Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/72E6F7FA09DC11EA89883165F8AEA228.roa
File: 72E6F7FA09DC11EA89883165F8AEA228.roa (raw, json)
Hash identifier: U0ICMZWrxg0CWFv1S9XbzN1eD1JtA7RdIWsBIcrDDqo=
Subject key identifier: 68:1A:56:5E:2A:18:AF:9A:53:69:E4:7B:33:85:E6:0B:EE:C8:51:2F
Certificate issuer: /CN=F362B38EAR/serialNumber=23E63BA551365FC59123A63712D79782AF1028D1
Certificate serial: 3E
Authority key identifier: 23:E6:3B:A5:51:36:5F:C5:91:23:A6:37:12:D7:97:82:AF:10:28:D1
Authority info access: rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/72E6F7FA09DC11EA89883165F8AEA228.roa
Signing time: Mon 18 Nov 2019 08:21:42 +0000
ROA not before: Mon 18 Nov 2019 08:21:36 +0000
ROA not after: Sat 17 Nov 2029 08:21:36 +0000
asID: 327687
IP address blocks: 137.63.147.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.crl
rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.mft
rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62 (0x3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362B38EAR/serialNumber=23E63BA551365FC59123A63712D79782AF1028D1
Validity
Not Before: Nov 18 08:21:36 2019 GMT
Not After : Nov 17 08:21:36 2029 GMT
Subject: CN=5dd25495-c902
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b3:9c:f3:52:19:27:63:51:39:c9:68:a1:94:
09:1e:30:74:4f:b4:3a:2f:9f:01:d0:65:54:88:a9:
d9:2d:95:3e:b4:58:b3:7f:ac:f5:9e:85:10:71:32:
c8:65:b7:f6:72:74:c3:24:33:1c:d9:b9:66:4c:d6:
a3:af:c3:97:d9:ef:06:85:81:15:d4:a2:d7:af:79:
2d:de:07:83:7f:96:0f:36:5c:b9:42:a7:d4:86:13:
b5:26:23:aa:66:f2:6f:8c:db:01:10:50:aa:10:f8:
5a:16:fa:ff:0c:a8:ab:de:72:7b:fe:80:b1:89:c8:
08:f6:82:4b:49:0e:a8:e4:19:1a:90:8f:52:9b:06:
73:9d:8e:f6:ee:26:81:19:fe:f7:75:30:ba:77:de:
bd:58:c4:56:04:9b:4f:a1:fa:f9:24:20:f9:98:71:
b7:52:a5:d6:e1:43:ac:8d:d5:17:65:ef:b7:44:6b:
8a:77:23:3f:49:55:20:29:c8:8d:89:ce:85:20:38:
c2:c3:5a:fb:41:09:d9:e4:47:1f:e5:3a:fc:36:4f:
2b:2b:7c:e2:be:23:35:45:44:bb:fa:d2:9e:7b:70:
0f:28:59:7a:32:57:38:5f:3e:9b:0a:ca:d4:88:6e:
98:8c:27:0e:33:57:46:90:e2:54:f9:37:fc:b2:e8:
f4:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:1A:56:5E:2A:18:AF:9A:53:69:E4:7B:33:85:E6:0B:EE:C8:51:2F
X509v3 Authority Key Identifier:
keyid:23:E6:3B:A5:51:36:5F:C5:91:23:A6:37:12:D7:97:82:AF:10:28:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/72E6F7FA09DC11EA89883165F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
137.63.147.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:50:0e:67:f5:60:5d:85:36:64:24:bb:55:9b:fa:00:ae:ba:
58:ab:0b:12:fd:96:71:1b:d5:e3:4a:ea:6d:97:98:a3:8c:bd:
19:8c:dc:6e:c9:b4:49:fc:9d:0b:42:46:71:56:bd:27:fd:ab:
41:c8:99:9c:66:8c:01:c1:74:0f:53:d4:71:7e:cb:b8:41:19:
d0:d4:57:a9:9d:f5:0b:fb:67:3a:2d:4c:10:9e:f9:7c:e0:19:
5e:f0:ab:83:be:08:88:2f:da:ec:f6:3a:04:14:62:a5:1c:24:
53:7d:61:90:76:07:dd:54:2a:c8:c6:4c:2c:b2:78:e8:10:7b:
b4:9c:e9:76:54:c4:1d:f1:41:86:ba:d0:58:79:68:de:f7:b6:
71:37:2f:0a:51:6e:42:d1:07:37:36:d6:ef:e8:09:38:60:d7:
fd:be:18:dc:f1:9f:00:d6:bb:9d:0d:96:e2:f4:3d:03:74:35:
21:01:a9:14:b2:24:79:b6:df:30:dc:6e:95:dc:c7:a2:40:d8:
df:32:6c:d4:c5:3d:b0:ff:6c:c3:47:df:9d:16:ed:b8:34:94:
d9:f4:5a:ef:39:20:87:b2:39:60:39:47:18:7b:2a:03:ec:d6:
2c:60:73:06:d4:e8:a6:a9:2f:27:e6:35:80:e3:a7:4f:eb:79:
fd:b3:85:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:32 2024 by rpki-client on console-ams.rpki-client.org