Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5F2EF86A73F511EFB12B367C762E951A.roa
File: 5F2EF86A73F511EFB12B367C762E951A.roa (raw, json)
Hash identifier: cz0B2VCRGu5O5t/JOIDps1EWcwg5akUd0KWGNaoueOU=
Subject key identifier: 1C:48:12:8A:DF:36:4C:18:6B:A7:9C:CD:52:E4:08:0C:72:42:70:14
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: B713
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5F2EF86A73F511EFB12B367C762E951A.roa
Signing time: Mon 16 Sep 2024 06:31:57 +0000
ROA not before: Mon 16 Sep 2024 06:31:54 +0000
ROA not after: Fri 08 Aug 2025 06:31:54 +0000
asID: 133861
IP address blocks: 45.207.58.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46867 (0xb713)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 16 06:31:54 2024 GMT
Not After : Aug 8 06:31:54 2025 GMT
Subject: CN=66e7d0dd-1def
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c5:ca:95:4c:a1:16:13:98:52:14:c8:d6:2b:
9a:49:18:17:0d:03:31:b9:ab:a8:df:a4:5f:81:b4:
13:0f:aa:70:66:3b:68:6b:ec:cc:56:ad:cf:d0:a2:
cd:7b:e9:2d:13:49:1d:6a:c1:ac:28:20:b2:95:11:
1d:35:5a:c1:47:df:82:92:37:f5:2e:58:28:5b:41:
f5:8e:6e:78:2f:40:fb:bb:d0:c6:73:3b:c8:89:f0:
b1:73:59:0a:3d:8e:0e:bd:55:86:f0:5b:ce:50:a9:
e7:61:15:4b:db:22:3a:b6:a0:5a:f4:5e:f5:a1:05:
df:fa:55:83:43:30:07:4c:90:7d:e3:2b:27:7a:02:
92:a5:da:46:62:d2:eb:4a:25:da:30:da:0d:c1:5d:
23:72:40:df:eb:9f:0d:cd:23:29:cb:b9:71:b9:48:
51:20:1d:6b:88:b9:be:f4:47:23:07:fd:38:17:00:
6d:c7:8f:8d:95:af:7a:90:da:24:3c:6f:26:e3:b3:
94:8b:2f:c3:d7:89:87:7b:cb:6f:f7:40:9b:d4:6a:
56:32:88:6a:2c:23:c4:52:d3:68:83:4a:6f:7c:83:
e1:b9:74:a8:09:12:4e:86:01:97:16:6e:fd:38:b0:
0d:8f:51:db:6b:4f:4e:e2:e4:e2:db:b5:e6:48:3d:
78:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:48:12:8A:DF:36:4C:18:6B:A7:9C:CD:52:E4:08:0C:72:42:70:14
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5F2EF86A73F511EFB12B367C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.58.0/24
Signature Algorithm: sha256WithRSAEncryption
59:c6:ab:13:6c:f2:0e:f2:5f:74:e8:f0:25:8d:99:15:c0:2d:
b2:f5:97:49:d2:5d:72:6f:8d:9f:66:f5:aa:51:f0:8a:b0:3b:
33:82:ff:15:b6:cb:95:33:c9:c1:4e:a1:24:19:2a:7f:db:19:
ce:63:58:0c:8c:4d:39:28:90:f5:88:ad:e7:93:e5:bb:a6:83:
d6:a8:0d:41:4e:6b:04:c2:f5:e8:4b:ea:d5:e8:2b:50:05:af:
ee:ed:55:59:96:48:10:ce:b1:58:0b:6f:29:87:fa:d5:0a:b0:
9d:62:e1:15:6e:be:ea:b5:27:7a:99:ae:d1:d6:ba:33:42:5f:
6a:86:c4:f7:fb:79:26:23:cc:b3:9c:b0:fd:f8:ba:87:6b:47:
81:a1:77:6e:aa:52:98:ba:9a:27:6c:4b:d1:c9:7f:42:ea:42:
e6:78:9c:50:09:e0:6e:99:bb:a3:b0:7e:a9:a6:6d:31:e3:0a:
0d:0b:fc:5e:fb:ef:bc:a0:ef:ae:c0:ef:c6:cf:14:40:b4:d1:
ec:5f:78:9c:ed:f0:58:6c:09:06:5c:a0:b8:f2:0a:b2:2d:3d:
b1:07:5c:12:a0:9e:09:04:56:7f:13:c9:cf:a2:43:2f:e7:bc:
d3:85:71:5b:41:15:dc:b7:67:67:50:95:51:cd:3c:09:bd:7f:
df:c5:d7:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:32 2024 by rpki-client on console-ams.rpki-client.org