Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369BF27/5800DCF491EA11E9BA56927AF8AEA228/318EA42098F711E9A08C1176F8AEA228.roa
File: 318EA42098F711E9A08C1176F8AEA228.roa (raw, json)
Hash identifier: w0LdOEkkXXKRsW1PLK4DZkJUwY2G0SIkANImRgbjTcI=
Subject key identifier: 46:22:D3:CE:2D:88:86:86:72:47:28:D3:37:B7:16:50:8B:FB:D4:AC
Certificate issuer: /CN=F369BF27AR/serialNumber=CD07D7C89ECE4C0F9D04A1B153BBC710DF016B2D
Certificate serial: 0B
Authority key identifier: CD:07:D7:C8:9E:CE:4C:0F:9D:04:A1:B1:53:BB:C7:10:DF:01:6B:2D
Authority info access: rsync://rpki.afrinic.net/repository/arin/zQfXyJ7OTA-dBKGxU7vHEN8Bay0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369BF27/5800DCF491EA11E9BA56927AF8AEA228/318EA42098F711E9A08C1176F8AEA228.roa
Signing time: Thu 27 Jun 2019 16:18:27 +0000
ROA not before: Thu 27 Jun 2019 16:18:20 +0000
ROA not after: Wed 27 Jun 2029 16:18:20 +0000
asID: 37049
IP address blocks: 165.16.168.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369BF27/5800DCF491EA11E9BA56927AF8AEA228/zQfXyJ7OTA-dBKGxU7vHEN8Bay0.crl
rsync://rpki.afrinic.net/repository/member_repository/F369BF27/5800DCF491EA11E9BA56927AF8AEA228/zQfXyJ7OTA-dBKGxU7vHEN8Bay0.mft
rsync://rpki.afrinic.net/repository/arin/zQfXyJ7OTA-dBKGxU7vHEN8Bay0.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 12 May 2024 00:16:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11 (0xb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369BF27AR/serialNumber=CD07D7C89ECE4C0F9D04A1B153BBC710DF016B2D
Validity
Not Before: Jun 27 16:18:20 2019 GMT
Not After : Jun 27 16:18:20 2029 GMT
Subject: CN=5d14ec53-a31e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:0a:41:93:53:c1:e4:d4:ad:7b:99:35:6c:00:
8f:d9:75:1f:70:00:77:1f:de:80:de:84:40:4c:f1:
cf:f7:31:81:0a:04:44:fe:29:24:35:52:e4:83:e4:
5a:af:d5:51:9a:2e:df:de:1a:76:4c:fa:ca:1d:e8:
bd:a6:ef:96:89:4a:3b:a0:88:f0:a1:a4:ce:2b:88:
ce:b1:ad:e4:c4:ed:91:a6:5a:e1:08:02:f7:f1:6f:
ad:41:f1:b1:fe:19:8c:9a:5d:3e:0d:1d:f7:c3:df:
44:18:d0:5a:22:e6:83:e9:58:6b:ce:00:2e:60:10:
51:f5:98:1e:72:0a:74:16:40:cd:8d:86:09:b7:78:
e6:21:ed:78:81:83:41:a2:80:73:b2:4c:0d:4b:4c:
a1:df:9c:c1:14:b1:63:98:7e:97:d9:86:79:4e:9f:
bb:99:3e:81:10:29:35:7a:b0:65:2f:85:e5:fc:22:
da:d5:f9:e7:43:1d:21:53:e3:2f:e1:ce:14:d8:ee:
e9:6c:a4:2b:c9:43:e7:72:53:ef:0b:5d:40:af:bd:
fa:22:9f:92:d6:78:da:43:f9:d9:6b:77:91:1b:8b:
64:95:b9:7a:0b:cf:b5:b8:e5:bf:75:e8:ab:f7:c1:
64:c3:3d:bf:20:2d:87:4e:84:86:75:55:38:60:9c:
90:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:22:D3:CE:2D:88:86:86:72:47:28:D3:37:B7:16:50:8B:FB:D4:AC
X509v3 Authority Key Identifier:
keyid:CD:07:D7:C8:9E:CE:4C:0F:9D:04:A1:B1:53:BB:C7:10:DF:01:6B:2D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369BF27/5800DCF491EA11E9BA56927AF8AEA228/zQfXyJ7OTA-dBKGxU7vHEN8Bay0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/zQfXyJ7OTA-dBKGxU7vHEN8Bay0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369BF27/5800DCF491EA11E9BA56927AF8AEA228/318EA42098F711E9A08C1176F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
165.16.168.0/22
Signature Algorithm: sha256WithRSAEncryption
91:60:e0:e7:16:54:41:90:97:34:b2:47:f9:b4:38:0d:81:04:
82:70:a1:dd:38:42:b2:8d:dc:59:82:37:3f:d9:88:1e:f0:56:
9c:6a:7a:71:05:86:ae:f0:74:02:c5:e5:56:3b:3d:a2:f1:3b:
92:41:3d:e1:63:53:70:75:ab:0f:2f:86:ca:60:c9:c0:df:ab:
91:2a:ce:6e:48:8f:5e:ef:13:15:ba:34:8e:58:06:ee:ed:6d:
35:21:3d:87:07:da:ba:9d:b3:ac:14:a9:c9:86:b9:9b:5b:64:
6d:3f:9d:c3:86:30:fa:6d:1e:ee:ab:f9:64:f3:f9:f6:e1:e5:
08:23:6f:89:59:31:6d:70:04:a7:be:c4:09:6b:f4:9a:45:0e:
49:9d:65:fc:49:c0:fd:f6:a3:7b:00:5d:6e:90:b5:eb:d6:0f:
56:fb:ac:55:11:c8:91:54:31:65:45:06:f1:66:77:89:52:77:
03:4a:ff:f9:ca:36:1c:32:fc:80:c8:12:b8:bf:dd:54:a3:94:
20:1e:9e:a1:96:df:f3:a2:c8:5a:78:10:1a:e2:87:30:5b:6f:
67:9e:29:8d:65:e8:d1:63:ed:a0:5e:b1:35:63:f9:11:ab:47:
da:66:5c:89:7f:41:cb:da:0a:98:9f:b2:86:a5:b7:31:23:06:
9b:7d:cc:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 10 02:53:50 2024 by rpki-client on console-ams.rpki-client.org