Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368588E/B5F42540CB2F11E9A6292927F8AEA228/D1CB5D328E6611EB8E50DC6CF8AEA228.roa
File: D1CB5D328E6611EB8E50DC6CF8AEA228.roa (raw, json)
Hash identifier: Uj+iO4kxeUkmUkuThovmvQFW6hvGQ4iYoLoY2th9wkk=
Subject key identifier: 84:F0:F0:86:8A:D0:DF:44:15:6E:A0:7F:74:4F:27:10:DD:3C:5E:FB
Certificate issuer: /CN=F368588EAR/serialNumber=86EAEC4294DFBA7045A88642E9DFC4551B34C255
Certificate serial: 0261
Authority key identifier: 86:EA:EC:42:94:DF:BA:70:45:A8:86:42:E9:DF:C4:55:1B:34:C2:55
Authority info access: rsync://rpki.afrinic.net/repository/arin/hursQpTfunBFqIZC6d_EVRs0wlU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368588E/B5F42540CB2F11E9A6292927F8AEA228/D1CB5D328E6611EB8E50DC6CF8AEA228.roa
Signing time: Fri 26 Mar 2021 19:09:42 +0000
ROA not before: Fri 26 Mar 2021 19:09:38 +0000
ROA not after: Mon 31 Mar 2031 19:09:38 +0000
asID: 19281
IP address blocks: 160.0.0.0/17 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368588E/B5F42540CB2F11E9A6292927F8AEA228/hursQpTfunBFqIZC6d_EVRs0wlU.crl
rsync://rpki.afrinic.net/repository/member_repository/F368588E/B5F42540CB2F11E9A6292927F8AEA228/hursQpTfunBFqIZC6d_EVRs0wlU.mft
rsync://rpki.afrinic.net/repository/arin/hursQpTfunBFqIZC6d_EVRs0wlU.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 609 (0x261)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368588EAR/serialNumber=86EAEC4294DFBA7045A88642E9DFC4551B34C255
Validity
Not Before: Mar 26 19:09:38 2021 GMT
Not After : Mar 31 19:09:38 2031 GMT
Subject: CN=605e3176-631f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d5:f7:d0:3c:1f:b2:53:15:42:8e:1e:9f:29:
24:71:ad:71:7b:d0:37:43:c5:e1:96:36:17:e6:30:
06:d4:4b:2d:24:53:db:e8:9d:35:b5:74:bb:32:0d:
fa:42:46:0d:34:79:80:06:53:3f:e1:f9:42:e4:b5:
f4:87:34:e5:c6:fd:18:75:fc:b2:97:c7:0b:3e:e5:
f3:28:fe:07:41:35:a5:bd:e3:f4:22:50:c4:2e:ba:
ad:71:b7:df:8c:8e:48:c6:60:57:9e:4d:50:9a:d8:
7d:90:49:f3:c3:67:c3:f5:2e:dd:23:d9:4f:68:45:
d7:7d:b7:fa:98:4b:41:41:78:fc:2b:16:80:60:39:
3f:04:e9:d3:64:d6:1b:3a:01:9a:58:f6:83:c9:69:
8a:6f:9a:11:52:65:7c:a8:7a:3c:2c:0a:51:46:cb:
64:12:fc:b9:da:95:75:11:66:96:4a:10:27:4c:ef:
bd:17:e2:fe:20:b2:6e:a1:11:82:ec:75:4d:7d:82:
c2:28:36:d1:d2:14:2d:77:ed:dc:e7:01:c6:e0:b0:
eb:2d:8c:68:5c:16:d7:02:17:4f:37:a0:71:73:f8:
29:ea:0b:c7:05:56:cb:e8:b0:a2:20:15:2d:59:cd:
58:09:62:dc:df:86:3c:56:96:44:22:c2:2e:eb:45:
10:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:F0:F0:86:8A:D0:DF:44:15:6E:A0:7F:74:4F:27:10:DD:3C:5E:FB
X509v3 Authority Key Identifier:
keyid:86:EA:EC:42:94:DF:BA:70:45:A8:86:42:E9:DF:C4:55:1B:34:C2:55
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368588E/B5F42540CB2F11E9A6292927F8AEA228/hursQpTfunBFqIZC6d_EVRs0wlU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/hursQpTfunBFqIZC6d_EVRs0wlU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368588E/B5F42540CB2F11E9A6292927F8AEA228/D1CB5D328E6611EB8E50DC6CF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.0.0.0/17
Signature Algorithm: sha256WithRSAEncryption
6f:54:36:bb:fe:fe:24:c0:8f:12:a2:8f:94:ac:f2:23:58:21:
9a:11:2e:06:f6:8e:36:f4:e6:8f:05:2a:39:d8:7f:13:9f:7f:
a2:33:be:51:06:c3:f4:12:d5:d1:e5:fc:ff:fd:ce:32:d9:d7:
74:75:08:9e:f8:1b:f7:7a:79:a8:4f:cc:42:70:12:53:bf:cc:
75:c4:8f:18:88:e6:06:73:cc:d5:0d:42:1a:95:d1:e5:e7:5d:
51:30:ea:a8:2e:8f:29:c9:4f:28:80:94:cd:f5:2e:3c:ef:18:
a5:6e:12:b9:4a:11:ce:18:b3:45:6c:db:f6:91:d0:61:19:50:
77:92:ab:fc:6c:14:9e:e6:aa:29:a1:b8:5e:61:9a:25:1b:99:
57:7f:8e:55:7c:d1:0a:f1:42:6e:33:fc:90:67:27:3f:8e:60:
ff:6f:db:c1:a7:e5:c7:69:cf:38:81:a4:8c:58:46:ca:af:ba:
28:b0:42:63:b3:cf:4c:fb:a9:d2:e5:e5:c2:94:27:51:6a:4e:
62:29:53:cd:25:e4:bf:cf:39:75:6d:bd:8a:b0:24:13:71:86:
a9:15:00:16:5b:55:44:f2:2d:ee:c3:26:28:3a:0c:46:5d:9f:
6a:c6:ab:01:39:4c:6b:8d:25:86:c6:c8:25:3c:c1:32:bc:ad:
c0:f5:a7:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:57 2024 by rpki-client on console-fra.rpki-client.org