Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F56CA/0D056CD48E0111E98519644AF8AEA228/2B42CBB2841C11EA8535FD14F8AEA228.roa
File: 2B42CBB2841C11EA8535FD14F8AEA228.roa (raw, json)
Hash identifier: dahsJO63bmsOpbiHiBcDrrEKjGQByqLKcepUunArLEQ=
Subject key identifier: 53:85:04:15:38:F4:74:FC:CD:EE:74:3A:99:5D:E9:2A:23:54:A9:C3
Certificate issuer: /CN=F36F56CAAR/serialNumber=9831B838BE2B90047CE52BD425A08295D4361EF2
Certificate serial: 0149
Authority key identifier: 98:31:B8:38:BE:2B:90:04:7C:E5:2B:D4:25:A0:82:95:D4:36:1E:F2
Authority info access: rsync://rpki.afrinic.net/repository/arin/mDG4OL4rkAR85SvUJaCCldQ2HvI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F56CA/0D056CD48E0111E98519644AF8AEA228/2B42CBB2841C11EA8535FD14F8AEA228.roa
Signing time: Tue 21 Apr 2020 22:05:11 +0000
ROA not before: Wed 22 Apr 2020 22:05:05 +0000
ROA not after: Mon 30 Apr 2029 22:05:05 +0000
asID: 3223
IP address blocks: 164.160.88.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36F56CA/0D056CD48E0111E98519644AF8AEA228/mDG4OL4rkAR85SvUJaCCldQ2HvI.crl
rsync://rpki.afrinic.net/repository/member_repository/F36F56CA/0D056CD48E0111E98519644AF8AEA228/mDG4OL4rkAR85SvUJaCCldQ2HvI.mft
rsync://rpki.afrinic.net/repository/arin/mDG4OL4rkAR85SvUJaCCldQ2HvI.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 12 May 2024 00:16:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 329 (0x149)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F56CAAR/serialNumber=9831B838BE2B90047CE52BD425A08295D4361EF2
Validity
Not Before: Apr 22 22:05:05 2020 GMT
Not After : Apr 30 22:05:05 2029 GMT
Subject: CN=5e9f6e17-f0d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f7:6e:e0:4f:5e:38:a4:30:97:39:76:78:20:
58:c1:2c:87:a3:5b:59:0f:3f:e1:1c:41:32:a0:b3:
11:38:d9:2e:7f:89:1f:66:63:4f:59:db:6c:bc:c2:
4a:58:b7:29:73:0d:d1:de:f2:96:7b:a5:68:a8:cb:
1d:6b:3d:dd:d5:1b:e3:ae:6d:0e:0a:f3:ce:23:c8:
d6:91:57:fc:0f:c7:1d:fd:b3:97:27:09:c5:5c:ca:
e4:88:ea:1b:45:8b:52:a4:11:09:a5:82:92:a2:d5:
c6:08:d4:af:f2:7d:82:bf:67:a1:6f:a2:23:02:c4:
43:77:4d:47:fa:5f:77:a5:50:ec:d8:46:50:de:3d:
04:a0:ce:94:23:2e:17:17:97:f9:f3:5d:00:c2:32:
f6:28:30:40:8f:58:3d:62:eb:3c:d7:f9:32:a6:d8:
47:a1:d6:43:4f:65:0d:09:57:2a:8a:2b:ba:c9:4c:
53:42:13:b3:53:32:a3:74:80:d0:ad:16:68:fe:51:
d3:de:a6:73:07:42:67:cd:ae:17:c7:c3:93:65:32:
35:db:8c:b6:52:ae:4d:36:9c:34:0c:67:be:ee:70:
d8:75:ed:7e:f3:db:89:8a:61:53:f3:53:cc:d6:a7:
d1:dc:bd:59:c7:62:3e:81:34:62:3b:3f:98:74:f5:
8d:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:85:04:15:38:F4:74:FC:CD:EE:74:3A:99:5D:E9:2A:23:54:A9:C3
X509v3 Authority Key Identifier:
keyid:98:31:B8:38:BE:2B:90:04:7C:E5:2B:D4:25:A0:82:95:D4:36:1E:F2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F56CA/0D056CD48E0111E98519644AF8AEA228/mDG4OL4rkAR85SvUJaCCldQ2HvI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/mDG4OL4rkAR85SvUJaCCldQ2HvI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F56CA/0D056CD48E0111E98519644AF8AEA228/2B42CBB2841C11EA8535FD14F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
164.160.88.0/22
Signature Algorithm: sha256WithRSAEncryption
25:c1:96:a9:36:de:58:ca:da:c3:b3:16:9a:9b:a4:74:3d:6b:
cf:fd:38:19:54:25:c0:1c:34:58:03:ac:8d:e6:5c:0d:93:5f:
24:de:48:a4:77:06:e5:a3:e1:a8:b6:f9:1f:c1:68:a2:3c:9b:
db:5d:1a:cb:6a:bd:03:c0:cc:f5:a3:08:ba:3b:0f:9e:16:92:
49:9f:e4:4f:94:f8:a1:58:f7:22:be:49:88:db:36:ba:5d:25:
60:46:5e:4a:20:e6:48:0a:a4:c9:da:32:7e:86:19:ea:26:b0:
cd:61:bb:a5:3f:57:d8:eb:1b:5a:9c:47:82:23:9b:b9:2e:01:
b9:de:01:7b:76:ba:1c:eb:0e:6d:de:77:f6:ac:b6:65:30:e9:
f9:81:45:e5:d7:80:a5:9f:f3:14:43:3e:d8:81:cb:c2:4a:75:
36:3e:07:85:b9:7d:dc:64:43:c9:87:00:00:1b:04:00:ff:be:
8b:f0:a9:40:43:08:40:0b:bf:28:bb:cb:bd:32:9b:11:bf:7f:
32:4d:08:aa:a4:26:eb:c3:e1:04:0c:68:33:f3:61:d1:20:73:
85:01:ae:49:cb:72:75:7a:dc:52:74:f8:bf:95:68:93:56:6a:
ba:43:b5:47:2a:1f:06:f6:a6:38:8f:be:fb:87:da:0f:4e:05:
24:30:8d:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 10 03:24:16 2024 by rpki-client on console-fra.rpki-client.org