Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/68A74C0209E811EAB17DCA6EF8AEA228.roa
File: 68A74C0209E811EAB17DCA6EF8AEA228.roa (raw, json)
Hash identifier: zf0rf+Z8K2QQh2vkRDbJMtaSHBfEjdSiKZFFIt5UPvc=
Subject key identifier: 0C:04:DB:91:FF:26:78:0A:91:C5:F8:17:B8:69:99:45:14:EF:87:F6
Certificate issuer: /CN=F362B38EAR/serialNumber=23E63BA551365FC59123A63712D79782AF1028D1
Certificate serial: 90
Authority key identifier: 23:E6:3B:A5:51:36:5F:C5:91:23:A6:37:12:D7:97:82:AF:10:28:D1
Authority info access: rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/68A74C0209E811EAB17DCA6EF8AEA228.roa
Signing time: Mon 18 Nov 2019 09:47:19 +0000
ROA not before: Mon 18 Nov 2019 09:47:14 +0000
ROA not after: Sat 17 Nov 2029 09:47:14 +0000
asID: 327687
IP address blocks: 137.63.201.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.crl
rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.mft
rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144 (0x90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362B38EAR/serialNumber=23E63BA551365FC59123A63712D79782AF1028D1
Validity
Not Before: Nov 18 09:47:14 2019 GMT
Not After : Nov 17 09:47:14 2029 GMT
Subject: CN=5dd268a6-fd5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:39:ab:b5:51:95:e3:af:b8:0d:c1:44:04:1b:
a7:a4:b8:14:50:25:b1:66:3c:3b:9c:40:6a:33:4e:
3c:84:cb:9a:be:10:31:02:72:dd:6a:ad:2c:3e:fe:
66:8d:55:be:ed:92:58:d1:24:f0:2a:e8:7c:aa:08:
c3:e9:57:9e:0b:8c:68:77:c5:d8:74:d5:d0:ad:f9:
e5:c3:8a:d3:6c:53:4f:a7:14:0b:2a:28:2c:6a:e9:
d5:b9:ac:67:b5:cc:a3:d5:85:ab:01:cc:26:a1:fd:
f9:36:19:f5:92:09:cb:6d:7d:f0:9b:73:eb:af:5b:
0e:04:8a:24:c5:90:e3:d1:0f:a2:d2:88:af:91:b3:
36:ac:a5:a6:00:07:cd:15:7e:02:1d:b3:c0:31:86:
78:4d:73:4b:f5:19:97:65:73:12:12:41:07:a0:8b:
b3:db:02:14:a4:ef:27:e4:16:1b:4b:72:19:90:44:
19:f3:08:ad:84:9f:3d:77:65:7c:09:3c:22:99:13:
1c:e2:56:4b:a5:bc:ea:02:2e:b5:d2:04:d5:0e:af:
2d:13:68:96:bb:94:6d:37:46:d6:a1:64:3c:c1:fa:
b3:c9:9e:23:a8:83:57:28:e5:ea:22:d3:29:56:54:
a5:f5:33:81:8d:b7:51:19:14:64:9f:a5:7f:56:0c:
be:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:04:DB:91:FF:26:78:0A:91:C5:F8:17:B8:69:99:45:14:EF:87:F6
X509v3 Authority Key Identifier:
keyid:23:E6:3B:A5:51:36:5F:C5:91:23:A6:37:12:D7:97:82:AF:10:28:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/68A74C0209E811EAB17DCA6EF8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
137.63.201.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:3b:52:f8:ce:2c:d5:48:b3:72:c7:40:0e:da:d0:ea:6a:f5:
f2:17:35:25:a8:6c:7f:4b:fd:5d:21:bf:22:38:28:9b:8d:24:
33:6f:ff:62:79:05:2e:0c:25:71:b0:fd:84:c3:d1:98:c8:9c:
4b:17:53:d0:ba:41:25:e5:ec:e4:77:f1:3f:f9:2b:f9:89:d8:
40:ca:1c:19:10:bd:5d:a4:a0:a6:7f:b5:4f:05:23:2f:45:e9:
31:14:ce:7e:30:a3:11:b9:18:c7:24:f4:58:34:98:2e:58:2c:
fe:e4:1e:01:80:93:f0:41:16:1b:48:c6:8c:cd:48:1c:c9:c3:
d1:4d:1e:bd:92:97:a0:64:dd:87:d6:f0:bd:98:59:b4:8f:77:
88:a2:cc:01:0c:fb:a5:fe:db:69:5f:7d:b2:56:b1:c5:7d:7b:
d3:6e:be:05:37:e9:af:52:f9:fe:54:0c:43:ac:22:ce:8a:db:
b2:bb:0e:ce:ba:b5:4d:b0:79:c9:cd:43:b5:07:4e:a1:81:1d:
6d:a5:8b:12:a7:9f:8e:0d:a2:a3:7f:1a:50:bb:54:83:d1:d9:
07:5d:62:26:1c:0d:4d:ed:b4:48:23:3c:e2:e3:40:1b:76:ac:
f2:e3:b1:bd:e6:5d:d3:e7:5f:9b:f5:7a:0c:8f:24:38:0d:af:
da:ab:f0:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:32 2024 by rpki-client on console-ams.rpki-client.org