Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/58092CAA0DC911EF9CF1003F017001B1.roa
File: 58092CAA0DC911EF9CF1003F017001B1.roa (raw, json)
Hash identifier: 8JwZbgp/Hubgul4W3SPXCEOKsuf8Tzba6OOb0l36/+w=
Subject key identifier: FD:F9:0F:40:6A:AA:7A:47:4C:BA:B5:F7:58:5A:28:31:72:04:26:DA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 88F1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/58092CAA0DC911EF9CF1003F017001B1.roa
Signing time: Thu 09 May 2024 05:59:49 +0000
ROA not before: Thu 09 May 2024 05:59:45 +0000
ROA not after: Tue 13 May 2025 05:59:45 +0000
asID: 55720
IP address blocks: 45.204.17.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35057 (0x88f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 9 05:59:45 2024 GMT
Not After : May 13 05:59:45 2025 GMT
Subject: CN=663c6655-5b2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:c6:2f:58:74:17:cc:f3:29:de:f7:c8:56:31:
27:91:01:0f:b9:4d:ab:65:23:5c:ee:2c:58:bd:9d:
30:a6:28:4c:0c:7f:e8:ca:07:c2:58:e4:d3:36:51:
21:46:1b:fc:e5:9d:a9:c7:14:81:48:99:e4:eb:29:
23:35:64:b7:69:c5:d4:ab:3a:c2:42:55:94:4b:22:
9e:b3:0a:fc:16:2d:fd:c5:e6:d7:bf:60:af:6b:b0:
98:49:8f:fe:15:b4:aa:02:b1:d4:70:21:95:3b:a4:
09:e1:92:b0:18:52:ed:40:1a:2c:17:27:87:87:1f:
20:7f:e9:2d:4b:e4:c4:9f:01:fa:57:d7:bb:c5:d4:
1b:c8:65:93:8b:91:8d:29:9d:62:0f:72:e7:82:44:
53:a3:b6:8c:a7:45:99:88:33:d7:3e:49:1e:09:30:
92:fc:7e:6a:c5:1a:16:2c:74:e6:f3:23:7b:20:b0:
d8:be:7c:f0:fe:f8:0e:25:a0:70:9f:5f:e1:d2:af:
61:72:eb:8e:70:eb:32:d9:32:e6:3e:8e:d8:fb:be:
eb:e5:0e:c2:37:64:4c:04:cf:b5:53:21:61:e0:8c:
1d:70:35:2e:12:92:54:fe:cb:8a:ee:b4:2b:74:22:
90:01:79:3a:78:32:a6:e5:03:1b:ce:62:9c:ee:90:
e9:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:F9:0F:40:6A:AA:7A:47:4C:BA:B5:F7:58:5A:28:31:72:04:26:DA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/58092CAA0DC911EF9CF1003F017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.17.0/24
Signature Algorithm: sha256WithRSAEncryption
41:31:50:63:f4:0b:db:38:d0:41:bc:07:ac:f6:61:13:5a:01:
49:9d:14:bc:6f:8c:02:5e:fa:a2:e0:e8:f4:8b:9a:98:b7:3e:
42:1c:f1:a1:9e:21:cf:e8:c7:0b:59:a8:43:24:fe:48:0d:5f:
d1:7a:1a:c1:ac:0c:72:4e:80:fe:92:2d:ba:14:3e:f7:97:cc:
02:c3:ab:86:9e:04:73:a0:01:97:5a:b5:04:4f:fa:a2:e8:4b:
22:cd:87:f4:a1:66:dd:7f:a7:44:cf:fb:5a:4a:38:80:1d:7f:
d8:88:10:d8:0f:f4:08:c3:2e:7a:04:e6:03:86:14:54:f6:29:
51:e0:0f:ab:a4:b2:7d:5d:49:b8:8f:f4:85:1c:33:8b:0e:11:
2d:7f:0c:c0:61:72:99:18:2c:f9:f8:bd:a3:f9:a3:c9:7a:2e:
36:d4:49:17:f7:ae:f3:16:fb:cc:1c:9b:82:18:88:b3:40:5b:
8a:48:d9:ae:59:b5:f3:e4:82:99:1c:de:00:7a:51:d3:b5:2b:
7c:df:a6:06:a6:5a:21:ea:6e:b2:ce:a0:26:03:ef:c7:18:85:
68:a0:7f:a5:60:10:bd:2f:11:f0:42:3e:67:12:c2:cd:6f:88:
16:7a:f4:11:74:43:48:f7:51:96:93:22:aa:ff:a8:6a:df:f9:
c6:46:91:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:31 2024 by rpki-client on console-ams.rpki-client.org