Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2A698C7814B111F086884C0A6EB8BCC6.roa
File: 2A698C7814B111F086884C0A6EB8BCC6.roa (raw, json)
Hash identifier: CkuvssGfPqgAnUI9F4kTd5FbSqjWl0LCPRTX1S2iohk=
Subject key identifier: A4:A8:81:23:49:02:9B:70:BF:FD:E9:31:1A:51:3E:1C:A7:10:15:F0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014AED
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2A698C7814B111F086884C0A6EB8BCC6.roa
Signing time: Tue 08 Apr 2025 19:39:20 +0000
ROA not before: Tue 08 Apr 2025 19:39:14 +0000
ROA not after: Mon 28 Apr 2025 19:39:14 +0000
asID: 20473
IP address blocks: 45.192.20.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 28 Apr 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84717 (0x14aed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 8 19:39:14 2025 GMT
Not After : Apr 28 19:39:14 2025 GMT
Subject: CN=67f57b68-5ba9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:fd:53:c3:82:94:0f:ab:13:86:cd:74:e0:2a:
c1:58:1b:37:47:6a:c4:c3:82:60:a8:7a:2a:17:90:
cf:de:2c:ff:34:65:5b:fc:bf:73:93:09:2d:11:23:
34:dc:ea:fd:03:2c:18:45:9b:f7:fe:33:6c:7f:6f:
23:22:77:47:3e:6e:47:e3:2f:9d:7f:48:bf:38:f3:
7c:5d:e4:c0:1f:22:b1:2d:99:2c:f8:5f:7a:91:0a:
e2:ca:0d:ed:18:a2:d7:02:93:55:94:5e:92:b8:b1:
84:37:44:cb:07:61:a5:73:e2:2b:6c:25:1e:86:10:
e9:75:ba:15:55:28:eb:e3:83:83:87:44:bb:fc:33:
b4:05:9c:00:0f:8b:54:44:1d:1c:d1:44:a2:94:5e:
7d:56:87:b7:d0:de:a8:87:de:cb:c7:fc:54:5c:e8:
c4:de:5c:be:02:26:a8:ad:83:db:ed:62:2c:2d:e5:
8e:88:14:30:56:7d:d7:d0:c9:22:e3:17:e0:48:07:
49:da:42:05:91:34:78:78:18:c0:1b:ae:2f:bc:3e:
46:a2:71:5d:5d:9c:63:60:52:50:a8:66:07:1d:31:
25:d5:88:69:7e:72:b4:85:d7:0c:ca:9d:42:a1:37:
9a:d3:eb:bf:45:c3:e2:40:a8:c3:ea:bd:9a:44:6b:
69:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:A8:81:23:49:02:9B:70:BF:FD:E9:31:1A:51:3E:1C:A7:10:15:F0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2A698C7814B111F086884C0A6EB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.20.0/24
Signature Algorithm: sha256WithRSAEncryption
55:d8:33:0b:b4:c8:a7:3a:56:fb:96:ed:bb:3f:f3:96:d2:f2:
1a:0f:7a:8e:c6:d0:52:2b:7b:cb:79:98:f2:82:13:15:40:22:
59:0a:74:d4:fa:db:a3:ae:13:5a:36:63:4e:0c:da:9e:62:89:
bc:44:e1:cf:3f:cb:9b:66:f1:13:14:fa:b5:a2:6e:4c:d9:5e:
fe:1c:b6:68:b8:bf:dc:41:8c:4c:ff:26:2a:b1:b0:1a:cf:4b:
62:57:06:29:85:fa:ea:70:ac:77:b4:8f:2e:76:59:88:86:55:
f8:35:03:0f:d9:00:d9:fb:4d:8b:e9:4c:71:39:d4:64:aa:93:
8a:87:c1:71:c7:7c:f9:ea:91:3a:3f:42:ed:2a:0e:47:5e:b3:
fc:e3:21:0f:5b:b2:56:78:e3:42:50:24:ff:67:da:35:7e:c3:
27:32:2c:21:31:53:eb:2e:90:94:54:ad:f7:a5:75:41:6c:38:
f0:5e:82:b3:d9:04:1f:bf:be:90:42:b0:e8:72:a8:8f:89:93:
4c:fb:a1:55:e8:fd:5f:cd:f4:11:fa:04:a8:90:fe:42:4d:d6:
77:d9:7f:32:47:7b:9d:6f:40:24:0f:0a:48:9a:f3:f8:f5:7f:
8d:9e:e4:45:91:6a:a0:10:44:97:50:1c:c4:fe:ff:1f:b4:fd:
04:e2:73:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 08:49:15 2025 by rpki-client on console.sobornost.net