Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/06C3DFCAC96C11EFA0E2E764762E951A.roa
File: 06C3DFCAC96C11EFA0E2E764762E951A.roa (raw, json)
Hash identifier: KCd+zzTNrra4pxm7SUv/Zz8Lu8VVMbrBMqkwq7LZdOo=
Subject key identifier: 28:13:C5:AB:6D:00:C6:D1:22:B0:6A:F0:2F:FC:03:10:15:FE:38:C0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F484
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/06C3DFCAC96C11EFA0E2E764762E951A.roa
Signing time: Fri 03 Jan 2025 00:45:28 +0000
ROA not before: Fri 03 Jan 2025 00:00:24 +0000
ROA not after: Mon 13 Dec 2027 00:00:24 +0000
asID: 17561
IP address blocks: 156.226.246.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 29 Apr 2025 00:26:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62596 (0xf484)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jan 3 00:00:24 2025 GMT
Not After : Dec 13 00:00:24 2027 GMT
Subject: CN=67773328-c758
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:d8:3e:c5:48:05:b0:a2:9b:ed:c9:e1:90:75:
49:a8:59:2c:bb:7e:4f:24:28:b2:2f:db:09:ba:a7:
29:6e:8a:4a:bb:89:c9:ff:a2:af:3d:09:0d:c6:53:
67:17:64:8a:f7:d3:1e:c4:50:d7:f4:29:a5:db:c1:
1e:5a:62:c3:f1:da:3b:03:fc:67:e9:7f:c5:98:93:
b8:81:02:ed:f6:3b:b2:07:48:4e:39:9f:45:2a:4b:
31:19:79:31:99:5d:ce:3b:81:9c:d0:3d:98:9a:14:
e2:c3:22:1d:63:5a:80:d1:03:ac:8d:b6:c1:83:f6:
1b:63:21:7e:f5:56:84:bd:99:2c:50:3a:63:9c:39:
a1:27:96:2f:bc:12:96:76:25:fe:d7:84:8e:4a:61:
7c:5a:85:04:a5:fc:6a:61:82:3a:49:4b:9f:ce:a6:
40:00:6a:1a:07:5b:38:12:f6:66:60:fa:0e:0c:67:
d5:ea:f8:3b:01:1b:8c:4c:d1:56:25:d1:e5:1e:39:
41:02:fc:9f:1a:3f:e8:22:89:7e:a3:31:31:57:42:
91:6b:dd:db:fa:a5:8f:83:40:8e:36:88:4b:df:3d:
b2:7b:aa:f0:c0:76:ba:ac:84:b1:0e:99:13:3e:59:
94:ca:cd:d7:f1:2f:17:4e:ce:2a:d5:97:36:86:76:
07:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:13:C5:AB:6D:00:C6:D1:22:B0:6A:F0:2F:FC:03:10:15:FE:38:C0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/06C3DFCAC96C11EFA0E2E764762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.226.246.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:d0:a1:d9:ef:88:0c:78:3e:92:1b:95:2a:c5:58:d1:d8:a8:
b2:1e:be:55:b8:39:8b:e3:65:3e:25:a4:93:5f:66:5e:84:6e:
15:20:a1:af:86:6b:d9:d7:34:84:12:78:22:99:17:3e:7c:4e:
2c:32:61:b9:6a:b1:6e:02:aa:c9:bd:da:53:b7:65:19:d1:b9:
59:0d:44:05:6e:db:8a:3d:12:d1:03:a5:06:93:13:45:db:fd:
64:c7:db:e6:a0:48:18:78:02:63:d5:ac:fb:b9:82:6c:c8:22:
c9:44:3a:bf:77:08:e4:43:01:a0:5d:51:fb:e3:18:d1:3d:fc:
51:ae:bc:ef:65:7f:c3:ea:f2:fa:bf:51:0f:bd:7f:fd:c0:9f:
5e:a6:47:0f:fc:fc:11:0f:75:17:a3:0f:fb:14:0d:54:47:ee:
b6:5e:75:f9:22:84:7a:78:6e:7b:08:23:2c:6b:0f:57:53:76:
14:3a:8d:b3:7e:d1:88:da:09:3c:16:1b:d5:9e:97:7e:72:4f:
e4:d6:7e:b7:03:b6:5a:81:af:07:3c:09:f1:d1:81:b2:13:7e:
8b:43:31:11:50:4c:9c:b5:25:00:80:53:1e:36:ae:7f:0d:38:
40:ef:bc:de:59:3c:d4:1e:c2:10:8c:cf:ce:68:71:c0:d3:df:
00:00:e8:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 14:53:56 2025 by rpki-client on console.sobornost.net