Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/B98BB7B409E011EAB2F9B668F8AEA228.roa
File: B98BB7B409E011EAB2F9B668F8AEA228.roa (raw, json)
Hash identifier: MTLRDBUf1z3fjz/pHORaJxGlFn4yMEICSJGfavRgDnQ=
Subject key identifier: 55:36:FA:69:C4:04:08:AA:54:08:E8:CB:3D:7B:81:B2:00:76:A9:FC
Certificate issuer: /CN=F362B38EAR/serialNumber=23E63BA551365FC59123A63712D79782AF1028D1
Certificate serial: 62
Authority key identifier: 23:E6:3B:A5:51:36:5F:C5:91:23:A6:37:12:D7:97:82:AF:10:28:D1
Authority info access: rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/B98BB7B409E011EAB2F9B668F8AEA228.roa
Signing time: Mon 18 Nov 2019 08:52:18 +0000
ROA not before: Mon 18 Nov 2019 08:52:13 +0000
ROA not after: Sat 17 Nov 2029 08:52:13 +0000
asID: 327687
IP address blocks: 137.63.154.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.crl
rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.mft
rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98 (0x62)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362B38EAR/serialNumber=23E63BA551365FC59123A63712D79782AF1028D1
Validity
Not Before: Nov 18 08:52:13 2019 GMT
Not After : Nov 17 08:52:13 2029 GMT
Subject: CN=5dd25bc2-30c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d6:4d:8e:e5:76:ac:ee:e7:16:84:ee:7d:97:
a7:b2:d3:8b:89:98:e5:1c:61:6b:1e:04:d3:89:63:
50:07:98:d6:a7:8c:ad:b2:63:e5:a3:b8:11:fb:22:
b1:b6:b9:57:1e:19:f9:ab:76:a9:a0:f9:9f:d5:89:
cd:94:c6:06:0b:ca:31:70:df:7f:bd:a3:73:e3:21:
a6:60:69:11:f8:f2:44:94:c7:ae:b9:5a:f0:17:40:
8e:d6:1d:27:ef:5c:f9:c0:c5:99:a0:8e:ca:b5:7d:
4b:0b:db:ae:47:c3:be:f7:08:7f:25:f0:a0:2b:15:
f0:b2:95:78:86:e3:c2:1f:8d:ec:2c:c8:db:ca:fc:
fa:76:c0:ff:7e:4d:16:33:51:3b:db:7a:06:9d:17:
de:29:34:b2:5a:18:ee:79:f0:8d:00:20:89:2a:14:
ae:9a:89:83:0a:9a:e1:56:91:d7:78:3d:b4:94:ae:
4d:42:5c:be:c4:02:6f:fa:ac:ef:a6:18:40:d4:1e:
69:1a:90:d1:f4:ca:23:6f:42:c6:c1:78:2a:67:ed:
e2:e0:3d:00:65:7e:91:64:03:2b:39:3f:6b:44:ef:
13:e2:09:d1:a6:83:98:3c:04:13:c4:2c:c4:4a:08:
2b:10:49:a3:3a:bc:ef:0a:cf:48:83:bd:82:09:d3:
24:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:36:FA:69:C4:04:08:AA:54:08:E8:CB:3D:7B:81:B2:00:76:A9:FC
X509v3 Authority Key Identifier:
keyid:23:E6:3B:A5:51:36:5F:C5:91:23:A6:37:12:D7:97:82:AF:10:28:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/B98BB7B409E011EAB2F9B668F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
137.63.154.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:a0:f0:0f:30:5b:c0:23:4f:c0:e9:6c:21:c6:77:47:f3:5d:
43:9d:e0:3c:a8:54:87:52:48:1a:b9:a1:a9:13:aa:10:2f:bf:
87:d2:8d:7c:b5:89:cf:65:c3:98:5d:70:b5:8b:06:66:95:ea:
31:ab:25:ed:f9:aa:39:37:74:2d:ac:03:bd:8f:c1:40:e8:3d:
d9:c3:e8:82:80:ac:7a:4c:5f:4a:d9:c3:c7:61:32:0b:a1:24:
04:8f:bc:fc:6e:88:0e:ed:2f:82:21:a7:5b:e2:c7:c0:f2:55:
ae:ef:22:0c:4d:af:19:3c:c3:91:5f:fc:58:ad:3c:5c:f4:db:
34:cf:44:1b:ed:5e:b7:6e:1b:da:84:3d:79:3f:a9:61:09:d2:
00:a2:ce:c0:23:b1:1a:a8:49:01:f1:e2:5f:45:eb:cd:4d:4c:
77:c0:9f:d6:77:56:1a:d0:be:3e:86:05:3c:68:33:20:54:e8:
0a:da:44:9a:be:8c:55:04:92:19:f7:3e:86:3c:9d:ad:19:fd:
4a:47:a3:ba:dc:b9:7e:bf:d3:b4:5f:5b:a7:57:29:d6:dc:c9:
29:59:ca:a8:76:9c:14:7e:ff:62:9d:5b:d4:7c:3a:68:b3:c4:
35:c8:0a:43:63:e9:4f:f5:e0:d0:6a:4c:5c:73:9c:e8:72:1c:
e1:01:63:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:52 2024 by rpki-client on console-fra.rpki-client.org