Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E373D/61A328A28B7311E99BC16668F8AEA228/592FD6C0681D11EA83CCC43BF8AEA228.roa
File: 592FD6C0681D11EA83CCC43BF8AEA228.roa (raw, json)
Hash identifier: v2NNekjIm02OWpemTutfgvCxos1GPu94FGQS7tyLC+k=
Subject key identifier: 57:3F:16:6F:13:C0:F4:3A:09:DD:36:04:35:C1:C4:9A:C2:F1:47:CF
Certificate issuer: /CN=F36E373DAR/serialNumber=8233A7FC2F1708BC601FA6F7C5F782277EB04D35
Certificate serial: 012C
Authority key identifier: 82:33:A7:FC:2F:17:08:BC:60:1F:A6:F7:C5:F7:82:27:7E:B0:4D:35
Authority info access: rsync://rpki.afrinic.net/repository/arin/gjOn_C8XCLxgH6b3xfeCJ36wTTU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E373D/61A328A28B7311E99BC16668F8AEA228/592FD6C0681D11EA83CCC43BF8AEA228.roa
Signing time: Tue 17 Mar 2020 07:03:05 +0000
ROA not before: Tue 17 Mar 2020 07:03:00 +0000
ROA not after: Sun 17 Mar 2030 07:03:00 +0000
asID: 327733
IP address blocks: 169.239.6.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E373D/61A328A28B7311E99BC16668F8AEA228/gjOn_C8XCLxgH6b3xfeCJ36wTTU.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E373D/61A328A28B7311E99BC16668F8AEA228/gjOn_C8XCLxgH6b3xfeCJ36wTTU.mft
rsync://rpki.afrinic.net/repository/arin/gjOn_C8XCLxgH6b3xfeCJ36wTTU.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 300 (0x12c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E373DAR/serialNumber=8233A7FC2F1708BC601FA6F7C5F782277EB04D35
Validity
Not Before: Mar 17 07:03:00 2020 GMT
Not After : Mar 17 07:03:00 2030 GMT
Subject: CN=5e707629-c181
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:a7:62:4e:1a:fb:e7:5e:b8:86:63:a8:80:08:
d8:43:e2:a3:9a:3a:76:64:8e:39:c0:e3:f8:76:19:
5b:fd:e7:91:9d:55:2f:70:aa:96:cc:ab:a0:fd:3c:
bc:d8:43:a4:0c:14:30:75:56:6c:69:dc:ab:a1:07:
29:c4:81:d1:04:3a:2b:2e:ad:84:5b:36:e1:21:e2:
d8:b9:22:1a:3d:97:34:ab:ac:0e:11:fb:bd:30:5c:
46:36:d1:80:a4:5b:3b:ad:96:bc:f4:fe:fd:b6:e8:
86:93:b7:c0:13:79:d9:c9:29:1a:0f:94:4f:e4:cc:
2e:29:9e:00:93:fd:e8:e3:c7:e7:e5:77:99:1b:c6:
ba:ed:68:a9:01:e4:93:f2:18:3e:ef:17:26:47:9c:
95:0b:a6:3b:4e:bf:e0:be:aa:6a:22:80:be:9f:90:
5c:34:6e:47:69:8e:c3:82:97:f7:71:9e:d7:d8:3d:
19:e1:8e:cc:04:01:65:9d:47:c0:62:ba:26:d3:a0:
6f:f2:e7:b8:76:ef:0f:28:ee:18:3b:62:82:cf:78:
d5:cf:3d:25:75:20:98:b7:8f:ec:79:05:1d:a3:7e:
d3:0d:5a:6e:3e:9b:73:bf:77:b9:b7:1e:88:78:0b:
3d:73:08:29:f7:09:38:39:29:62:4c:d1:91:ff:ce:
2c:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:3F:16:6F:13:C0:F4:3A:09:DD:36:04:35:C1:C4:9A:C2:F1:47:CF
X509v3 Authority Key Identifier:
keyid:82:33:A7:FC:2F:17:08:BC:60:1F:A6:F7:C5:F7:82:27:7E:B0:4D:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E373D/61A328A28B7311E99BC16668F8AEA228/gjOn_C8XCLxgH6b3xfeCJ36wTTU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/gjOn_C8XCLxgH6b3xfeCJ36wTTU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E373D/61A328A28B7311E99BC16668F8AEA228/592FD6C0681D11EA83CCC43BF8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
169.239.6.0/24
Signature Algorithm: sha256WithRSAEncryption
24:a9:af:89:51:9a:a8:8f:3c:29:55:66:d0:c3:5a:43:01:e5:
61:f9:63:48:40:98:35:2e:8c:38:41:c6:bd:ab:d5:6c:5e:ce:
e5:ac:24:1b:44:17:8f:ee:4b:2a:d7:c8:d4:ad:e3:5f:c1:c3:
a1:c6:8e:4a:4e:80:56:a2:0d:5e:f0:f4:89:57:5a:83:dd:72:
84:bb:ad:89:3a:0a:06:e9:49:fc:68:bb:f1:df:cc:d9:89:3b:
ca:5d:b4:8a:fb:67:5d:ac:11:8a:7b:03:08:f1:82:88:8f:73:
1d:69:7e:ed:f1:3c:6c:4f:4f:65:7a:e8:6c:3e:f9:f0:4e:9c:
0d:fe:29:d5:90:b5:49:ca:42:7a:df:11:4f:4b:94:ed:e7:f1:
2f:c3:94:4f:7f:cd:e8:d4:fe:63:04:c4:ba:4a:36:07:13:ac:
f1:38:34:06:98:32:fe:80:cd:5d:12:25:6f:23:52:27:a1:6d:
e1:8e:c9:13:c1:91:9b:29:91:51:a0:c9:b5:9d:c8:78:81:30:
14:49:a0:3b:d7:6c:60:9d:1b:4b:05:5a:f5:77:56:5e:33:29:
b7:c6:4b:af:1a:3c:b2:19:05:f8:c3:c6:0e:12:2c:f4:21:82:
12:18:11:16:53:6e:b9:6d:c5:b2:08:ef:2e:ef:6c:99:6b:06:
dc:51:fc:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:30 2024 by rpki-client on console-ams.rpki-client.org