Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0411B7EEB21E11EF83D9AF44762E951A.roa
File: 0411B7EEB21E11EF83D9AF44762E951A.roa (raw, json)
Hash identifier: mkRy3+FmIpvMCNbH1fIUYpg56CWTj4ezbzPqEYOO1I8=
Subject key identifier: D4:13:A0:8D:68:4A:B1:D8:D8:61:E6:E2:0C:D2:15:23:3B:37:4E:3F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: DF7A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0411B7EEB21E11EF83D9AF44762E951A.roa
Signing time: Wed 04 Dec 2024 08:59:06 +0000
ROA not before: Wed 04 Dec 2024 08:59:02 +0000
ROA not after: Fri 24 Oct 2025 08:59:02 +0000
asID: 984
IP address blocks: 156.227.159.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 28 Apr 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57210 (0xdf7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Dec 4 08:59:02 2024 GMT
Not After : Oct 24 08:59:02 2025 GMT
Subject: CN=675019da-132a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:9e:71:45:81:d5:da:13:38:05:80:f2:75:a5:
b7:f2:4d:27:7c:a0:3b:af:67:5b:e3:2e:95:42:78:
a9:63:a5:9c:94:c3:88:e6:a1:10:dc:04:6d:6e:84:
d8:00:b0:ca:a5:30:95:cf:4b:4d:ef:ef:b7:b5:4e:
97:ef:68:20:6c:aa:5c:76:d5:03:c8:02:41:f2:68:
82:c2:b5:9f:cd:56:6f:16:61:bb:82:2e:fd:3a:c5:
b3:ce:44:5f:6c:fb:b4:68:aa:16:b8:4c:ff:c9:42:
63:d8:ef:36:aa:99:00:60:a0:e1:f9:1f:f5:6d:00:
b4:8b:82:db:46:72:39:aa:8f:af:11:ea:3d:aa:a1:
11:b1:ed:f1:1b:f4:e3:c0:2f:97:83:9c:7c:70:e7:
61:e9:8a:3e:b4:68:32:56:d7:bb:ec:af:04:ec:bc:
ee:1d:f7:b1:ee:98:bb:5c:13:d2:6e:b9:bc:47:fa:
6c:d2:4f:1d:04:97:db:f9:72:b4:66:48:8b:2a:f8:
91:cc:46:6f:11:8f:fa:a4:e1:ce:9e:fc:4c:53:25:
5d:0f:90:9a:5c:4e:ff:cc:f1:f1:23:be:3f:31:1f:
1b:20:00:ae:b4:0b:17:b0:51:f0:84:9e:75:69:b0:
bc:16:9d:2d:b3:ea:fe:86:ca:d9:6e:7e:de:be:f0:
46:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:13:A0:8D:68:4A:B1:D8:D8:61:E6:E2:0C:D2:15:23:3B:37:4E:3F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0411B7EEB21E11EF83D9AF44762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.159.0/24
Signature Algorithm: sha256WithRSAEncryption
14:e5:7b:0d:13:3f:00:19:29:0c:78:de:33:5d:b1:3b:3d:f4:
b6:85:13:43:6f:a7:b0:4a:bd:f0:91:e5:8d:48:82:32:9d:80:
4d:df:81:f5:c0:2b:9c:72:ed:29:37:7b:74:e5:d9:77:d6:6e:
d3:9d:79:63:99:b1:f8:3b:ca:3c:8b:77:03:77:4c:70:36:37:
7f:72:88:23:8d:ba:5f:9a:76:62:88:8c:a8:78:72:46:8d:de:
d9:63:40:47:8a:0c:8c:45:7a:e3:51:90:3d:11:33:5d:62:11:
13:b7:9c:03:1a:08:3c:8e:0e:f3:f4:f1:ca:30:23:05:ac:1f:
10:77:d0:11:d8:12:b4:23:91:ed:ab:0d:44:a0:e6:b7:4b:af:
8d:34:66:25:c8:0e:87:b5:ab:d3:04:8b:d9:5f:3d:8f:84:51:
ca:61:b7:61:65:cf:30:77:f0:7d:b2:94:61:c6:b2:0b:f3:0c:
04:c8:99:35:30:27:96:85:17:c9:1d:87:0a:a3:e2:5b:5e:14:
9c:14:18:83:1e:03:51:e2:a5:1c:4e:8b:ca:a9:dc:a6:82:d8:
19:e1:55:88:68:0d:6b:48:e1:b1:f9:79:5a:6f:b9:cf:45:09:
a3:1b:91:84:1e:f7:b8:d5:63:81:0f:35:ed:0b:13:cd:b5:94:
60:d9:cc:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 08:48:57 2025 by rpki-client on console.sobornost.net