Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/70D18C2009E911EA98F8A26FF8AEA228.roa
File: 70D18C2009E911EA98F8A26FF8AEA228.roa (raw, json)
Hash identifier: YfSVpZDccVBtSCwFhFlTlcU4+5f2vsER0HVUbM/piDA=
Subject key identifier: CC:7B:E5:A3:B1:2D:03:B9:5B:B2:17:13:C3:65:8E:7A:54:DD:BD:F5
Certificate issuer: /CN=F362B38EAR/serialNumber=23E63BA551365FC59123A63712D79782AF1028D1
Certificate serial: 9A
Authority key identifier: 23:E6:3B:A5:51:36:5F:C5:91:23:A6:37:12:D7:97:82:AF:10:28:D1
Authority info access: rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/70D18C2009E911EA98F8A26FF8AEA228.roa
Signing time: Mon 18 Nov 2019 09:54:42 +0000
ROA not before: Mon 18 Nov 2019 09:54:35 +0000
ROA not after: Sat 17 Nov 2029 09:54:35 +0000
asID: 327687
IP address blocks: 137.63.209.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.crl
rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.mft
rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154 (0x9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362B38EAR/serialNumber=23E63BA551365FC59123A63712D79782AF1028D1
Validity
Not Before: Nov 18 09:54:35 2019 GMT
Not After : Nov 17 09:54:35 2029 GMT
Subject: CN=5dd26a61-dcb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:bc:89:98:f3:07:6c:44:20:22:b6:14:7d:5c:
eb:55:e1:42:66:f3:3f:3e:50:ee:1e:80:ae:ef:cb:
b1:06:be:aa:04:13:52:88:77:7b:7b:18:c9:53:f3:
15:72:04:77:46:88:38:ab:02:49:d2:7a:f4:9b:8b:
53:39:2d:ae:f1:b2:5a:3c:88:71:cb:90:ea:62:f0:
90:31:e6:c2:f7:7c:40:96:98:9e:f3:c3:9a:83:37:
c1:1d:7a:13:0c:0d:68:11:0e:6e:90:65:7b:22:2b:
95:da:cc:47:2b:89:a1:3d:f2:7d:f0:10:26:2e:ea:
09:e4:4e:e9:b2:79:5c:33:3f:ae:be:ef:02:3e:61:
f6:f1:3c:f1:6f:50:43:0b:d4:0f:40:a4:b2:56:5f:
82:cf:56:7a:71:7d:16:77:47:7d:ae:18:af:dc:ab:
d2:cd:cb:63:cd:ee:5a:5a:a9:33:4f:e4:51:79:5b:
bb:f3:c7:70:80:02:ef:cf:22:0f:e8:bd:b4:5b:7e:
31:73:c4:2a:b2:b3:d8:41:a7:dc:66:5c:45:5e:7f:
7d:f6:ff:72:0d:c7:a0:01:2a:46:53:e0:37:37:5c:
7a:81:12:0e:bc:2f:c6:73:5f:60:fc:3f:08:46:ec:
8e:f0:dd:67:55:cd:c7:3c:2b:2f:0a:4c:27:eb:59:
4b:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:7B:E5:A3:B1:2D:03:B9:5B:B2:17:13:C3:65:8E:7A:54:DD:BD:F5
X509v3 Authority Key Identifier:
keyid:23:E6:3B:A5:51:36:5F:C5:91:23:A6:37:12:D7:97:82:AF:10:28:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/70D18C2009E911EA98F8A26FF8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
137.63.209.0/24
Signature Algorithm: sha256WithRSAEncryption
25:6b:d5:6e:17:a9:8b:69:a1:7d:92:1f:c9:4f:80:08:cf:5c:
39:07:33:93:3e:eb:23:09:80:45:92:96:9f:29:6c:87:cf:4b:
a5:f9:8c:30:a6:7c:60:f5:8c:e6:9b:52:11:48:f9:24:ad:f6:
28:bf:28:b6:16:f1:ce:28:c9:e5:7c:10:a8:18:8b:b0:41:5f:
28:61:40:75:d9:f0:a5:c3:1d:37:60:8b:a2:4a:94:4f:6e:17:
16:0c:61:7c:f9:d0:92:18:cd:bb:74:86:d8:b8:80:74:85:08:
ca:6a:c7:e2:ce:80:65:58:f9:7d:bd:9a:d7:5d:f5:9a:45:15:
cc:a0:90:40:79:02:25:2d:3f:45:ca:14:a0:15:a7:d1:b4:9c:
d1:c4:e4:5a:9a:5e:4c:46:0d:b3:b5:55:ff:18:d5:3b:d1:fe:
d2:21:98:36:37:1c:c5:04:04:b3:c9:e9:37:92:a2:5c:ee:3e:
a5:b7:ea:fb:22:8b:55:5f:4e:2f:9b:58:a9:f9:4a:65:0a:65:
d8:dd:a4:7d:a6:a8:cf:02:d0:75:0a:52:f5:d9:d5:6e:05:0e:
95:86:ec:f6:28:b8:eb:7b:27:70:70:49:9b:22:87:e4:fa:b4:
f1:cd:1a:bb:b1:b4:43:a4:cb:61:b3:61:b2:ac:a9:60:bd:99:
f2:74:96:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:32 2024 by rpki-client on console-ams.rpki-client.org