Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/739C59FC719B11EFBAA54946762E951A.roa
File: 739C59FC719B11EFBAA54946762E951A.roa (raw, json)
Hash identifier: 05Aj+2n6iUWJJQpNQ/ke4q5aAXqJ2Va3vruIyrxcnvU=
Subject key identifier: 3B:A0:5B:6B:E3:5D:CB:90:FF:FF:59:E7:FD:C7:76:90:1F:89:07:F9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: B504
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/739C59FC719B11EFBAA54946762E951A.roa
Signing time: Fri 13 Sep 2024 06:43:15 +0000
ROA not before: Fri 13 Sep 2024 06:43:11 +0000
ROA not after: Fri 08 Aug 2025 06:43:11 +0000
asID: 133199
IP address blocks: 45.207.58.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46340 (0xb504)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 13 06:43:11 2024 GMT
Not After : Aug 8 06:43:11 2025 GMT
Subject: CN=66e3df02-35fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:8d:78:5b:e0:3e:5f:d6:df:da:78:9a:9f:97:
a8:86:84:79:88:60:e6:1f:10:14:64:67:73:2b:4d:
15:92:b2:c6:19:f9:33:3e:a7:58:71:99:ce:b3:c1:
20:34:61:d4:6f:10:ce:3f:39:d5:66:19:be:6f:e6:
b7:1a:2d:1b:25:a9:09:62:b0:f7:35:b3:21:c1:72:
c2:cb:5c:63:34:30:2e:8f:44:67:d2:d3:db:08:af:
2a:c7:67:62:90:af:f2:07:b9:8a:ea:e9:d0:e7:de:
56:62:b6:b9:62:43:cb:db:3a:ce:8d:a8:9c:48:c0:
71:6e:3e:16:59:43:76:db:f1:f3:80:b7:44:e3:af:
27:91:3e:9e:29:c2:d8:af:37:fa:02:a8:ba:4b:43:
c4:5f:9a:59:72:a9:63:48:05:4b:c9:75:03:50:b1:
71:81:de:61:be:09:6b:ad:7d:37:2c:00:78:26:7e:
0c:13:fd:47:4e:a6:2a:5e:f0:2e:9a:ca:46:0b:79:
8e:1e:55:c4:e1:92:c5:0d:a4:20:d1:5f:9b:a7:15:
db:1f:42:e0:e8:e6:c1:f3:a1:c0:45:f3:e6:20:49:
b2:19:db:b5:9d:0d:64:58:5d:44:f4:cc:f7:eb:be:
1b:26:c7:d4:c8:2a:8f:ed:a6:96:48:7b:eb:49:ed:
42:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:A0:5B:6B:E3:5D:CB:90:FF:FF:59:E7:FD:C7:76:90:1F:89:07:F9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/739C59FC719B11EFBAA54946762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.58.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:92:02:19:91:4c:07:64:0f:03:7e:61:27:82:da:d9:9d:ad:
c0:d6:00:bc:8b:a0:a7:7c:ef:19:6e:d7:20:f7:f9:74:a1:b1:
76:f1:2a:dd:0a:b8:38:56:f9:ff:6d:3c:c9:80:c3:26:ee:30:
50:72:b5:85:99:45:3f:12:6d:fe:40:07:cb:1a:25:cd:9a:58:
58:78:73:b7:b2:23:67:c9:d7:45:a0:fc:a8:91:cd:81:95:dd:
c5:9f:dc:aa:30:b5:5e:7b:3d:0c:49:dd:5e:43:f6:4f:5d:03:
1d:92:9e:c7:26:40:2b:e8:49:dc:b7:c3:7a:f7:af:5a:d9:33:
14:dd:38:75:56:8f:c3:d7:d4:c9:3d:c7:02:f5:b1:79:3c:39:
51:9e:75:13:07:0a:90:bf:24:de:38:66:4c:5a:de:dd:0b:b7:
8a:29:6b:c4:40:30:78:81:31:26:69:70:51:b1:c3:ee:34:14:
0d:d2:fc:74:bb:b9:1b:1a:cf:5b:a8:1e:13:81:a9:68:dd:9a:
d0:fe:d8:eb:02:0a:a5:c8:29:5c:81:fe:b5:49:96:90:d8:e7:
23:44:3e:35:31:e0:c5:29:72:9f:66:e4:30:cb:a6:37:fe:34:
44:be:18:54:cb:9e:43:f1:0c:d5:41:53:d3:5d:a6:59:53:e8:
4f:3e:f1:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:36 2024 by rpki-client on console-ams.rpki-client.org