Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/619767E409DE11EA9DCBBE66F8AEA228.roa
File: 619767E409DE11EA9DCBBE66F8AEA228.roa (raw, json)
Hash identifier: AYooYH+W2XYHDKwHiYdgTZC3tfAMQNBdQGFiqRQ3ytM=
Subject key identifier: AE:3A:39:E0:48:C0:EE:45:9C:A4:81:58:AB:98:66:6E:AE:57:B6:84
Certificate issuer: /CN=F362B38EAR/serialNumber=23E63BA551365FC59123A63712D79782AF1028D1
Certificate serial: 4E
Authority key identifier: 23:E6:3B:A5:51:36:5F:C5:91:23:A6:37:12:D7:97:82:AF:10:28:D1
Authority info access: rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/619767E409DE11EA9DCBBE66F8AEA228.roa
Signing time: Mon 18 Nov 2019 08:35:31 +0000
ROA not before: Mon 18 Nov 2019 08:35:27 +0000
ROA not after: Sat 17 Nov 2029 08:35:27 +0000
asID: 327687
IP address blocks: 137.63.134.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.crl
rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.mft
rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 26 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78 (0x4e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362B38EAR/serialNumber=23E63BA551365FC59123A63712D79782AF1028D1
Validity
Not Before: Nov 18 08:35:27 2019 GMT
Not After : Nov 17 08:35:27 2029 GMT
Subject: CN=5dd257d3-5fbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:93:9f:6a:57:68:e9:9a:c1:43:26:b5:3e:45:
7c:5f:35:02:7f:17:9f:d6:35:99:6c:34:ad:ff:b7:
04:3b:83:c2:32:cc:e7:b8:06:f6:f6:58:bb:c7:40:
1a:89:05:23:e0:68:5d:17:6e:97:06:9e:96:c0:61:
66:60:58:51:de:d8:7d:44:11:b9:10:27:27:3b:f3:
b6:53:57:a8:8a:ab:fc:75:0b:83:f5:4d:44:89:d4:
14:ee:a3:a9:4a:73:3f:ef:55:7f:a9:c1:79:b3:f0:
c9:2b:97:bb:89:bf:d2:f6:83:95:c6:5d:11:64:89:
a9:6f:ae:17:d7:9d:c2:82:ba:6f:28:73:3a:18:fd:
c5:53:c4:bd:44:d2:0c:00:04:b1:e1:74:db:e8:1e:
43:1e:5b:ad:6b:13:02:d9:ca:ae:ea:37:ff:dd:bd:
37:0f:50:a6:83:a9:d8:4b:fe:d4:1b:54:4e:1a:c4:
41:3a:9b:04:f0:35:fc:8c:da:07:34:1c:1b:4f:d5:
f0:6c:fc:99:16:6d:31:ec:da:92:75:a7:37:95:a4:
a2:7b:2a:b8:87:43:f0:7f:50:f1:2f:61:e8:14:5e:
d6:ee:6b:af:18:e5:60:f8:3c:ba:68:af:22:1b:c8:
5e:41:62:bb:fb:24:c9:4e:ef:a7:9a:74:cc:01:59:
30:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:3A:39:E0:48:C0:EE:45:9C:A4:81:58:AB:98:66:6E:AE:57:B6:84
X509v3 Authority Key Identifier:
keyid:23:E6:3B:A5:51:36:5F:C5:91:23:A6:37:12:D7:97:82:AF:10:28:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/619767E409DE11EA9DCBBE66F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
137.63.134.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:c0:3e:df:61:3e:a9:d9:3a:92:32:96:76:7d:1d:2e:ab:4f:
cf:83:23:4f:1a:de:0e:88:fe:16:e8:87:39:33:62:31:a6:b7:
d7:a8:e7:1e:00:1a:2a:65:52:c7:d1:dd:df:5d:a5:bd:5c:38:
69:b9:47:07:d4:c1:03:b9:64:76:7a:84:3c:d6:c5:bd:68:bd:
ee:44:33:da:38:4f:0f:6e:95:2e:0a:a2:88:11:c6:90:0a:81:
44:4c:f2:4e:de:92:49:5b:e4:cd:99:ab:ee:33:3b:84:47:ea:
c4:27:7f:cb:77:65:ef:6c:8c:19:cf:3a:d1:38:15:a2:90:aa:
41:eb:d4:0b:dd:3c:03:ef:3f:dc:d5:b1:e0:fe:74:0b:07:26:
ac:13:df:40:98:5d:94:14:de:84:9e:6b:ad:5e:77:a3:6b:a5:
da:7c:6c:98:10:d7:b7:70:ec:2e:6d:2a:d3:7b:63:f9:b4:2f:
c7:d1:78:0c:af:5a:df:c8:45:07:9c:c5:67:b5:3d:1b:d8:27:
d7:a7:c6:0d:08:d2:c8:48:ed:64:fd:25:ce:af:2e:9b:56:01:
b7:17:13:35:75:4a:c5:97:3c:b8:ba:75:73:a3:99:10:93:ca:
4e:00:35:ad:d5:83:51:8f:2c:a8:16:d9:f2:74:8a:23:09:78:
12:6c:f4:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 24 01:45:52 2024 by rpki-client on console-fra.rpki-client.org