Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/8B65B68C09E011EA88978B68F8AEA228.roa
File: 8B65B68C09E011EA88978B68F8AEA228.roa (raw, json)
Hash identifier: 2AVk7ELUrfplDH50WCrhljVwJhF4ff45KX7ssyhSjuE=
Subject key identifier: 33:D0:DC:33:88:C8:7D:91:15:D3:3F:AF:A3:13:A0:BB:62:0D:97:8B
Certificate issuer: /CN=F362B38EAR/serialNumber=23E63BA551365FC59123A63712D79782AF1028D1
Certificate serial: 60
Authority key identifier: 23:E6:3B:A5:51:36:5F:C5:91:23:A6:37:12:D7:97:82:AF:10:28:D1
Authority info access: rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/8B65B68C09E011EA88978B68F8AEA228.roa
Signing time: Mon 18 Nov 2019 08:51:01 +0000
ROA not before: Mon 18 Nov 2019 08:50:56 +0000
ROA not after: Sat 17 Nov 2029 08:50:56 +0000
asID: 327687
IP address blocks: 137.63.153.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.crl
rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.mft
rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96 (0x60)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362B38EAR/serialNumber=23E63BA551365FC59123A63712D79782AF1028D1
Validity
Not Before: Nov 18 08:50:56 2019 GMT
Not After : Nov 17 08:50:56 2029 GMT
Subject: CN=5dd25b74-2cfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ff:de:68:2f:09:40:92:c4:3c:0a:7b:1d:72:
bd:1c:fd:a1:9b:18:43:08:ad:0a:46:7d:7e:3c:0c:
ab:14:0b:5c:8d:5c:7f:52:03:3d:6f:8b:d3:2d:71:
2e:9f:3a:73:20:fd:6c:83:2f:4e:ce:59:97:4e:80:
72:92:84:99:b4:16:31:37:ed:cf:7d:39:ae:cc:5d:
4a:f7:ba:65:17:d3:95:98:6f:46:a7:ca:03:7b:cf:
5b:3c:ee:b9:85:fb:d8:fd:84:92:3e:80:59:77:22:
fa:96:d4:23:55:1e:29:a3:b1:b6:a1:79:8f:af:58:
b1:ea:66:23:10:6f:3e:85:e6:5d:58:14:7e:47:a7:
51:4e:f9:2d:94:16:90:9d:3a:0e:9a:a4:11:6e:26:
e1:e7:19:65:c6:eb:34:76:c6:ef:cd:3d:c1:15:b9:
a2:3a:29:13:2b:5a:32:00:f3:be:e1:36:6f:be:01:
8b:7f:70:b8:a0:e5:4f:98:3b:63:26:45:bd:45:7e:
1c:31:63:c7:5c:ef:1e:ff:4b:13:6f:e2:f9:5b:b9:
f4:2e:a1:f6:58:2a:86:a7:f3:0b:f4:f9:84:bc:01:
ef:35:50:e7:e9:52:be:37:b5:b2:31:c6:5c:96:88:
c3:8a:95:bf:bb:66:97:87:7e:79:0c:fd:8e:d7:48:
15:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:D0:DC:33:88:C8:7D:91:15:D3:3F:AF:A3:13:A0:BB:62:0D:97:8B
X509v3 Authority Key Identifier:
keyid:23:E6:3B:A5:51:36:5F:C5:91:23:A6:37:12:D7:97:82:AF:10:28:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/8B65B68C09E011EA88978B68F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
137.63.153.0/24
Signature Algorithm: sha256WithRSAEncryption
05:de:18:80:ef:57:f4:61:48:7d:8a:1e:90:c3:25:53:35:b2:
e6:7a:bb:30:50:67:13:b3:bd:e6:53:9c:73:a8:b3:32:9f:60:
1d:1d:9d:11:ad:fd:7c:08:5b:e4:00:0f:43:f0:a7:a3:4e:e5:
4f:84:8c:76:24:e2:70:82:d0:17:a8:6d:36:22:01:ca:89:46:
df:a5:35:4d:7b:65:b5:81:ba:7b:6f:de:c6:26:ac:d0:df:5d:
99:16:d3:aa:a3:76:1a:1f:a4:34:90:86:90:d8:8f:df:ed:67:
a6:1f:11:c5:9b:9a:8e:e4:3a:22:e7:84:d4:10:27:75:6e:ab:
0a:b4:8b:67:00:64:17:07:f0:72:92:52:62:88:cc:53:8b:53:
1e:39:f8:a3:5c:d3:36:f0:37:02:9c:90:33:8b:c9:36:b2:10:
8f:c4:b0:6b:3b:f5:bc:53:94:7c:88:51:c1:d2:a4:7e:86:8b:
6c:3c:52:29:32:d7:39:63:b1:25:e9:6b:aa:04:bb:8b:0a:49:
db:ea:6d:35:94:05:5d:24:23:4e:25:9e:8c:04:08:6e:a5:dc:
12:7e:04:62:5a:38:c1:2c:e0:96:69:51:3e:a9:23:3a:bf:2a:
1a:d8:d6:15:69:78:23:20:93:e3:21:9d:04:a5:01:3e:6c:22:
2c:28:aa:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:32 2024 by rpki-client on console-ams.rpki-client.org