Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F51F8/D4B085CACA3311E9945F9B6BF8AEA228/B0D116986C8D11ECA9758ACA5A40D577.roa
File: B0D116986C8D11ECA9758ACA5A40D577.roa (raw, json)
Hash identifier: lTLDiHShhMe4QavSzilaN/PR1KFjgS4fLvPFpQKkp0g=
Subject key identifier: 58:8D:B3:A1:63:4C:F7:BE:6F:60:61:2A:52:5C:31:A2:E0:33:6E:12
Certificate issuer: /CN=F36F51F8AR/serialNumber=02DDC0BF0F74F964A8DB226CBE33F7D34EDB0053
Certificate serial: 0374
Authority key identifier: 02:DD:C0:BF:0F:74:F9:64:A8:DB:22:6C:BE:33:F7:D3:4E:DB:00:53
Authority info access: rsync://rpki.afrinic.net/repository/arin/At3Avw90-WSo2yJsvjP3007bAFM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F51F8/D4B085CACA3311E9945F9B6BF8AEA228/B0D116986C8D11ECA9758ACA5A40D577.roa
Signing time: Mon 03 Jan 2022 12:07:15 +0000
ROA not before: Mon 03 Jan 2022 12:07:12 +0000
ROA not after: Wed 14 Jan 2032 12:07:12 +0000
asID: 36924
IP address blocks: 164.160.16.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F51F8/D4B085CACA3311E9945F9B6BF8AEA228/At3Avw90-WSo2yJsvjP3007bAFM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F51F8/D4B085CACA3311E9945F9B6BF8AEA228/At3Avw90-WSo2yJsvjP3007bAFM.mft
rsync://rpki.afrinic.net/repository/arin/At3Avw90-WSo2yJsvjP3007bAFM.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 27 Apr 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 884 (0x374)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F51F8AR/serialNumber=02DDC0BF0F74F964A8DB226CBE33F7D34EDB0053
Validity
Not Before: Jan 3 12:07:12 2022 GMT
Not After : Jan 14 12:07:12 2032 GMT
Subject: CN=61d2e6f3-b431
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:9a:03:da:a9:41:d1:b0:fa:68:c4:10:e7:07:
fc:71:01:b9:5a:50:fd:66:b3:fe:e9:4e:8e:c0:e5:
46:fa:dd:e4:9c:0f:70:f9:59:9c:da:1d:87:36:c8:
dc:2e:bf:ed:bd:3d:60:4b:46:39:63:19:66:a4:aa:
0f:19:b2:0b:a1:91:bd:4d:ac:d2:87:7b:99:7f:48:
25:5a:3d:89:74:6e:af:7d:e0:c1:8f:e2:cd:f4:12:
3c:d9:38:c3:3a:74:bc:ba:d8:c9:be:2a:32:2b:e4:
62:88:0a:cd:5a:88:f0:eb:03:36:8f:b8:6d:11:d4:
67:81:b4:34:84:eb:b7:b6:63:5b:81:9c:51:c2:b9:
d3:e1:ad:ad:94:aa:a9:8a:c9:75:f4:1a:0f:eb:0e:
db:00:67:4c:eb:fe:32:12:b0:75:3f:2d:c7:70:30:
29:13:a9:ea:73:b3:94:51:90:68:27:7b:93:19:bb:
d2:49:b1:6a:df:40:1e:ed:04:52:8f:3d:74:47:14:
f8:0e:69:c6:84:0f:cc:66:1d:08:db:e0:69:c5:89:
66:3a:46:22:c1:ca:25:2e:f0:65:d8:56:77:12:b3:
c2:2e:43:c2:f3:6e:d9:3e:0e:d6:e8:d5:7f:d8:c9:
c2:dd:8a:81:06:6b:ca:04:ef:cb:2a:fc:d6:89:41:
26:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:8D:B3:A1:63:4C:F7:BE:6F:60:61:2A:52:5C:31:A2:E0:33:6E:12
X509v3 Authority Key Identifier:
keyid:02:DD:C0:BF:0F:74:F9:64:A8:DB:22:6C:BE:33:F7:D3:4E:DB:00:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F51F8/D4B085CACA3311E9945F9B6BF8AEA228/At3Avw90-WSo2yJsvjP3007bAFM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/At3Avw90-WSo2yJsvjP3007bAFM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F51F8/D4B085CACA3311E9945F9B6BF8AEA228/B0D116986C8D11ECA9758ACA5A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
164.160.16.0/22
Signature Algorithm: sha256WithRSAEncryption
bc:a8:46:d3:5f:f1:c4:74:d4:1e:91:5f:75:63:fa:eb:e6:90:
4e:b4:52:6c:70:0d:f2:84:ba:dd:60:9b:c2:d8:8c:86:e3:2f:
9b:77:78:7d:9e:12:95:3e:c0:78:b5:8d:16:a7:82:ad:e8:bc:
00:a3:a3:cb:30:9c:b6:03:3a:9a:ec:81:92:af:f1:cb:2f:e2:
fa:a2:ab:63:40:7c:b8:38:27:0c:e2:c0:b3:b6:8c:ae:54:34:
f1:02:33:36:2b:55:57:e2:72:fb:9e:fd:b7:75:63:5f:71:03:
03:c5:56:9f:e3:fa:47:b6:db:e1:37:05:80:1b:b6:bf:ff:d6:
a9:ac:28:49:42:e4:50:d4:94:ba:46:62:b5:e2:99:0f:f3:72:
a4:27:46:96:90:71:d6:0c:69:34:06:d8:3e:60:e0:82:4e:ae:
c3:2e:38:2f:95:c3:7f:cc:93:9e:24:9a:a4:d6:3c:9b:d3:ad:
e6:04:a5:be:15:52:13:df:29:5c:bf:4c:18:67:2e:9f:46:4d:
c0:f9:60:8a:03:34:4c:45:91:0f:e9:fe:6e:e8:26:82:39:bc:
0e:51:a4:66:87:3c:84:9d:77:b2:05:13:2c:26:c5:77:f1:a2:
0a:d4:bf:6e:4f:80:9b:53:b3:b3:ce:1d:e0:d0:e1:37:86:4a:
77:9e:46:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 02:05:23 2024 by rpki-client on console-fra.rpki-client.org