Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6F9C76FC734E11EFB1566CB4762E951A.roa
File: 6F9C76FC734E11EFB1566CB4762E951A.roa (raw, json)
Hash identifier: mSGzXjJOkeuVcWuiuPuEh0oDG2l/5FgGwgmGkKbtYn0=
Subject key identifier: 91:A4:AB:BD:10:00:C1:5D:A6:EA:20:D7:EE:F9:9B:44:87:15:2C:83
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: B64C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6F9C76FC734E11EFB1566CB4762E951A.roa
Signing time: Sun 15 Sep 2024 10:36:59 +0000
ROA not before: Sun 15 Sep 2024 10:36:55 +0000
ROA not after: Fri 08 Aug 2025 10:36:55 +0000
asID: 133861
IP address blocks: 45.207.58.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46668 (0xb64c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 15 10:36:55 2024 GMT
Not After : Aug 8 10:36:55 2025 GMT
Subject: CN=66e6b8cb-de40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a7:a6:72:c4:59:b7:2c:2c:2a:d1:df:1c:f1:
c9:48:5e:3f:ae:a3:e8:af:2a:35:bc:7c:8d:82:20:
a7:a7:dd:db:3e:cb:1d:2b:2f:bb:2f:f3:16:4d:b2:
be:ed:14:b6:34:4a:91:de:b6:f7:a0:8d:bb:4c:68:
40:72:f4:0b:45:29:f1:24:1f:4e:dd:a3:c4:5f:d6:
05:8b:b8:6e:0b:86:ef:f5:47:81:05:d8:c9:0d:60:
bc:05:9a:a5:76:07:9c:3e:a8:03:11:dc:78:8a:f9:
83:fe:88:aa:da:b0:f4:c5:c2:26:9d:97:4e:65:c0:
cb:f5:bd:fa:ba:e9:fc:a4:c0:5d:3b:b2:d0:26:f5:
3b:b1:ee:96:4d:4a:64:86:1d:3e:3d:c4:85:11:ea:
b3:76:e5:6a:93:97:c6:77:36:60:c4:10:d4:c4:5c:
dd:75:94:50:c9:85:d9:c9:07:81:9d:fb:97:09:d5:
cf:48:b7:c1:2f:c9:1d:3b:c9:0d:c4:54:08:39:81:
74:5a:a1:1c:80:bc:ce:2d:7f:89:6c:26:0d:13:fb:
58:47:3a:c2:9e:3d:65:18:02:17:f8:6f:72:f1:a4:
9a:4c:2b:c8:c1:90:68:d7:77:d0:1f:8f:35:6b:89:
6b:eb:2b:0d:6b:cb:7c:91:e0:8e:03:ad:1d:26:d9:
65:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:A4:AB:BD:10:00:C1:5D:A6:EA:20:D7:EE:F9:9B:44:87:15:2C:83
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6F9C76FC734E11EFB1566CB4762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.58.0/24
Signature Algorithm: sha256WithRSAEncryption
07:19:41:9d:b9:5e:d4:3e:a7:b2:bc:02:51:cc:ce:d9:ce:c4:
a1:74:ba:0c:08:ef:fd:7d:8c:64:a7:a7:79:9b:9c:dd:d2:6a:
43:64:b9:b8:54:2e:fa:84:f0:e6:f1:f8:70:d0:45:53:e2:0f:
e0:c6:30:36:80:72:47:06:41:1b:4f:1e:57:9f:b1:ff:47:ca:
31:51:dc:1f:cc:ab:db:36:2a:3f:a7:eb:68:67:e0:5f:3a:1e:
a2:57:06:49:dc:f7:24:53:f2:9a:5d:39:cd:20:a4:84:d7:1d:
89:e1:1d:dd:c8:b6:a6:12:49:0a:9e:70:7c:c0:32:14:ec:02:
b7:e0:5a:23:c5:2b:0d:6c:97:d0:63:6b:d4:38:93:b8:10:e2:
c4:bf:47:28:1b:0b:8f:95:aa:8d:8e:48:99:c1:ea:05:97:2f:
7b:82:68:ce:f1:cd:ec:6e:5e:fd:ab:8f:fc:e7:78:ed:d8:0c:
fb:2b:74:4a:2d:2b:e0:33:e9:94:10:94:7f:fa:66:ce:b2:f3:
12:06:53:d5:cc:4d:eb:e2:e1:7e:8e:82:f3:b2:41:ec:79:59:
fb:9d:7f:7f:58:f6:b3:90:4c:19:44:c0:91:29:74:b0:8a:66:
74:06:45:01:3a:57:55:aa:7e:8b:e8:29:0b:be:87:cb:f1:af:
6f:6e:c3:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:34 2024 by rpki-client on console-fra.rpki-client.org