Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/FB59B72409DE11EAA2294367F8AEA228.roa
File: FB59B72409DE11EAA2294367F8AEA228.roa (raw, json)
Hash identifier: Su+CO1y8gGFNwixfyQ4vvTgk2ObTrvdxlm9+DdC4fug=
Subject key identifier: 2E:E8:C7:44:2E:32:4D:F2:42:74:7B:C7:ED:02:EB:1A:AF:01:E1:99
Certificate issuer: /CN=F362B38EAR/serialNumber=23E63BA551365FC59123A63712D79782AF1028D1
Certificate serial: 52
Authority key identifier: 23:E6:3B:A5:51:36:5F:C5:91:23:A6:37:12:D7:97:82:AF:10:28:D1
Authority info access: rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/FB59B72409DE11EAA2294367F8AEA228.roa
Signing time: Mon 18 Nov 2019 08:39:49 +0000
ROA not before: Mon 18 Nov 2019 08:39:44 +0000
ROA not after: Sat 17 Nov 2029 08:39:44 +0000
asID: 327687
IP address blocks: 137.63.136.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.crl
rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.mft
rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82 (0x52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362B38EAR/serialNumber=23E63BA551365FC59123A63712D79782AF1028D1
Validity
Not Before: Nov 18 08:39:44 2019 GMT
Not After : Nov 17 08:39:44 2029 GMT
Subject: CN=5dd258d5-981c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:7c:d4:b6:39:e3:f8:8a:94:69:ca:18:2a:0b:
fd:23:1c:78:d0:ac:01:31:f4:a8:76:6c:26:30:c0:
c0:26:2c:01:ad:30:c6:f8:fc:9c:79:e8:b7:a5:ca:
39:70:0a:d7:54:8d:36:0f:79:8a:d0:6c:a7:08:af:
e8:5a:74:d5:ad:15:c7:17:4e:79:a9:c4:58:7f:5f:
cb:1c:0d:10:be:cd:f5:e0:2f:38:c9:d7:d0:88:a0:
10:8f:e8:a8:93:e7:1b:cc:93:aa:ab:c1:a1:8a:30:
93:26:27:2f:3a:5a:5c:8d:6d:6d:8d:aa:1e:1f:af:
a4:b9:e6:2c:82:86:66:08:7d:59:9f:b3:1a:66:fb:
f6:0b:59:b9:c6:84:5b:fa:b8:a0:a9:6d:f4:0e:1e:
85:e3:8f:55:8c:32:57:2d:02:a8:30:72:3a:26:24:
16:ef:3a:3e:56:db:95:13:01:33:0f:49:37:b9:46:
70:58:d4:f7:68:11:86:33:ab:31:c9:ba:73:86:19:
10:89:5a:8c:91:96:8d:65:ba:49:10:72:fa:c3:9b:
15:84:63:a2:e1:20:fa:ca:b9:e6:8b:58:ac:d4:34:
4a:41:80:73:91:41:bc:67:c8:42:44:ec:a6:08:73:
2a:4c:b6:a8:ef:b4:bd:83:24:6a:84:ac:f1:6b:05:
81:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:E8:C7:44:2E:32:4D:F2:42:74:7B:C7:ED:02:EB:1A:AF:01:E1:99
X509v3 Authority Key Identifier:
keyid:23:E6:3B:A5:51:36:5F:C5:91:23:A6:37:12:D7:97:82:AF:10:28:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/FB59B72409DE11EAA2294367F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
137.63.136.0/24
Signature Algorithm: sha256WithRSAEncryption
52:4a:7f:16:27:82:d8:85:1d:02:7f:b0:82:15:96:83:b3:00:
99:81:a3:b5:9d:a2:dc:a8:4b:78:84:fc:f1:cb:ff:0b:82:52:
fc:68:4a:7c:8d:6a:e1:9e:db:ee:a3:07:8c:29:a1:63:86:7d:
04:76:91:0d:30:e0:7d:e7:dd:80:eb:43:bb:6b:fd:ce:aa:e7:
ae:82:ed:e1:35:91:bc:3c:58:62:13:d8:0f:81:02:07:06:6b:
9e:2b:4f:81:1c:4c:aa:81:45:c4:f6:6f:d6:70:3d:f6:c4:f8:
25:73:7c:21:75:7c:7a:d7:37:c1:5e:c2:2a:16:e7:73:99:e7:
50:27:a3:ea:b1:42:bb:d4:e8:9a:f7:7b:5b:e2:d3:f0:80:64:
f0:3a:78:fa:8a:4e:32:b5:b9:60:10:19:d5:9c:15:17:7b:10:
3a:5f:17:3a:a0:6f:31:8f:a6:8d:5a:d2:a4:e9:80:f0:54:e1:
a5:77:a7:3c:ed:60:70:00:59:69:db:06:09:57:f4:7b:61:73:
36:11:be:87:95:e6:3c:9d:1e:b6:ec:75:5e:d6:bd:26:b9:f2:
34:a6:83:23:23:8e:4d:6d:4c:97:fd:e1:c4:a6:d3:d7:28:52:
74:2f:df:86:1a:56:48:a3:eb:5e:94:20:c5:1d:d8:3a:d2:30:
ec:53:5a:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:32 2024 by rpki-client on console-ams.rpki-client.org