Route Origin Authorization

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E3644B36327411EDB53FC1D2F1222468.roa
File:                     E3644B36327411EDB53FC1D2F1222468.roa (download)
Hash identifier:          s9d8MSiISTtY4ttFYg2ou+GI9hW9iWxy6q2Zu9QKc3o=
Subject key identifier:   F2:83:2E:02:80:B6:17:6C:2A:90:02:5A:48:6B:DC:AE:3C:74:4D:63
Certificate issuer:       /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial:       17A9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access:    rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E3644B36327411EDB53FC1D2F1222468.roa
ROA valid until:          Jan 15 08:28:30 2023 GMT
asID:                     1239
IP address blocks:
    1: 156.237.48.0/20 maxlen: 24

Validation: OK

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6057 (0x17a9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
        Validity
            Not Before: Sep 12 08:28:30 2022 GMT
            Not After : Jan 15 08:28:30 2023 GMT
        Subject: CN=631eedb1-b0c1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:7d:6c:50:9b:3b:c7:e8:79:a5:35:b0:d5:e8:
                    38:c5:d5:62:0a:91:15:02:a2:22:09:5a:c5:d7:71:
                    a5:2b:8c:da:ea:9e:b2:5b:fd:47:25:1a:48:4e:6d:
                    19:09:21:b8:56:a1:f2:c0:aa:e3:35:b5:1f:20:a9:
                    91:b7:1c:1e:08:4b:a4:36:2e:05:8b:87:f8:da:30:
                    fe:d6:65:d0:e7:0f:91:3d:bc:48:0c:38:b3:80:27:
                    cc:20:bb:ec:4d:95:82:6a:73:ae:79:bd:f9:c2:8c:
                    ef:90:98:c0:d5:00:ed:f5:de:51:a5:b4:bd:66:34:
                    95:1a:00:a6:ab:91:fd:b6:96:f0:cf:25:8e:8e:68:
                    d2:45:7f:b3:48:16:05:09:22:56:af:92:74:61:0a:
                    dc:41:ea:49:dc:0a:b8:c9:52:6c:4a:aa:90:f9:e4:
                    d7:fa:bd:0c:4a:ef:08:dc:1b:0a:72:06:7e:7f:4f:
                    63:f8:2f:0b:39:ed:05:6d:91:60:b9:0a:cc:b4:72:
                    52:2c:61:36:ef:01:f6:d1:a5:da:0c:5e:9e:c5:e6:
                    e5:9d:00:62:f6:54:14:0e:9b:04:87:7c:36:da:b8:
                    d1:d8:eb:2c:b9:72:7a:5b:c3:90:a7:23:09:99:25:
                    36:62:42:c1:47:15:f5:57:9f:46:25:a2:50:ea:7d:
                    de:ad
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                F2:83:2E:02:80:B6:17:6C:2A:90:02:5A:48:6B:DC:AE:3C:74:4D:63
            X509v3 Authority Key Identifier: 
                keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl

            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E3644B36327411EDB53FC1D2F1222468.roa
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  156.237.48.0/20

    Signature Algorithm: sha256WithRSAEncryption
         26:31:f0:a9:36:e4:85:83:61:35:99:69:ce:91:50:45:ab:f6:
         8e:d1:2a:90:99:65:71:6c:8f:49:a3:37:56:c8:cd:1a:4b:b7:
         40:f4:b1:0d:39:b1:b0:85:6d:94:48:7a:a2:17:b8:fc:9b:28:
         75:cd:04:65:34:9d:2b:f0:df:9a:26:50:90:10:b4:44:53:88:
         f2:dd:4a:f1:b2:39:04:aa:9c:8b:ed:aa:b8:16:fb:ef:61:82:
         93:49:c6:76:57:43:37:61:39:ba:1f:13:77:21:38:5e:d1:e4:
         99:30:d4:52:5f:6d:92:17:be:f7:7d:0b:d7:d6:c9:32:da:34:
         d9:a6:1c:47:d0:d0:ec:68:04:00:31:01:9e:33:c4:34:4c:17:
         cd:47:2a:24:9b:83:61:be:8e:c2:aa:43:32:21:07:82:87:51:
         cb:51:d8:ab:e6:54:ee:b6:c6:14:12:d8:2f:16:c8:3b:ce:30:
         91:bd:f8:a5:05:bf:51:d5:05:e3:12:35:87:95:0b:89:32:23:
         29:9a:04:bd:83:c9:89:4c:e1:80:dd:fa:10:8e:78:7b:1b:f3:
         d3:82:d2:ea:4b:fb:ea:ea:d0:ec:9f:38:67:c8:4c:43:99:47:
         bf:cd:5f:c6:41:41:89:73:ed:dd:41:cb:e4:4d:18:68:42:93:
         83:66:e0:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 8 09:46:18 2022 by rpki-client.