Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368588E/B5F42540CB2F11E9A6292927F8AEA228/79F59A648E6611EBBC39876CF8AEA228.roa
File: 79F59A648E6611EBBC39876CF8AEA228.roa (raw, json)
Hash identifier: 23hasVT7STzhojJmCnzWqlWjP/WJmmjWHiydYYblzCA=
Subject key identifier: E3:8B:CB:76:D7:2B:0A:50:2E:0C:AE:1C:63:26:0E:D1:92:D5:4E:8C
Certificate issuer: /CN=F368588EAR/serialNumber=86EAEC4294DFBA7045A88642E9DFC4551B34C255
Certificate serial: 025D
Authority key identifier: 86:EA:EC:42:94:DF:BA:70:45:A8:86:42:E9:DF:C4:55:1B:34:C2:55
Authority info access: rsync://rpki.afrinic.net/repository/arin/hursQpTfunBFqIZC6d_EVRs0wlU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368588E/B5F42540CB2F11E9A6292927F8AEA228/79F59A648E6611EBBC39876CF8AEA228.roa
Signing time: Fri 26 Mar 2021 19:07:15 +0000
ROA not before: Fri 26 Mar 2021 19:07:11 +0000
ROA not after: Mon 31 Mar 2031 19:07:11 +0000
asID: 42
IP address blocks: 160.0.0.0/17 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368588E/B5F42540CB2F11E9A6292927F8AEA228/hursQpTfunBFqIZC6d_EVRs0wlU.crl
rsync://rpki.afrinic.net/repository/member_repository/F368588E/B5F42540CB2F11E9A6292927F8AEA228/hursQpTfunBFqIZC6d_EVRs0wlU.mft
rsync://rpki.afrinic.net/repository/arin/hursQpTfunBFqIZC6d_EVRs0wlU.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 23 May 2024 00:16:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 605 (0x25d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368588EAR/serialNumber=86EAEC4294DFBA7045A88642E9DFC4551B34C255
Validity
Not Before: Mar 26 19:07:11 2021 GMT
Not After : Mar 31 19:07:11 2031 GMT
Subject: CN=605e30e3-7897
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:08:cf:7e:38:f1:b2:7f:28:73:2e:bf:69:39:
80:3e:18:8e:a2:1c:2f:2f:7b:88:dc:5c:fc:0a:27:
9d:8b:34:53:ed:e4:1b:2e:ac:87:09:e5:78:fb:7c:
83:de:5d:da:ed:1c:94:9d:5a:fb:77:e4:68:c3:d0:
90:42:65:0d:53:31:01:39:50:13:76:ed:33:f9:18:
55:a7:3f:11:94:42:96:16:eb:1a:f9:e1:9f:c9:14:
cb:e4:e7:6d:d7:2c:49:61:b0:f8:bc:f8:63:0b:51:
45:ac:43:e8:24:fb:d0:ed:e9:a0:8a:04:d1:29:a2:
e7:0e:3e:f3:28:5e:6d:90:f4:70:a8:2b:9c:56:5c:
05:23:98:0d:8f:7b:d1:12:c3:88:e2:7a:40:83:9d:
e0:16:61:ec:78:f4:29:f5:4d:57:59:56:a8:76:01:
77:84:ae:8d:c8:55:67:13:be:7f:fd:a3:9e:84:63:
1f:a5:ef:57:f3:48:4b:05:40:9a:a6:cd:42:b4:19:
25:29:2f:99:7e:f9:0b:11:60:83:29:96:a7:c1:86:
d9:8a:3c:a1:af:dd:ac:4e:c6:40:87:ca:5e:44:96:
cc:d4:ef:18:5d:67:e0:fd:b4:2d:4f:c6:6d:b8:c1:
5d:80:8e:90:11:d7:39:5c:45:6d:b8:d9:4c:31:41:
52:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:8B:CB:76:D7:2B:0A:50:2E:0C:AE:1C:63:26:0E:D1:92:D5:4E:8C
X509v3 Authority Key Identifier:
keyid:86:EA:EC:42:94:DF:BA:70:45:A8:86:42:E9:DF:C4:55:1B:34:C2:55
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368588E/B5F42540CB2F11E9A6292927F8AEA228/hursQpTfunBFqIZC6d_EVRs0wlU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/hursQpTfunBFqIZC6d_EVRs0wlU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368588E/B5F42540CB2F11E9A6292927F8AEA228/79F59A648E6611EBBC39876CF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.0.0.0/17
Signature Algorithm: sha256WithRSAEncryption
5d:e6:42:88:a8:07:74:33:d8:54:f5:ae:5c:df:e0:32:1f:ab:
3e:5e:4e:00:85:48:e9:35:7f:a2:8e:30:14:eb:e7:bc:a7:2b:
33:e3:dd:9a:4f:e1:fa:b1:02:50:5a:32:46:23:3b:22:61:90:
c1:c9:1c:f2:30:4f:70:15:d6:2b:d0:88:86:47:8d:2b:7e:75:
41:06:34:7a:f0:fa:98:82:2b:59:e0:c4:e5:8a:6c:8b:04:09:
d2:b6:26:03:91:5a:d6:58:78:2b:6e:94:f2:fa:e4:74:0b:4d:
88:02:2c:7d:79:ef:42:a8:0d:3d:3e:6f:2e:15:17:be:b4:f9:
3d:9b:c0:94:90:f8:22:a6:e0:33:46:71:9d:af:2f:a5:03:7e:
73:bb:e0:12:a6:18:6a:ce:ed:fc:ff:30:ff:80:45:67:6c:3c:
8d:87:42:b7:67:6a:88:eb:b8:f3:cb:4a:f8:34:bb:87:f6:97:
f1:ac:c5:f6:d6:c9:ec:b8:01:ea:88:08:a3:f9:6b:8c:ac:cc:
ce:48:77:99:75:a9:ae:bf:80:5d:6d:4f:6b:9b:99:5a:5b:a3:
7e:bb:b5:e1:c5:7a:db:39:d8:27:f1:e6:ab:91:3a:40:34:ae:
d8:d1:6c:8a:9a:37:0a:b2:c1:27:cc:01:09:c5:d7:79:63:f5:
ec:4f:c5:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 01:50:07 2024 by rpki-client on console-ams.rpki-client.org