Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F7B6AA0E726711EF85A3BF4B762E951A.roa
File: F7B6AA0E726711EF85A3BF4B762E951A.roa (raw, json)
Hash identifier: rOyLpiPrPxRaa9pJ1mwmXuPfyIaUCBjM1i8u3l//bdI=
Subject key identifier: 8F:A5:E5:18:9C:B6:8A:AB:5B:C2:03:8C:0D:FE:1E:D2:80:A9:ED:9E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: B581
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F7B6AA0E726711EF85A3BF4B762E951A.roa
Signing time: Sat 14 Sep 2024 07:07:14 +0000
ROA not before: Sat 14 Sep 2024 07:07:10 +0000
ROA not after: Fri 08 Aug 2025 07:07:10 +0000
asID: 133861
IP address blocks: 45.207.58.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46465 (0xb581)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 14 07:07:10 2024 GMT
Not After : Aug 8 07:07:10 2025 GMT
Subject: CN=66e53621-4fbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:1b:2d:5b:86:de:7e:ca:21:68:70:ea:f4:c8:
b6:60:d3:6a:75:34:53:26:8c:8e:39:60:12:ae:a1:
3b:58:6e:85:cf:14:70:f0:31:e7:fe:7b:14:72:c9:
6b:2b:17:6a:84:dc:ed:9f:f0:eb:10:1a:ca:37:a4:
84:e8:79:74:7c:03:ce:b8:9d:81:e1:85:fb:79:d2:
bc:a9:1b:10:c6:b2:f9:39:6f:af:79:d3:42:1d:86:
f0:d4:71:b6:5b:88:45:34:ce:83:58:5a:15:ff:46:
8e:4c:53:5b:c8:b9:99:e8:5d:2b:1f:05:5c:2a:a3:
d0:1a:cf:2d:0b:b1:54:36:a4:74:6c:ab:91:c0:5b:
e9:ce:c0:00:34:e5:93:39:16:67:cb:c2:23:57:f2:
5e:8d:7c:08:e0:0e:cd:18:db:d1:72:bc:86:8d:2a:
fb:ff:e9:0c:94:39:b2:07:5b:43:53:8b:c7:ff:a2:
f0:d6:fe:99:f6:33:e0:5d:6f:cc:84:8e:d8:4b:80:
28:13:50:f7:34:b2:25:85:57:58:8e:5e:f6:59:81:
f9:ec:21:55:88:a4:a8:06:3d:eb:82:65:b2:ee:b6:
26:8a:93:f3:5f:6b:ea:c3:d6:c4:7e:ee:73:aa:65:
9c:9f:e4:92:39:eb:d0:42:7a:3d:08:e0:d8:60:3f:
7a:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:A5:E5:18:9C:B6:8A:AB:5B:C2:03:8C:0D:FE:1E:D2:80:A9:ED:9E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F7B6AA0E726711EF85A3BF4B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.58.0/24
Signature Algorithm: sha256WithRSAEncryption
31:54:82:cd:57:b1:e6:26:9d:1d:75:6f:16:4c:1e:75:d4:9a:
cd:c7:3f:08:9a:6f:f6:5e:b6:da:78:45:e5:e2:a5:45:46:22:
7d:a4:b7:d6:56:3b:b4:15:8a:87:3f:2c:18:99:c2:0f:b5:a2:
57:e6:4f:96:6f:97:8e:72:a6:fd:ae:b4:b4:68:08:9f:32:d8:
46:0f:48:0c:81:5d:f7:99:e3:12:de:a1:13:fa:18:58:a8:42:
66:01:a5:e0:aa:d9:28:09:66:07:5c:a0:f7:d6:bf:9b:f0:af:
2a:01:e5:d9:cf:3b:6a:4b:25:11:af:0d:f1:30:cc:b4:0d:84:
5f:40:ea:f7:88:86:a4:81:9c:2a:7d:ad:0f:85:cd:47:f7:93:
e2:a4:49:c4:d4:f1:8d:77:10:2c:ab:9c:57:89:39:d9:ca:81:
5d:63:0a:6f:33:b9:10:2c:63:83:09:1b:76:d3:69:44:94:30:
78:c0:e5:5c:87:8a:fa:2c:91:9f:da:ab:c0:3a:77:35:93:a5:
9c:cf:a5:0e:4c:d6:97:59:6b:97:fb:ab:da:14:9c:d5:05:fe:
08:1c:f9:68:20:ec:7f:ed:45:85:af:88:82:51:51:a0:07:c2:
0d:59:ca:d7:47:e0:67:14:b0:57:7e:b0:ce:11:93:ec:be:56:
ff:a2:a7:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:55 2024 by rpki-client on console-fra.rpki-client.org