Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/2C4522880A0C11EA93304F0AF8AEA228.roa
File: 2C4522880A0C11EA93304F0AF8AEA228.roa (raw, json)
Hash identifier: n0OCLAHj/4l/o+gTktyOu0n0h4Wi5iOZsifEU549bdw=
Subject key identifier: 8C:56:F1:6D:66:BD:0D:42:E5:F7:88:C0:FE:A6:3C:59:C4:DF:D4:D8
Certificate issuer: /CN=F362B38EAR/serialNumber=23E63BA551365FC59123A63712D79782AF1028D1
Certificate serial: A8
Authority key identifier: 23:E6:3B:A5:51:36:5F:C5:91:23:A6:37:12:D7:97:82:AF:10:28:D1
Authority info access: rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/2C4522880A0C11EA93304F0AF8AEA228.roa
Signing time: Mon 18 Nov 2019 14:03:19 +0000
ROA not before: Mon 18 Nov 2019 14:03:12 +0000
ROA not after: Sat 17 Nov 2029 14:03:12 +0000
asID: 327687
IP address blocks: 137.63.210.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.crl
rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.mft
rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 168 (0xa8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362B38EAR/serialNumber=23E63BA551365FC59123A63712D79782AF1028D1
Validity
Not Before: Nov 18 14:03:12 2019 GMT
Not After : Nov 17 14:03:12 2029 GMT
Subject: CN=5dd2a4a7-7cdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:85:14:e7:f4:a4:72:f4:8b:d5:21:92:1f:2b:
02:29:e8:ac:c8:46:12:87:7c:a6:a4:f4:7f:0f:60:
76:36:52:53:43:64:be:08:12:9c:5c:44:7a:cf:92:
37:cd:a9:cc:dc:8b:d2:ac:ef:00:8e:fc:4f:77:e2:
a2:da:1e:34:c4:e0:3c:3b:24:f6:09:1b:de:7b:ba:
5f:4d:d2:d9:29:35:f1:63:20:d4:e6:c6:6a:06:3e:
b4:97:16:d1:f6:5d:22:6d:6d:87:65:89:ab:f1:11:
53:08:26:f1:df:69:3e:d2:90:8b:98:4f:51:7d:37:
0f:96:b5:77:e0:bf:1a:68:4b:f2:e8:79:d3:c5:4e:
b0:78:77:72:39:ee:56:0b:9d:f0:d3:05:87:e3:67:
5b:3e:39:8f:4d:7b:63:63:de:82:3d:10:0a:b3:68:
7f:e5:9b:30:e5:40:37:3c:88:b1:1a:b9:c7:cb:3d:
dd:a9:f0:12:c5:d6:60:54:c8:99:7a:03:ca:c3:f7:
9a:d1:4e:9a:4b:17:a4:4c:9c:4b:a0:1b:70:80:df:
ec:90:db:77:ce:72:8c:38:70:d3:a4:7e:6a:d2:f2:
be:eb:70:69:80:6f:a5:07:d1:f2:d9:ce:bc:20:d6:
a5:8f:c5:f6:ea:0b:36:d2:d7:d6:bf:99:87:62:d5:
c2:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:56:F1:6D:66:BD:0D:42:E5:F7:88:C0:FE:A6:3C:59:C4:DF:D4:D8
X509v3 Authority Key Identifier:
keyid:23:E6:3B:A5:51:36:5F:C5:91:23:A6:37:12:D7:97:82:AF:10:28:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/2C4522880A0C11EA93304F0AF8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
137.63.210.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:74:59:14:8f:f4:d6:e3:e0:80:0a:c2:64:01:12:34:d5:a3:
c9:c5:1b:af:97:79:ff:24:be:8b:1d:b2:6d:e5:a8:dc:83:59:
7c:d4:7e:23:e8:b4:02:47:ab:b3:72:12:07:ac:0e:94:5e:f6:
78:5a:a8:56:37:78:50:6e:b3:e7:ff:82:43:3d:41:fe:41:57:
94:a7:72:87:dd:33:62:62:e0:51:e8:0e:9a:23:f6:03:ac:f1:
1b:a4:d0:cc:86:aa:27:db:bd:f5:3b:b2:aa:8f:1d:4a:2a:9c:
b8:71:5d:a4:25:c5:fe:78:08:2d:c5:9d:4f:1a:52:ab:b9:99:
15:51:41:ac:85:2a:b9:f5:c0:6c:08:60:56:cc:7b:ba:00:2b:
6b:6e:37:16:65:cb:c5:91:50:63:fb:46:fe:de:a1:c8:05:c6:
6c:c1:67:d4:b7:71:7b:39:62:14:89:92:b0:c0:cb:89:50:69:
1b:04:70:70:e5:d0:73:8c:9a:5a:7c:47:03:a8:ef:32:d2:94:
a4:61:fc:f0:2a:a9:6b:53:bb:6e:86:8c:37:c0:2d:0d:86:29:
e8:ed:90:2a:e3:7a:38:17:d3:71:da:f6:39:c2:40:0f:7a:f8:
eb:50:e7:8f:b1:cc:af:e9:dd:4c:60:43:86:b4:71:a6:3d:1d:
fb:b1:4d:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:32 2024 by rpki-client on console-ams.rpki-client.org