Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E373D/61A328A28B7311E99BC16668F8AEA228/EEE984F0681C11EA9F6A323BF8AEA228.roa
File: EEE984F0681C11EA9F6A323BF8AEA228.roa (raw, json)
Hash identifier: 1YVSNhH0hc5JS4oVbbc6hL2rxWXxAoZtPZWaxS/mjW8=
Subject key identifier: A8:54:F5:7F:FA:45:C3:13:52:60:AA:38:37:52:75:CD:88:5A:9F:35
Certificate issuer: /CN=F36E373DAR/serialNumber=8233A7FC2F1708BC601FA6F7C5F782277EB04D35
Certificate serial: 012A
Authority key identifier: 82:33:A7:FC:2F:17:08:BC:60:1F:A6:F7:C5:F7:82:27:7E:B0:4D:35
Authority info access: rsync://rpki.afrinic.net/repository/arin/gjOn_C8XCLxgH6b3xfeCJ36wTTU.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E373D/61A328A28B7311E99BC16668F8AEA228/EEE984F0681C11EA9F6A323BF8AEA228.roa
Signing time: Tue 17 Mar 2020 07:00:07 +0000
ROA not before: Tue 17 Mar 2020 07:00:03 +0000
ROA not after: Sun 17 Mar 2030 07:00:03 +0000
asID: 327733
IP address blocks: 169.239.4.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36E373D/61A328A28B7311E99BC16668F8AEA228/gjOn_C8XCLxgH6b3xfeCJ36wTTU.crl
rsync://rpki.afrinic.net/repository/member_repository/F36E373D/61A328A28B7311E99BC16668F8AEA228/gjOn_C8XCLxgH6b3xfeCJ36wTTU.mft
rsync://rpki.afrinic.net/repository/arin/gjOn_C8XCLxgH6b3xfeCJ36wTTU.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 298 (0x12a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E373DAR/serialNumber=8233A7FC2F1708BC601FA6F7C5F782277EB04D35
Validity
Not Before: Mar 17 07:00:03 2020 GMT
Not After : Mar 17 07:00:03 2030 GMT
Subject: CN=5e707577-c6be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:10:6d:6a:97:70:c0:c5:ee:1a:6d:35:73:4e:
ca:11:0e:39:66:e9:e5:02:66:b9:ce:7f:e7:99:17:
98:88:68:0e:4e:fd:f6:de:a3:c3:3d:b0:1e:5b:82:
2b:58:d9:e0:cc:ad:bd:0e:66:d5:59:36:46:d6:f5:
e6:44:3e:7c:71:9b:a3:c7:72:d8:ec:99:d5:09:c0:
94:74:82:c4:7d:a4:6e:8f:33:fb:c0:64:62:8f:55:
7b:56:49:ca:72:1e:b9:87:76:ac:9d:fb:ba:0d:99:
09:88:5a:14:4b:58:1e:67:be:61:a9:45:ff:21:40:
43:e7:ac:e6:cc:91:49:47:bf:d7:6a:69:b7:e1:04:
6f:ff:ad:42:19:6a:1b:60:4f:85:e2:93:a5:62:c4:
ad:eb:ba:62:25:6e:eb:14:b8:8b:a7:97:0c:26:a2:
b9:9d:45:a3:7f:f4:0f:58:c6:28:0b:53:68:9a:97:
8e:52:66:21:de:07:3e:03:ba:da:45:8d:da:93:2a:
94:66:c2:e0:18:22:9c:3c:f2:4e:8c:64:42:a8:d2:
74:04:63:16:40:c8:6c:cd:59:04:3d:59:df:3a:74:
e8:65:7b:91:83:3a:a6:d3:cf:b3:f1:f4:ed:cd:2a:
6d:2d:b0:68:d6:a3:b1:64:59:e0:1a:48:5a:e5:c2:
3c:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:54:F5:7F:FA:45:C3:13:52:60:AA:38:37:52:75:CD:88:5A:9F:35
X509v3 Authority Key Identifier:
keyid:82:33:A7:FC:2F:17:08:BC:60:1F:A6:F7:C5:F7:82:27:7E:B0:4D:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E373D/61A328A28B7311E99BC16668F8AEA228/gjOn_C8XCLxgH6b3xfeCJ36wTTU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/gjOn_C8XCLxgH6b3xfeCJ36wTTU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E373D/61A328A28B7311E99BC16668F8AEA228/EEE984F0681C11EA9F6A323BF8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
169.239.4.0/22
Signature Algorithm: sha256WithRSAEncryption
9a:f5:9a:2e:95:a5:51:60:f4:cf:de:e7:9d:b6:64:fd:b6:2e:
08:ed:fd:0c:d1:bd:01:b9:0f:09:40:bf:34:d1:21:f2:b7:13:
ed:70:f9:b2:88:34:2e:d7:38:0f:06:3d:23:9c:da:ab:59:e9:
25:35:52:b9:1b:fb:ab:c5:a8:ea:a4:72:9e:f2:3d:de:4b:f8:
b1:d9:2c:4f:97:15:51:4e:9f:40:ef:63:54:f1:86:67:ea:5c:
3e:08:be:35:27:12:e6:3b:10:d4:6d:36:83:52:2f:fd:b7:55:
0e:04:ab:a7:e1:97:5d:e7:ac:70:a6:18:26:e6:b1:6c:b6:da:
0c:0d:96:26:2b:3b:43:78:84:bc:08:20:64:fa:2f:45:97:43:
a6:cd:74:45:70:b2:5c:83:29:89:1e:73:48:56:93:a1:c7:67:
fa:bb:fc:77:db:a9:cc:50:a8:da:6e:90:6f:da:d9:75:73:77:
fa:42:1c:ed:84:f4:f1:04:9b:d3:f0:b9:5b:cb:f6:21:5f:cb:
e7:72:b6:a3:74:bb:4a:f2:44:9b:ca:7e:44:48:5a:0e:ba:f9:
e7:19:a4:cf:86:b7:50:cf:c4:20:ec:31:6a:c3:fd:fe:08:d9:
92:a5:e9:0c:86:80:f3:17:6b:c2:56:2b:df:c6:e0:da:8c:44:
3f:7c:31:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:05:30 2024 by rpki-client on console-ams.rpki-client.org