Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A4459/E99BCBEA2D1B11EDA54FC78BF1222468/013601FA2D1F11EDB1D2DC93F1222468.roa
File: 013601FA2D1F11EDB1D2DC93F1222468.roa (raw, json)
Hash identifier: yGuY2CCJU8+S6SbKAlGxxoY56hHo78tBwYij9EjfVDE=
Subject key identifier: DC:4B:1F:8E:D7:F1:95:35:36:B2:F6:91:45:61:C5:D1:E9:6F:2D:20
Certificate issuer: /CN=F36A4459AR/serialNumber=A1E01640636C83C22D07099242CCF4C269102B5E
Certificate serial: 04
Authority key identifier: A1:E0:16:40:63:6C:83:C2:2D:07:09:92:42:CC:F4:C2:69:10:2B:5E
Authority info access: rsync://rpki.afrinic.net/repository/arin/oeAWQGNsg8ItBwmSQsz0wmkQK14.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A4459/E99BCBEA2D1B11EDA54FC78BF1222468/013601FA2D1F11EDB1D2DC93F1222468.roa
Signing time: Mon 05 Sep 2022 13:31:11 +0000
ROA not before: Mon 05 Sep 2022 13:31:07 +0000
ROA not after: Sun 05 Sep 2032 13:31:07 +0000
asID: 37638
IP address blocks: 169.255.64.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A4459/E99BCBEA2D1B11EDA54FC78BF1222468/oeAWQGNsg8ItBwmSQsz0wmkQK14.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A4459/E99BCBEA2D1B11EDA54FC78BF1222468/oeAWQGNsg8ItBwmSQsz0wmkQK14.mft
rsync://rpki.afrinic.net/repository/arin/oeAWQGNsg8ItBwmSQsz0wmkQK14.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 May 2024 00:16:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A4459AR/serialNumber=A1E01640636C83C22D07099242CCF4C269102B5E
Validity
Not Before: Sep 5 13:31:07 2022 GMT
Not After : Sep 5 13:31:07 2032 GMT
Subject: CN=6315fa1e-f71b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:15:1e:ce:7f:31:94:13:f5:f4:2d:27:8a:08:
3d:87:3f:05:7f:aa:41:a8:37:2a:90:18:40:fc:98:
70:51:da:56:78:9b:32:7b:63:9b:01:8d:de:04:30:
c9:45:27:2b:2b:2e:b9:fa:45:14:b3:95:08:7d:4f:
7b:c4:c5:44:c7:6e:3f:25:b6:d9:40:e5:e2:6b:94:
14:dd:08:b6:00:bc:0a:31:3a:1e:ee:92:1b:89:5b:
23:c2:74:21:90:c3:53:59:35:5b:13:e7:e8:ea:3f:
95:8a:9b:98:99:69:e2:20:77:5c:b5:5f:8d:81:e5:
39:52:0c:c4:42:08:bb:ff:2e:cd:d0:5a:4b:89:7c:
60:05:e0:4c:35:e4:1f:6b:19:38:4b:17:2b:18:53:
7f:f8:87:14:96:f4:5a:0b:c3:aa:b9:ff:ff:44:0e:
3c:f2:ff:2e:90:1e:80:3b:96:fb:2c:1b:71:f6:13:
6e:26:6d:7c:63:b3:17:99:5b:4c:5f:35:3b:7a:13:
6a:01:81:ce:e2:4f:14:2b:a9:07:44:54:2d:a5:93:
93:08:3e:0f:80:8f:be:94:e4:26:92:02:e1:96:d0:
b8:83:93:19:ce:68:79:fe:4d:bc:df:f8:fb:00:11:
7e:5c:4c:2a:7d:10:44:fd:4c:af:18:dc:59:b1:98:
3c:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:4B:1F:8E:D7:F1:95:35:36:B2:F6:91:45:61:C5:D1:E9:6F:2D:20
X509v3 Authority Key Identifier:
keyid:A1:E0:16:40:63:6C:83:C2:2D:07:09:92:42:CC:F4:C2:69:10:2B:5E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A4459/E99BCBEA2D1B11EDA54FC78BF1222468/oeAWQGNsg8ItBwmSQsz0wmkQK14.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/oeAWQGNsg8ItBwmSQsz0wmkQK14.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A4459/E99BCBEA2D1B11EDA54FC78BF1222468/013601FA2D1F11EDB1D2DC93F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
169.255.64.0/23
Signature Algorithm: sha256WithRSAEncryption
98:84:a8:17:36:5e:30:eb:3c:2b:e2:c9:5b:14:a9:52:f5:e2:
52:27:a4:a5:40:a6:03:33:6d:8d:ab:f0:58:a7:28:1d:42:98:
01:73:75:5e:d0:d2:40:26:00:c4:09:1f:67:d4:d9:a4:39:34:
fa:a4:33:5d:6a:84:d6:e4:82:b1:ba:cc:9a:7d:d3:ad:89:81:
fa:01:9e:51:7a:1f:a3:66:8c:2b:57:4d:9f:22:05:03:77:a5:
25:4c:a6:c7:39:8f:30:a7:9b:6d:18:d4:2c:60:72:8a:e9:34:
f6:61:68:92:74:ce:fd:d7:01:d6:45:b5:38:23:c9:1b:d3:61:
f8:ec:b4:3f:1d:21:d1:be:6f:a7:4a:0d:e0:26:51:1c:57:15:
e1:4c:2d:13:bd:d1:7b:82:b8:a2:10:72:0a:f8:8d:2c:4b:08:
05:c5:9c:71:31:24:88:0a:57:89:b9:2f:64:95:d5:36:49:4e:
f2:e6:8c:ca:c5:2b:7f:01:e7:c4:f2:42:d2:8e:bc:93:b6:fe:
da:54:d4:19:e3:a0:80:e1:fb:2f:e3:25:c5:4d:08:89:bf:4f:
cc:24:18:43:c2:e0:ae:c6:30:7f:68:17:55:53:47:73:c5:71:
ec:a8:09:88:67:b5:90:eb:2a:60:c0:0e:72:de:19:a7:16:0e:
f5:bf:9e:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 04:04:03 2024 by rpki-client on console-ams.rpki-client.org