Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B058332E726911EF8A124256762E951A.roa
File: B058332E726911EF8A124256762E951A.roa (raw, json)
Hash identifier: WfucW71LFnJjLA/mYvfVyxP9a19UiOn9mPsgWSPuyZ8=
Subject key identifier: 46:93:B1:9F:08:A4:CD:64:27:6E:F2:23:7F:1D:5B:AD:E7:B3:50:0F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: B59B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B058332E726911EF8A124256762E951A.roa
Signing time: Sat 14 Sep 2024 07:19:33 +0000
ROA not before: Sat 14 Sep 2024 07:19:29 +0000
ROA not after: Fri 08 Aug 2025 07:19:29 +0000
asID: 133861
IP address blocks: 45.207.40.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46491 (0xb59b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 14 07:19:29 2024 GMT
Not After : Aug 8 07:19:29 2025 GMT
Subject: CN=66e53905-55c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:00:f1:02:4b:20:cd:73:1d:7a:34:73:ca:06:
d3:cb:07:3b:3c:63:4d:cb:72:72:74:63:02:74:38:
b8:a2:4a:29:83:b1:a5:c9:33:fc:7e:85:2e:cb:4f:
1b:b1:17:e5:cb:0e:7c:fc:d1:6a:d8:78:ee:ee:01:
32:50:fd:14:42:aa:1d:e1:38:9a:a8:3d:33:e2:9b:
59:78:a9:da:26:3e:9d:94:30:40:cd:59:8d:f5:c0:
86:af:4e:50:30:76:e2:53:46:4b:9d:09:e4:6f:3b:
04:fc:3d:51:a5:dc:ed:ed:83:96:20:ef:3c:1a:c8:
78:08:e3:eb:5e:56:61:61:92:df:98:60:cb:d5:37:
25:e8:29:7d:87:c1:87:5f:5f:ec:6e:ee:1a:3e:52:
fc:5a:fc:ea:75:d5:fd:c8:46:90:9d:94:3b:35:e3:
6c:11:be:d7:60:b8:25:73:be:06:cf:5a:d5:b7:a9:
62:f1:7f:c8:19:b5:9b:30:ef:23:0b:d6:b4:e7:1d:
84:e3:57:37:c3:36:5f:da:db:9b:7d:f6:fd:2e:3b:
6e:33:54:84:71:8a:85:b9:3c:0d:79:7d:ee:f7:c8:
ec:ba:6e:7a:69:da:b2:3c:24:66:50:36:bb:d3:4c:
e9:25:fd:fa:15:ca:40:17:11:45:bd:a9:d5:84:7a:
b2:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:93:B1:9F:08:A4:CD:64:27:6E:F2:23:7F:1D:5B:AD:E7:B3:50:0F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B058332E726911EF8A124256762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.40.0/23
Signature Algorithm: sha256WithRSAEncryption
b5:3d:17:91:06:59:31:82:a1:d5:c8:1a:0c:02:b0:fe:af:6f:
c1:ec:7b:f3:f0:f6:f4:f4:cf:12:17:68:69:c8:48:aa:06:80:
20:b8:6a:8e:3e:4e:48:91:10:6b:5f:8b:21:af:db:c4:49:ed:
ac:40:3e:2f:67:a6:2d:76:3a:fa:4a:61:34:13:43:46:0f:f9:
cc:91:04:0b:76:c8:96:e4:c7:47:e6:e8:d7:54:f9:47:3d:65:
48:27:9b:4a:aa:b0:ee:52:85:c9:0c:2a:2b:8a:66:2c:89:82:
6f:d7:3e:e4:68:b0:b9:ca:0a:56:d3:df:e2:fa:4d:3b:2f:02:
d3:9f:33:42:fb:76:2b:c4:e4:cf:71:87:2d:1b:0e:c5:5a:91:
ac:99:3c:53:ca:43:39:9b:03:9f:3e:58:a3:92:e6:14:fe:f9:
c0:21:5d:cc:88:45:ff:4a:6e:e3:3f:ec:15:27:7f:87:bb:9c:
69:52:9f:f0:81:0b:50:00:02:f0:5a:7b:62:cb:0a:30:51:a7:
93:35:e0:88:f1:d8:64:3b:15:f9:25:7e:0b:a6:a4:5c:be:f6:
2f:99:23:ba:87:82:62:46:a0:4a:2f:88:26:28:5b:81:f3:01:
c5:2e:af:49:c7:0d:fc:63:c2:01:a4:b7:8f:d5:5f:82:89:61:
4d:9d:c5:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:10:45 2024 by rpki-client on console-ams.rpki-client.org