Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/10437B801F4A11F09D09DFCCDAE4EC9C.roa
File: 10437B801F4A11F09D09DFCCDAE4EC9C.roa (raw, json)
Hash identifier: 29MfxzDGmwPx6YDlJMqrOiL565oqphaq4qppRK1ngac=
Subject key identifier: 44:47:03:13:F3:1B:94:8D:F1:1E:EB:08:E5:43:64:EF:DD:54:D2:22
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014DDC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/10437B801F4A11F09D09DFCCDAE4EC9C.roa
Signing time: Tue 22 Apr 2025 07:19:01 +0000
ROA not before: Tue 22 Apr 2025 07:18:56 +0000
ROA not after: Tue 27 May 2025 07:18:56 +0000
asID: 8796
IP address blocks: 45.204.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 27 Apr 2025 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85468 (0x14ddc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 22 07:18:56 2025 GMT
Not After : May 27 07:18:56 2025 GMT
Subject: CN=680742e5-5db1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f7:4d:ad:b2:c6:f1:52:18:14:43:cb:5a:86:
65:f5:85:ac:e7:47:f7:68:21:e3:ab:5d:c5:7b:6e:
82:9a:b1:c3:e5:f2:b4:07:8b:af:c2:5e:53:e5:3b:
56:3c:a9:72:6b:d9:bf:c4:12:e6:90:03:b9:26:9a:
31:54:ea:a1:4c:8a:21:c2:50:19:67:70:54:b8:c5:
e7:73:d4:e9:73:7d:3c:26:0e:47:7f:f7:a1:cc:b9:
91:80:54:da:fa:b7:2b:a4:ab:1d:d4:e6:8c:56:56:
20:9d:74:4d:5a:88:3f:0c:3b:28:7a:10:27:68:40:
a8:a7:a6:17:53:85:39:f2:c1:69:00:75:82:d7:08:
3c:62:c4:8d:42:e2:fc:41:31:6e:a1:1c:88:10:81:
f0:2d:0c:11:5b:15:fa:6c:4c:4b:06:b6:fd:bc:ff:
f9:10:ab:be:8b:c7:2d:f5:9f:05:ef:d4:0f:c2:38:
ff:42:25:6a:3b:ad:bd:a3:86:f1:51:24:9e:23:17:
81:04:24:49:25:0c:bd:b1:6b:30:ec:50:67:b2:00:
07:d6:71:de:a2:d1:52:31:69:16:0f:e8:1b:7e:81:
e0:90:34:7d:2c:a9:0e:6f:10:ba:90:6d:fe:42:44:
cb:39:6b:42:35:b4:24:e7:f9:55:d5:59:16:e7:e1:
62:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:47:03:13:F3:1B:94:8D:F1:1E:EB:08:E5:43:64:EF:DD:54:D2:22
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/10437B801F4A11F09D09DFCCDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.32.0/19
Signature Algorithm: sha256WithRSAEncryption
03:17:6f:e0:e4:a2:c3:f0:fb:ca:15:7a:e0:8c:c7:63:85:e7:
89:00:5c:b5:b5:70:4a:b9:dc:77:e8:f6:8e:2b:33:85:ba:3f:
fc:a0:75:b5:b1:ea:7d:ae:1d:cf:d6:c1:03:bf:0d:df:27:2d:
4a:c9:7c:1f:40:5d:4d:57:ad:a5:f6:fa:85:33:fd:da:f2:d4:
0f:f9:d1:5e:c6:75:27:33:a4:df:93:f8:fa:13:de:d2:ef:a6:
d3:59:50:30:8d:7c:4c:c0:5e:a9:ca:e5:93:e7:7a:14:86:4a:
d6:49:9e:3e:36:e6:87:f1:44:31:46:7e:ed:c4:c5:d0:75:cd:
31:2d:21:c0:1c:e9:54:71:a1:90:e6:2f:81:3c:4a:82:2a:39:
b0:56:90:98:e0:53:d4:8b:58:a0:b7:d5:9a:f9:9a:fe:90:a4:
27:95:92:89:fc:af:4a:cd:34:e8:ef:c7:d4:52:e5:c0:b1:61:
2d:c9:8c:1b:0a:1f:bc:4d:a5:01:95:20:8f:dc:b9:f6:32:22:
60:b6:1d:f2:70:36:ff:4c:65:54:f2:0f:55:0b:47:e3:91:54:
d9:f8:57:e4:0f:f6:58:d4:69:07:96:a5:70:e7:0b:f1:61:38:
a6:82:5c:df:c6:01:f1:03:a2:0d:07:19:cb:8e:57:b9:54:de:
67:ca:c8:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 06:05:43 2025 by rpki-client on console.sobornost.net