Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2E10231A211211F09E7699B1DAE4EC9C.roa
File: 2E10231A211211F09E7699B1DAE4EC9C.roa (raw, json)
Hash identifier: DW/IWzgrxpQ+GwKiFvEbBjNM90rA2tROkI8zxkmNwZU=
Subject key identifier: 48:92:55:C6:4B:39:35:B0:10:4D:33:BE:3B:3D:A7:B0:6A:EF:EA:3C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014E7A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2E10231A211211F09E7699B1DAE4EC9C.roa
Signing time: Thu 24 Apr 2025 13:44:02 +0000
ROA not before: Thu 24 Apr 2025 13:43:57 +0000
ROA not after: Fri 30 May 2025 13:43:57 +0000
asID: 202656
IP address blocks: 156.236.105.0/24 maxlen: 24
156.236.106.0/24 maxlen: 24
156.236.107.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 27 Apr 2025 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85626 (0x14e7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 24 13:43:57 2025 GMT
Not After : May 30 13:43:57 2025 GMT
Subject: CN=680a4022-3d13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d6:17:97:05:00:34:83:f8:2c:e3:62:71:2e:
86:c9:7d:b6:0f:07:e3:e6:67:33:15:5b:6c:ae:ef:
26:3b:d7:b3:8c:51:b9:47:d8:53:ec:8a:dc:02:85:
7e:02:80:66:a8:8d:f4:33:08:46:5d:92:d9:8c:67:
49:b1:9d:bf:4a:c0:43:0d:a6:31:12:45:5f:73:bc:
2f:a9:be:b5:5b:fa:8f:80:1c:14:d6:9f:44:e9:13:
b4:1e:4f:fd:ec:27:23:c9:fb:3f:32:0e:e6:93:8e:
cd:99:6f:12:a1:12:78:dc:35:af:bc:46:28:c3:73:
12:d2:f3:e6:39:51:86:70:36:f1:78:ae:2a:c1:af:
8c:4c:e2:8b:2b:f2:d6:c8:22:25:69:c9:49:ff:34:
dd:28:5b:48:63:38:9e:64:9d:94:df:11:11:7f:5e:
47:db:49:e4:ba:49:e6:af:08:53:a5:64:2c:fa:f8:
79:68:5b:13:71:c3:8d:a7:84:7c:06:ca:be:a3:cd:
15:52:98:db:83:96:dd:64:7a:5c:df:16:0b:97:9e:
20:9d:bb:ac:c3:f9:79:08:1d:4e:86:50:f9:08:be:
7f:ff:89:46:ad:56:08:ef:46:33:e3:9c:d7:cb:1c:
40:3d:a0:54:8b:6d:37:1d:15:1f:5a:fe:16:50:55:
95:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:92:55:C6:4B:39:35:B0:10:4D:33:BE:3B:3D:A7:B0:6A:EF:EA:3C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2E10231A211211F09E7699B1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.105.0-156.236.107.255
Signature Algorithm: sha256WithRSAEncryption
62:26:b5:2a:0b:45:c0:4f:77:a2:5e:8f:8d:7c:fa:b7:94:53:
fb:40:0c:09:fd:34:5e:74:e3:96:c5:99:ac:cf:85:d5:aa:99:
90:6a:9f:4f:f2:86:87:c2:23:8f:f0:24:a3:c3:a7:5c:7a:58:
7d:57:d3:c2:56:f8:1f:ad:9c:1f:60:08:48:b6:f6:b9:15:30:
72:e0:c7:44:9d:24:09:ea:e7:bc:23:a8:a3:6b:e2:03:34:b6:
e1:20:ad:39:f7:61:ca:45:d5:09:89:f8:d3:fe:0b:9b:15:4b:
21:c6:1a:66:ec:22:37:dd:09:d7:e3:1e:e4:c1:aa:5d:ec:a3:
55:66:03:10:46:bb:e9:71:69:dc:a2:f9:f9:cc:7c:7b:1a:14:
b1:72:25:eb:ab:31:18:1e:dc:42:e6:ed:6b:d5:32:a8:d3:e2:
f6:e3:85:2c:30:9c:e6:6c:92:09:72:db:0e:b4:cc:ee:10:e6:
a9:1a:55:52:9c:ec:42:7f:56:3a:0d:17:20:8a:26:39:da:f3:
38:17:e8:d7:08:2a:5f:ae:a1:d0:27:be:ae:5e:d7:31:2b:7e:
ff:07:f8:15:9b:fd:0a:93:80:40:64:c2:28:70:b3:eb:4f:e4:
10:f8:b8:f9:37:53:9f:ef:6e:62:99:05:ac:0f:c2:93:d9:10:
60:bf:4c:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 19:29:06 2025 by rpki-client on console.sobornost.net