Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/016BADA6CD9E11EF82CF38A2762E951A.roa
File: 016BADA6CD9E11EF82CF38A2762E951A.roa (raw, json)
Hash identifier: ZisyxOML44WT7k3ghtTrlTxbt74Z+cEFNmVofnUtFdc=
Subject key identifier: 92:AA:9F:19:B0:F0:31:83:45:5E:66:61:F7:07:5C:08:F9:00:1A:E3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0100A8
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/016BADA6CD9E11EF82CF38A2762E951A.roa
Signing time: Wed 08 Jan 2025 08:53:18 +0000
ROA not before: Wed 08 Jan 2025 08:53:15 +0000
ROA not after: Mon 13 Dec 2027 08:53:15 +0000
asID: 17561
IP address blocks: 156.252.58.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 29 Apr 2025 00:26:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65704 (0x100a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jan 8 08:53:15 2025 GMT
Not After : Dec 13 08:53:15 2027 GMT
Subject: CN=677e3cfe-0190
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:85:ff:a1:df:38:7e:a7:ec:ee:10:5f:0e:e9:
40:4b:ee:2e:47:fa:c7:91:22:41:6c:7f:bd:bc:5a:
8b:41:db:99:6c:c6:e0:d3:02:8a:56:9d:33:03:dc:
c2:ff:8b:b7:c3:6d:02:cf:0a:ae:b3:38:9b:08:5a:
9d:86:df:df:da:6d:27:a6:cc:2e:7b:e7:5e:b6:c4:
bc:ba:38:be:f3:1f:9b:50:ae:d3:7a:58:83:49:1f:
98:ed:77:a0:c5:0d:40:7f:0e:68:4b:0c:2a:55:65:
93:7b:fa:5e:27:f4:af:c2:12:d6:bb:44:77:88:87:
a8:08:88:cf:14:11:cb:70:14:8c:02:7a:19:eb:4f:
4e:23:0d:3a:f8:10:5c:a5:0f:85:6c:5e:8f:67:64:
95:f3:df:78:3a:ca:2f:33:75:28:39:f6:39:d0:b3:
de:e5:73:1e:e0:67:52:cc:8e:be:db:53:6e:e6:89:
70:3f:fd:d4:6a:80:19:c1:fe:9d:25:ea:a6:96:6b:
3e:9e:be:59:7f:6a:bd:73:83:c3:a3:f4:3b:9a:ac:
68:14:a5:5b:34:da:77:8a:9c:62:a7:82:c1:b4:9c:
06:8f:82:ed:60:2e:8b:31:c7:24:9d:80:76:b9:c9:
b4:6a:7e:5e:e4:c8:84:bd:3c:65:03:44:b1:49:a6:
e3:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:AA:9F:19:B0:F0:31:83:45:5E:66:61:F7:07:5C:08:F9:00:1A:E3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/016BADA6CD9E11EF82CF38A2762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.252.58.0/24
Signature Algorithm: sha256WithRSAEncryption
65:58:d7:74:1f:0f:55:4c:1e:0d:8a:96:3b:93:5d:45:8b:62:
04:19:87:24:c8:cc:69:53:e4:31:57:2d:7c:79:ac:cb:f9:7a:
bc:cf:19:46:9f:10:d1:2f:97:cf:4d:95:7a:55:08:1a:b5:42:
32:ab:31:61:dc:34:60:14:39:f1:9c:b0:66:8f:29:4b:f5:55:
3d:73:cc:ba:42:2f:89:e1:6d:b6:ae:0d:98:02:88:5c:b4:3c:
ca:44:dd:36:6f:11:61:13:ec:60:35:0e:69:9d:ed:14:7b:79:
8a:55:56:db:df:35:08:42:e5:4f:cf:40:08:29:b8:7e:c1:4c:
ed:1b:bc:2e:89:21:14:a0:a1:4b:b7:90:2d:8c:6c:e8:97:92:
0e:70:37:b2:46:4d:8a:49:ba:04:7e:01:c9:43:0a:4a:46:1d:
b4:61:75:d7:90:eb:6c:9e:dc:1c:de:5f:88:ec:e7:e8:a3:fc:
d0:b4:8e:76:5e:7a:1d:48:da:a3:84:39:41:28:58:a2:b7:08:
03:eb:89:13:f9:b4:5a:b0:ca:51:1d:38:25:d8:9b:38:5c:fd:
84:a1:dd:01:fb:c6:ac:2f:90:85:f4:70:0d:c4:f0:20:81:37:
c1:b0:15:03:79:76:f5:05:d7:21:fd:5f:a4:5c:44:58:cb:97:
d8:4d:2f:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 05:37:50 2025 by rpki-client on console.sobornost.net