Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/D4A039CE09DD11EAA4734B66F8AEA228.roa
File: D4A039CE09DD11EAA4734B66F8AEA228.roa (raw, json)
Hash identifier: zSKhiPZVELGgkEADAH4KYgvi6TS8pWsLG7sQWDrBwH4=
Subject key identifier: 65:4B:B2:62:07:18:20:8F:21:83:5F:6B:EA:E2:EF:FC:9D:99:03:0D
Certificate issuer: /CN=F362B38EAR/serialNumber=23E63BA551365FC59123A63712D79782AF1028D1
Certificate serial: 48
Authority key identifier: 23:E6:3B:A5:51:36:5F:C5:91:23:A6:37:12:D7:97:82:AF:10:28:D1
Authority info access: rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/D4A039CE09DD11EAA4734B66F8AEA228.roa
Signing time: Mon 18 Nov 2019 08:31:35 +0000
ROA not before: Mon 18 Nov 2019 08:31:28 +0000
ROA not after: Sat 17 Nov 2029 08:31:28 +0000
asID: 327687
IP address blocks: 137.63.131.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.crl
rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.mft
rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72 (0x48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362B38EAR/serialNumber=23E63BA551365FC59123A63712D79782AF1028D1
Validity
Not Before: Nov 18 08:31:28 2019 GMT
Not After : Nov 17 08:31:28 2029 GMT
Subject: CN=5dd256e7-4eff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:b2:57:e9:be:ea:4e:ab:82:1a:ad:19:23:83:
11:81:5a:5a:7b:85:8c:69:f9:8b:e0:8a:29:66:47:
d4:0b:66:ca:6d:d4:f5:e7:c4:80:0d:98:42:fa:68:
9a:89:8d:b7:ad:0d:a7:0d:b4:d2:1a:08:6a:71:e3:
61:66:b7:a7:dd:6d:c8:5c:cd:0b:61:ea:5a:09:cf:
58:9d:96:7d:af:19:1c:b2:32:aa:2f:4b:bc:e2:af:
44:88:36:29:e2:41:6e:54:ff:de:6d:10:d0:4f:90:
62:86:c3:c6:68:52:c5:68:8b:9c:11:48:31:0b:f4:
b0:8c:21:6b:f2:03:55:9d:df:01:07:38:db:c6:d0:
4c:d0:09:bd:20:43:7b:56:13:43:2a:54:6a:97:16:
1d:c6:11:8e:d7:5f:67:9f:a5:bb:11:14:1f:73:4f:
8a:b9:ff:9c:d5:73:08:f8:e4:36:e3:df:28:92:d7:
82:60:c6:11:f2:41:19:17:a9:51:71:fb:55:a3:27:
1a:15:c8:cd:74:52:2a:6f:a5:30:ae:75:ff:94:a6:
ab:9d:b8:a4:e3:07:22:02:b5:f1:f5:11:f2:bf:76:
52:d3:b0:24:ad:69:7b:e7:b4:21:30:8e:3d:3a:a0:
45:09:88:7a:34:d0:d6:a6:dd:55:ba:ce:9b:ab:1d:
c3:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:4B:B2:62:07:18:20:8F:21:83:5F:6B:EA:E2:EF:FC:9D:99:03:0D
X509v3 Authority Key Identifier:
keyid:23:E6:3B:A5:51:36:5F:C5:91:23:A6:37:12:D7:97:82:AF:10:28:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/D4A039CE09DD11EAA4734B66F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
137.63.131.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:f0:03:11:d7:8d:b9:fa:76:e7:f3:ff:e4:b1:09:11:3a:f9:
d5:3e:3b:b5:ae:a8:eb:a6:e8:fb:5f:7a:b3:b4:16:95:51:92:
59:65:3a:34:f6:f3:b7:b7:b5:11:74:83:9e:04:58:b2:16:74:
ee:1e:ac:01:cf:00:3b:8d:f4:e4:93:c0:9b:60:03:80:a1:c2:
cd:29:e7:09:a0:9d:d6:e2:29:0a:01:a6:36:5f:eb:b0:32:f5:
07:b2:0e:bb:24:96:9d:00:d3:ab:9d:b9:e5:e2:15:4e:68:fd:
a0:b8:fc:3c:6e:78:bd:34:a3:93:5b:34:eb:5b:73:c7:7e:fb:
14:5c:76:66:fe:9c:87:92:7a:ba:07:c8:df:f3:b3:17:95:da:
8c:ae:75:c0:b9:96:77:1e:6e:f1:c5:93:66:66:d6:21:c4:5f:
92:6c:6d:bb:4d:25:a8:2e:bb:f6:2f:fe:7d:1a:86:d3:71:06:
61:b2:48:04:c0:71:d3:8c:42:c6:6d:db:23:4f:3b:b4:7c:05:
e4:3e:33:a6:82:3c:0d:91:f7:38:ce:85:21:dd:b4:ae:38:c2:
3d:b1:e7:5b:98:56:30:4c:3b:0a:5b:7a:ed:e7:d6:9c:d2:2d:
83:11:82:76:70:8c:6d:32:8d:3a:67:c5:27:ef:32:b3:41:6c:
0e:0c:5d:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:52 2024 by rpki-client on console-fra.rpki-client.org