:6b:66:24:97:52:41:
61:99:6e:d6:53:4d:75:bb:79:28:5a:30:ce:1a:4d:e0:02:1d:
e3:7e:10:20:73:95:e0:87:3f:38:51:70:72:83:f0:e0:53:78:
e6:d2:1d:49:e8:20:ec:cb:85:00:5d:bf:c9:9d:a3:e0:67:3e:
50:02:b8:c5:12:35:a1:40:18:01:9e:c1:3b:39:cc:d3:75:95:
a2:19:56:7c:b0:a4:26:69:58:22:a9:2a:78:a3:55:ca:3b:aa:
ab:76:ea:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:57 2024 by rpki-client on console-fra.rpki-client.org