Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/51BF632E719B11EFA88B3746762E951A.roa
File: 51BF632E719B11EFA88B3746762E951A.roa (raw, json)
Hash identifier: MGm1dIhdKXxLyVmc8gJj7fZLqOBJZP4+JzhWiWU6AuI=
Subject key identifier: 25:95:AC:85:09:97:4C:47:C6:8F:25:C3:43:0A:E1:35:53:91:CC:36
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: B502
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/51BF632E719B11EFA88B3746762E951A.roa
Signing time: Fri 13 Sep 2024 06:42:18 +0000
ROA not before: Fri 13 Sep 2024 06:42:13 +0000
ROA not after: Fri 08 Aug 2025 06:42:13 +0000
asID: 133861
IP address blocks: 45.207.58.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46338 (0xb502)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 13 06:42:13 2024 GMT
Not After : Aug 8 06:42:13 2025 GMT
Subject: CN=66e3deca-2860
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:04:85:98:4c:42:a6:35:4f:a6:8a:be:4b:89:
68:fd:54:58:25:bd:dc:cc:26:d7:30:2d:ba:07:70:
f4:1a:7d:7a:75:af:d8:8c:2f:5e:b6:f5:4b:e0:56:
0e:c9:2a:6c:96:b0:14:1a:87:4f:7e:f3:51:9a:e1:
06:4f:9d:9e:ad:bc:8b:a1:62:02:21:a6:bf:52:f7:
24:0d:bb:05:64:4a:23:d4:e0:17:38:ba:20:6b:7d:
5b:05:ce:a9:77:7d:97:64:8b:9f:51:14:e1:62:9f:
ae:fd:bd:9c:c4:d5:53:70:fa:dc:fe:d4:e9:14:0b:
c1:89:f0:29:4e:24:0d:22:5d:76:b3:9f:14:35:53:
ad:04:e2:e7:a3:c5:83:9b:66:5c:51:da:0c:83:ac:
8b:8a:63:d0:9b:77:af:6a:be:09:59:3a:4c:71:18:
7b:66:4f:b5:ac:b9:7d:06:31:03:ca:cf:b4:1c:53:
ac:ce:f7:d5:8c:a0:3c:8e:56:2c:6b:db:56:50:9b:
14:96:34:77:d9:0e:24:13:e8:27:9b:e0:87:d7:07:
af:a2:c4:b8:8f:eb:48:b1:d1:68:6f:f5:da:6c:d3:
8f:6c:86:83:04:d5:2f:65:a9:21:3d:95:d5:6b:65:
d8:fa:0f:cd:69:83:8a:53:6b:76:8c:82:a9:9f:c7:
60:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:95:AC:85:09:97:4C:47:C6:8F:25:C3:43:0A:E1:35:53:91:CC:36
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/51BF632E719B11EFA88B3746762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.58.0/24
Signature Algorithm: sha256WithRSAEncryption
16:7e:51:d7:d9:f1:d7:a5:cf:4f:e4:c9:a5:bb:d3:af:b5:f9:
ea:ff:ba:65:fd:ab:ed:0a:13:c6:be:c7:a8:01:d3:21:02:fa:
65:d5:c9:18:3b:59:d2:12:cb:91:dd:5c:64:f5:0a:26:71:80:
38:da:05:e7:60:f7:24:75:ed:3e:73:3e:66:b1:90:80:fe:c0:
12:0c:61:58:c8:8b:a4:e9:64:34:f7:bf:09:02:ab:bf:dd:36:
98:3e:21:9e:7a:83:c4:f2:e1:15:1e:02:14:75:ec:9b:4c:f6:
1b:74:ab:fc:41:3c:22:a9:c3:af:62:f3:b3:54:e9:ab:77:e9:
f0:d1:e1:1b:b4:14:85:97:62:41:7e:14:76:da:fe:c2:16:75:
65:7e:b7:65:b3:0e:21:45:8c:69:22:70:1b:0b:ca:74:62:bf:
f1:a6:a5:cb:d4:3c:46:0a:05:d6:1a:74:2c:c0:66:ba:3f:09:
af:04:76:1a:79:11:1d:cb:21:5f:7c:e8:a8:86:89:3c:c5:8a:
83:6d:66:2f:fd:15:3c:25:12:50:06:f9:0d:57:81:11:fb:cb:
c9:93:8f:fb:6a:ca:e0:f6:54:93:e9:ca:9f:38:8a:83:28:b8:
c1:13:ab:ab:db:be:7a:2b:57:9d:76:aa:5e:bb:cc:ec:92:10:
f0:b7:66:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:30 2024 by rpki-client on console-ams.rpki-client.org