Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/3C523D7C09E011EAB7E73B68F8AEA228.roa
File: 3C523D7C09E011EAB7E73B68F8AEA228.roa (raw, json)
Hash identifier: MjXbKNU3aCfvvItZLwLLiODpfg2cHgkRb7lInOeT2vw=
Subject key identifier: C7:DA:6A:58:77:A7:00:E5:01:59:57:DD:1A:89:26:AE:D7:69:C7:B6
Certificate issuer: /CN=F362B38EAR/serialNumber=23E63BA551365FC59123A63712D79782AF1028D1
Certificate serial: 5C
Authority key identifier: 23:E6:3B:A5:51:36:5F:C5:91:23:A6:37:12:D7:97:82:AF:10:28:D1
Authority info access: rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/3C523D7C09E011EAB7E73B68F8AEA228.roa
Signing time: Mon 18 Nov 2019 08:48:48 +0000
ROA not before: Mon 18 Nov 2019 08:48:43 +0000
ROA not after: Sat 17 Nov 2029 08:48:43 +0000
asID: 327687
IP address blocks: 137.63.141.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.crl
rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.mft
rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 May 2024 00:16:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92 (0x5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362B38EAR/serialNumber=23E63BA551365FC59123A63712D79782AF1028D1
Validity
Not Before: Nov 18 08:48:43 2019 GMT
Not After : Nov 17 08:48:43 2029 GMT
Subject: CN=5dd25af0-b33f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:1e:31:e1:b5:56:9a:5d:f4:c6:65:25:6c:2d:
78:10:d8:fb:a4:c5:2b:32:4f:ba:e9:90:e8:11:19:
5a:dd:31:e3:19:14:d8:f2:37:62:09:56:93:f6:c0:
73:79:a9:35:88:eb:ac:72:ac:e2:e0:a9:26:ea:16:
74:72:63:0b:e6:a7:ea:45:7a:b6:1b:88:b0:d6:d3:
20:59:2a:80:76:83:40:a9:28:d3:6c:fb:ea:45:58:
ad:f8:a2:c4:3a:d1:7a:bb:1d:e8:9a:66:22:43:9d:
59:c4:9c:cc:57:7d:00:a5:36:08:78:06:92:c7:da:
31:1a:73:31:40:5d:20:6b:b5:5d:60:f9:ee:b7:39:
98:b4:ef:93:1e:87:f6:0a:ff:49:81:dd:3d:eb:da:
aa:14:5d:59:32:2d:e1:c2:16:3e:6c:e4:e2:f9:0d:
45:dd:ad:1f:7e:4e:06:8b:a5:9d:28:d6:c0:2a:be:
9d:95:84:eb:33:88:4b:0a:12:08:1a:7a:83:d3:b4:
43:61:81:e2:9e:92:c6:a1:17:19:ee:30:95:3e:d8:
76:dd:e1:44:ab:32:ea:b5:7a:81:03:d1:56:56:72:
5d:4e:6f:0b:a3:e6:92:d1:23:2a:39:65:c8:15:a8:
2f:3c:25:bb:58:31:d0:8a:f0:c2:3f:f1:26:91:df:
8e:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:DA:6A:58:77:A7:00:E5:01:59:57:DD:1A:89:26:AE:D7:69:C7:B6
X509v3 Authority Key Identifier:
keyid:23:E6:3B:A5:51:36:5F:C5:91:23:A6:37:12:D7:97:82:AF:10:28:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/3C523D7C09E011EAB7E73B68F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
137.63.141.0/24
Signature Algorithm: sha256WithRSAEncryption
29:fa:66:e9:c6:e5:a0:f8:fe:21:84:fe:7a:8e:11:fc:6f:26:
76:ee:fa:5d:da:b6:9f:bd:45:84:2e:96:97:c4:4b:00:c2:e6:
8b:60:38:96:53:fa:cf:ab:7c:27:d9:ff:9e:69:85:91:56:60:
3f:ca:7c:f3:bd:be:32:36:69:ac:dc:3f:c5:bc:30:d7:17:96:
3b:74:f4:a8:02:21:2b:52:48:a6:b4:f7:bc:20:61:ee:2f:ae:
25:1a:ed:a4:f3:f5:88:9e:48:ae:96:61:f1:a1:7a:fe:46:27:
13:ed:8d:0c:bc:b4:a8:a5:54:00:31:79:42:10:71:dd:88:7e:
38:ab:8e:2d:4b:a3:ff:dd:46:2a:fa:68:12:a3:cf:e9:f8:49:
60:79:71:dc:ac:cb:e0:76:a4:19:ea:b3:29:64:02:71:a7:07:
2e:56:04:f8:bb:c0:6f:2e:dd:7e:f2:6d:fe:a9:ec:4e:d0:9e:
41:45:a1:31:6a:2b:26:93:5b:69:29:fa:a6:5f:cd:7c:fd:a1:
ac:cb:30:3d:b8:94:33:95:3f:36:ac:ae:47:7e:9f:0b:7b:89:
06:46:3f:69:9a:e2:e3:b9:d8:5c:39:e3:96:a9:7c:b6:63:92:
b1:e5:2a:01:33:c5:cf:d5:55:28:04:a0:d1:81:37:fe:73:cb:
64:31:93:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 18 01:44:26 2024 by rpki-client on console-ams.rpki-client.org