Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4AA9942C202F11F0AC1B20C7DAE4EC9C.roa
File: 4AA9942C202F11F0AC1B20C7DAE4EC9C.roa (raw, json)
Hash identifier: 2S0Vo35SqOWw+wEgSXkabedkf6BBaYe61ZDJYAXezF0=
Subject key identifier: 48:9E:4C:50:FE:75:B9:7C:4F:B7:34:23:5B:D8:30:67:B5:55:7A:B4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014E50
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4AA9942C202F11F0AC1B20C7DAE4EC9C.roa
Signing time: Wed 23 Apr 2025 10:39:54 +0000
ROA not before: Wed 23 Apr 2025 10:39:49 +0000
ROA not after: Sat 10 May 2025 10:39:49 +0000
asID: 55020
IP address blocks: 156.224.63.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85584 (0x14e50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 23 10:39:49 2025 GMT
Not After : May 10 10:39:49 2025 GMT
Subject: CN=6808c37a-1c2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:7c:7a:9c:4e:3b:21:09:9c:63:e4:f1:95:df:
ea:46:7c:64:3c:47:93:4a:da:96:8d:d1:1d:1b:de:
de:18:4b:78:c5:5e:3f:7b:45:16:31:91:4a:67:55:
fb:66:ea:b3:cb:55:1b:33:ed:c9:5a:12:d4:f3:2d:
20:56:cf:7e:ca:a5:bd:de:d4:98:da:39:63:38:d0:
ad:6c:03:aa:35:84:2d:a9:7d:61:1d:5f:85:9c:b6:
11:ef:42:fb:53:31:ff:08:1d:8a:2b:55:f6:a7:fd:
2b:90:d7:d9:f1:d4:28:e6:97:2a:73:a7:f3:9c:65:
69:5e:25:9b:d4:4d:9b:2e:49:0a:b8:94:53:21:60:
4e:77:a4:0f:4b:be:39:35:aa:a2:86:79:45:46:af:
6b:f5:3c:4d:a0:2e:af:18:94:31:bf:0a:a4:ba:c6:
b8:94:cb:b9:81:c1:4e:63:9b:93:90:34:ea:b0:be:
88:dc:6f:94:2c:48:6d:8c:07:3b:ec:2d:43:2b:85:
62:d8:4c:a0:5b:f7:d4:92:5c:7c:bc:9f:ad:dc:d3:
90:09:0c:a9:b0:8b:91:04:a4:5c:05:b1:6f:ac:08:
18:c9:d5:88:a6:88:4c:56:a0:84:81:f4:8c:36:84:
f1:dc:d1:b4:11:95:85:31:85:de:cc:f1:d8:1c:03:
b3:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:9E:4C:50:FE:75:B9:7C:4F:B7:34:23:5B:D8:30:67:B5:55:7A:B4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4AA9942C202F11F0AC1B20C7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.224.63.0/24
Signature Algorithm: sha256WithRSAEncryption
90:71:b5:f1:44:1b:ef:ee:52:6e:e1:ab:fd:3a:af:17:29:31:
be:5f:9d:d3:06:e7:80:1e:01:25:0f:1c:ab:9b:f4:8d:71:8f:
69:cd:2f:35:53:9e:98:3f:12:03:87:be:ab:a0:ee:df:d4:49:
0c:36:82:f5:3f:ca:a8:c2:f6:10:bd:75:32:86:57:2f:3d:e7:
ad:a0:4b:dd:36:73:02:6b:dd:e5:55:12:06:52:a0:77:4e:7d:
7c:2f:0b:1c:eb:a4:c1:4b:ed:b4:f5:19:4b:91:f7:aa:70:6f:
7b:2f:70:83:df:1a:98:7a:60:8c:9a:ed:a7:5f:95:70:39:32:
40:1f:39:59:c0:6e:9d:0f:86:85:42:3c:48:6f:ad:f2:23:70:
6a:31:a7:1d:58:3e:91:28:f4:1f:68:e9:5e:07:4b:ca:a2:e3:
3a:28:3d:10:50:ac:b3:c1:64:1c:09:74:52:4d:5b:2a:37:a4:
94:56:27:ad:30:79:ef:b6:3b:3e:40:aa:46:4a:30:2d:10:56:
a8:fb:5a:09:ee:95:86:f8:40:04:9b:b4:fa:ab:c0:fd:db:7c:
7c:7e:44:60:e2:41:4e:c1:91:85:8c:78:25:ad:83:26:92:ff:
92:78:87:ae:6e:c4:41:fb:98:15:6f:bc:e3:dd:cd:63:b0:13:
30:23:68:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 18:05:54 2025 by rpki-client on console.sobornost.net