Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/3DE9E10A09E811EA9E5CA96EF8AEA228.roa
File: 3DE9E10A09E811EA9E5CA96EF8AEA228.roa (raw, json)
Hash identifier: VDlUa49aVXXyXY0n7LUO65aNha3vG8WfZ9ERa+R8FLU=
Subject key identifier: AE:E7:79:83:56:F6:C7:53:5B:AF:68:7C:E2:B0:9A:DF:FE:58:35:65
Certificate issuer: /CN=F362B38EAR/serialNumber=23E63BA551365FC59123A63712D79782AF1028D1
Certificate serial: 8E
Authority key identifier: 23:E6:3B:A5:51:36:5F:C5:91:23:A6:37:12:D7:97:82:AF:10:28:D1
Authority info access: rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/3DE9E10A09E811EA9E5CA96EF8AEA228.roa
Signing time: Mon 18 Nov 2019 09:46:07 +0000
ROA not before: Mon 18 Nov 2019 09:46:02 +0000
ROA not after: Sat 17 Nov 2029 09:46:02 +0000
asID: 327687
IP address blocks: 137.63.200.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.crl
rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.mft
rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 26 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142 (0x8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362B38EAR/serialNumber=23E63BA551365FC59123A63712D79782AF1028D1
Validity
Not Before: Nov 18 09:46:02 2019 GMT
Not After : Nov 17 09:46:02 2029 GMT
Subject: CN=5dd2685e-ea83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:cf:08:4f:1d:3f:fc:13:21:46:37:c7:49:00:
4a:28:8a:0a:d9:7a:71:21:a5:90:38:53:5a:18:4f:
79:0b:c0:12:7f:68:3b:b7:62:71:ed:15:22:ed:53:
1d:ba:d7:cd:0d:88:99:59:f6:de:67:02:9e:6c:03:
32:db:21:7b:a9:13:d1:3c:b4:47:5c:75:09:5a:24:
c6:ed:47:07:36:76:9b:f9:98:05:88:6b:a4:94:45:
99:fb:2b:35:22:f7:c7:0e:41:53:87:13:03:ed:64:
3b:6c:3a:18:c4:d2:8b:a5:9e:95:30:62:b4:63:2e:
ec:32:25:54:34:8d:f9:16:ff:0a:08:4a:b9:c8:a6:
26:c3:a9:f9:46:4c:26:90:5b:2e:ef:3e:1f:e8:4b:
f6:5f:6a:3d:4e:00:55:cb:57:a8:ba:3b:24:45:9d:
4e:46:ee:6b:8a:8c:cd:2f:f8:e7:e1:1e:0f:52:94:
ce:e3:0b:b9:d0:98:d0:c7:6b:19:21:8f:5c:db:59:
9b:ed:3e:a1:fa:bd:c4:d4:3c:a3:14:2f:1a:c9:60:
fd:ec:fc:45:78:72:b5:e3:ed:8f:5b:05:4c:4c:57:
95:5a:66:1f:ff:a9:c2:45:f8:19:71:78:ba:ce:8d:
1c:9b:2e:31:43:ef:58:6b:29:4c:78:44:74:7b:27:
1c:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:E7:79:83:56:F6:C7:53:5B:AF:68:7C:E2:B0:9A:DF:FE:58:35:65
X509v3 Authority Key Identifier:
keyid:23:E6:3B:A5:51:36:5F:C5:91:23:A6:37:12:D7:97:82:AF:10:28:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/3DE9E10A09E811EA9E5CA96EF8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
137.63.200.0/24
Signature Algorithm: sha256WithRSAEncryption
52:81:f5:98:8a:0e:c6:fa:50:10:61:82:6d:1c:7c:80:2f:01:
96:cb:d8:56:34:20:7e:56:34:3c:d4:59:d9:18:b1:18:8f:e6:
03:d7:06:33:a3:f3:83:5c:64:46:c5:1f:c9:e2:ba:2d:b6:1f:
fa:b0:21:7a:83:1e:2b:bf:b3:de:06:52:e9:87:3c:29:bc:5e:
fc:f3:76:2a:6e:24:57:b6:9e:f1:9b:b8:8d:01:51:72:10:9f:
a6:94:ac:04:39:ff:16:92:d9:8c:6f:7a:52:81:f9:c0:cf:41:
e7:5e:ad:1d:a4:40:6d:05:53:f3:ef:c8:e1:db:b3:05:99:43:
d1:a9:cf:d8:3c:c6:26:3b:92:8d:cd:3f:3a:69:be:ba:1f:70:
2e:22:24:f1:96:c4:77:8b:91:77:54:7a:80:b5:e7:7a:ea:ef:
53:50:93:77:52:70:6a:99:bb:04:01:fe:98:54:d2:00:cb:da:
ed:ce:e7:a8:d8:60:e7:99:03:91:5b:07:0b:f9:4f:87:ab:5a:
7e:52:de:fe:be:a3:a3:7d:ca:56:cc:2a:71:0a:20:32:69:e2:
c3:0b:90:e6:dd:9c:fe:89:31:25:f0:c5:89:9d:ba:4c:1a:79:
ff:7b:c9:5a:3e:ad:a7:33:31:a1:98:31:42:a6:40:5e:46:42:
5d:00:6f:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 24 02:39:05 2024 by rpki-client on console-ams.rpki-client.org