Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/F96163BA0D3C11F0A96090AE762E951A.roa
File: F96163BA0D3C11F0A96090AE762E951A.roa (raw, json)
Hash identifier: STvX1UKJGEptK0rpsnM8JuivFJ125gHz8sPopCXa7ps=
Subject key identifier: FB:97:F4:62:36:65:5B:5B:59:A7:07:23:D5:9A:B6:8A:FE:BD:A7:00
Certificate issuer: /CN=F363BA19AR/serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Certificate serial: 04DC
Authority key identifier: 60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
Authority info access: rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/F96163BA0D3C11F0A96090AE762E951A.roa
Signing time: Sun 30 Mar 2025 07:59:58 +0000
ROA not before: Sun 30 Mar 2025 07:59:53 +0000
ROA not after: Mon 30 Mar 2026 07:59:53 +0000
asID: 996
IP address blocks: 45.221.69.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.mft
rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 27 Apr 2025 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1244 (0x4dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AR, serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Validity
Not Before: Mar 30 07:59:53 2025 GMT
Not After : Mar 30 07:59:53 2026 GMT
Subject: CN=67e8f9fe-c446
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:1f:73:b7:6b:98:dc:e7:50:08:07:e9:50:fe:
ed:55:06:ba:32:85:a6:0f:0a:4d:b5:9e:d6:01:f6:
52:e6:d3:90:f9:32:83:1c:91:23:06:8e:fc:67:f8:
c1:8a:67:c0:e4:e5:13:e4:65:ae:2f:80:be:20:c9:
63:3a:07:3c:59:52:65:ad:c1:03:08:44:1b:90:ca:
20:dd:5e:09:1a:18:99:98:10:c7:79:16:52:3d:d2:
27:50:e0:6e:ce:ea:ad:31:58:b3:af:eb:e8:b5:b9:
88:fc:7c:22:91:db:8a:10:ba:33:79:fb:6e:6e:1e:
a9:a1:a3:a9:38:12:4e:de:aa:d8:00:d6:69:7c:7a:
84:b8:77:b8:be:72:60:4c:2b:ab:b4:f6:65:9d:f7:
ac:08:8f:54:82:2b:1d:3e:61:02:5f:81:0b:48:5d:
fb:ae:36:8b:44:85:15:99:3f:98:87:cd:b8:22:be:
33:0c:4b:27:e7:fe:7f:e0:02:bb:9c:6d:17:86:9b:
17:63:6f:61:f2:9b:70:44:ba:77:3c:53:43:00:e1:
66:ca:26:ed:58:b1:1d:c2:ce:11:05:70:7c:3b:a7:
1a:41:1d:0f:ae:df:39:86:88:39:17:39:57:47:0c:
d0:b8:c6:bb:af:7b:bc:b7:8c:e3:8b:f7:d0:82:bb:
55:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:97:F4:62:36:65:5B:5B:59:A7:07:23:D5:9A:B6:8A:FE:BD:A7:00
X509v3 Authority Key Identifier:
keyid:60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/F96163BA0D3C11F0A96090AE762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.221.69.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:08:71:ac:16:1d:c6:f2:00:59:1c:4a:7d:07:98:b3:b2:4b:
aa:a1:e7:4a:3c:72:89:e4:e1:ba:7f:a5:1c:4a:9d:c8:e7:ff:
12:a7:5c:31:5b:5b:8f:39:24:3c:8a:f3:11:fd:30:c0:b6:94:
35:fe:e3:5b:04:95:6b:82:ad:8c:ba:c5:bd:9b:ca:14:e7:6e:
26:57:71:c0:bb:c0:a9:9a:4d:7e:4a:43:6f:25:b3:ab:98:70:
e4:aa:19:22:f4:86:3d:68:25:6c:fd:7c:cf:59:36:d5:b7:63:
c9:69:44:6a:4a:38:5a:53:32:b9:88:27:cc:23:0d:93:24:ff:
c5:b9:36:cf:9a:4f:97:29:b4:9d:bf:22:31:67:a7:49:f4:d1:
ed:42:57:b5:c7:51:aa:2f:83:ba:99:7a:64:ea:f8:13:39:9b:
0d:88:8d:31:ed:ec:35:c0:77:d5:89:10:5d:60:12:7e:49:68:
95:df:eb:34:72:f7:fe:2b:7d:04:20:11:85:a0:5a:09:aa:c3:
c6:3b:d7:ef:28:b3:a8:23:ce:af:a5:14:82:6f:02:89:11:eb:
4a:54:03:7e:bb:09:a9:06:d6:8c:a4:49:9b:f6:50:23:7f:db:
ff:8b:85:d1:5c:c0:91:dc:05:29:97:ba:fd:d9:23:d1:f7:ae:
27:41:a0:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 06:03:07 2025 by rpki-client on console.sobornost.net