Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368588E/B5F42540CB2F11E9A6292927F8AEA228/A15549308E6411EBA8883A6AF8AEA228.roa
File: A15549308E6411EBA8883A6AF8AEA228.roa (raw, json)
Hash identifier: rMD9Bdkw1CGzfMpgpTrn426f5jHiNnuNNjjZcqe2kgo=
Subject key identifier: 3E:43:BA:EC:62:20:01:6B:BA:88:AC:FC:98:AA:71:33:1C:14:A9:1F
Certificate issuer: /CN=F368588EAR/serialNumber=86EAEC4294DFBA7045A88642E9DFC4551B34C255
Certificate serial: 0255
Authority key identifier: 86:EA:EC:42:94:DF:BA:70:45:A8:86:42:E9:DF:C4:55:1B:34:C2:55
Authority info access: rsync://rpki.afrinic.net/repository/arin/hursQpTfunBFqIZC6d_EVRs0wlU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368588E/B5F42540CB2F11E9A6292927F8AEA228/A15549308E6411EBA8883A6AF8AEA228.roa
Signing time: Fri 26 Mar 2021 18:54:02 +0000
ROA not before: Fri 26 Mar 2021 18:53:57 +0000
ROA not after: Mon 31 Mar 2031 18:53:57 +0000
asID: 42
IP address blocks: 45.221.16.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368588E/B5F42540CB2F11E9A6292927F8AEA228/hursQpTfunBFqIZC6d_EVRs0wlU.crl
rsync://rpki.afrinic.net/repository/member_repository/F368588E/B5F42540CB2F11E9A6292927F8AEA228/hursQpTfunBFqIZC6d_EVRs0wlU.mft
rsync://rpki.afrinic.net/repository/arin/hursQpTfunBFqIZC6d_EVRs0wlU.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 597 (0x255)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368588EAR/serialNumber=86EAEC4294DFBA7045A88642E9DFC4551B34C255
Validity
Not Before: Mar 26 18:53:57 2021 GMT
Not After : Mar 31 18:53:57 2031 GMT
Subject: CN=605e2dca-9af4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:eb:fc:87:4d:2a:45:2c:39:73:53:e1:7c:96:
46:c2:6c:68:6f:73:96:4d:02:2d:43:5f:78:13:23:
7f:c4:6d:82:7d:ec:30:dc:d8:65:04:3f:89:10:d2:
b8:c9:bd:40:e4:7d:48:3f:d5:a3:be:d6:f7:a1:e0:
b0:a7:d2:02:e1:71:c8:1b:97:0a:7f:7a:2c:70:cc:
2c:a9:a8:b8:3d:b4:63:ee:b8:1a:e4:88:a5:de:a5:
b9:f4:a2:d2:f9:ab:9e:df:2c:2b:f3:e1:7d:32:13:
fd:23:d5:dd:f6:b8:39:3f:9d:2e:76:9d:0e:bf:1c:
83:f5:0f:44:b3:f1:6f:4c:71:14:5c:8a:2c:0f:64:
7e:77:62:8a:91:5a:5e:d6:1a:ce:ad:08:21:07:32:
64:db:98:d8:bd:04:bf:ee:33:d3:b7:60:01:6f:31:
43:cc:5c:21:18:46:1e:79:44:45:bb:be:f5:78:63:
89:98:89:c2:9c:38:78:d1:5c:69:71:c4:57:2d:d6:
f9:4f:0a:86:40:26:7f:68:cc:40:be:5a:1d:e1:09:
d1:06:c4:d6:59:7a:d9:4f:9e:57:18:2a:ed:b6:12:
ad:cd:14:0e:4c:e1:32:c2:83:fa:e6:b6:44:20:b1:
9d:ea:b6:4b:14:d5:e4:70:84:4d:42:27:b0:5a:b7:
c1:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:43:BA:EC:62:20:01:6B:BA:88:AC:FC:98:AA:71:33:1C:14:A9:1F
X509v3 Authority Key Identifier:
keyid:86:EA:EC:42:94:DF:BA:70:45:A8:86:42:E9:DF:C4:55:1B:34:C2:55
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368588E/B5F42540CB2F11E9A6292927F8AEA228/hursQpTfunBFqIZC6d_EVRs0wlU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/hursQpTfunBFqIZC6d_EVRs0wlU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368588E/B5F42540CB2F11E9A6292927F8AEA228/A15549308E6411EBA8883A6AF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.221.16.0/22
Signature Algorithm: sha256WithRSAEncryption
11:22:af:db:24:81:ef:d7:84:6d:45:21:f2:c7:cd:c0:7b:8d:
be:f5:94:50:80:cf:c8:fb:20:72:7b:9d:a2:c5:48:ea:b0:d5:
c5:87:c1:42:17:72:52:08:0a:0c:cc:17:1a:70:d0:3f:33:19:
64:71:47:0e:b8:91:a5:b7:6c:a2:a2:be:af:dd:b9:dd:00:7d:
e7:a9:61:72:8c:d6:29:b9:3e:d2:59:ce:2b:09:3b:95:c7:ff:
69:ae:0f:b7:fe:1c:b1:cf:1b:9a:2a:42:a3:da:55:d9:28:a7:
36:7d:ff:1c:1d:49:28:a2:4b:ba:1a:90:fb:9d:c5:16:ae:e7:
5b:fe:6c:d4:9a:d3:4c:af:1a:41:ac:6d:44:79:08:67:97:51:
e1:35:a6:de:b4:02:d6:57:c9:ea:ca:05:38:21:ab:86:45:75:
f8:ec:15:82:aa:fd:09:ea:84:0a:07:a9:7c:62:5e:66:27:0d:
51:3b:c0:91:ab:7b:40:8a:1e:04:eb:28:48:c5:4e:12:9b:db:
ab:a7:18:3c:c3:81:05:ba:4f:de:c1:4c:0e:4e:71:f7:32:8b:
3f:21:62:45:b3:d4:95:26:fd:c8:09:23:ba:e4:68:77:11:75:
7a:de:97:c3:99:4d:ad:e6:3f:ee:72:c5:de:ae:e6:75:79:5d:
ab:b1:c6:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:57 2024 by rpki-client on console-fra.rpki-client.org