Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4E8643CE1C5B11F0867938A7DAE4EC9C.roa
File: 4E8643CE1C5B11F0867938A7DAE4EC9C.roa (raw, json)
Hash identifier: aYvltSF6TPM4leKs6EQnAzW5otxYOy77Qdg97ITeM1s=
Subject key identifier: 22:D5:ED:16:63:C7:5C:A2:94:71:87:5D:62:2E:22:24:3D:87:D4:3F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014CFD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4E8643CE1C5B11F0867938A7DAE4EC9C.roa
Signing time: Fri 18 Apr 2025 13:44:54 +0000
ROA not before: Fri 18 Apr 2025 13:44:49 +0000
ROA not after: Fri 04 Jul 2025 13:44:49 +0000
asID: 9498
IP address blocks: 45.198.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 28 Apr 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85245 (0x14cfd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 18 13:44:49 2025 GMT
Not After : Jul 4 13:44:49 2025 GMT
Subject: CN=68025756-3362
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:59:a9:1f:ac:a3:96:c5:e4:a7:1c:35:e2:63:
6b:42:bd:36:52:fd:38:b2:17:08:64:a9:db:18:75:
de:2a:8c:c1:dd:1b:d0:88:16:35:51:cb:98:63:0f:
a3:ce:6e:15:fa:1c:90:c5:cc:a6:0e:09:30:b6:d1:
f7:c3:c8:70:dd:b9:0c:a6:39:04:2e:20:25:fb:4e:
96:0c:85:b9:89:23:bc:b2:4e:5a:55:a8:36:f7:d5:
a0:b8:9b:7c:43:de:4d:4c:c7:d3:1e:d2:c1:04:72:
c1:08:d3:cf:bc:8a:de:7a:27:af:ae:5f:75:e5:85:
91:fa:a7:c8:6e:d5:96:b2:e0:bc:e9:44:35:2d:45:
93:91:90:b2:e3:6b:96:2f:af:4d:d7:69:7e:2b:f4:
ed:9a:28:83:1e:0f:50:1f:25:12:03:d2:23:0a:c7:
70:08:2d:cf:74:77:31:91:2f:4d:f6:e2:18:71:a4:
60:55:37:c2:86:73:44:35:03:16:48:36:b7:fa:96:
03:e2:6d:9b:3c:3f:6e:a8:18:20:27:69:02:11:2d:
e2:c3:73:06:9d:21:43:85:1d:9e:5b:b5:84:e5:34:
57:30:77:2e:d2:12:c2:ec:bd:2d:7a:7f:14:f1:64:
f4:21:1b:31:35:7f:e7:5c:e0:94:dd:11:06:fd:fc:
c9:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:D5:ED:16:63:C7:5C:A2:94:71:87:5D:62:2E:22:24:3D:87:D4:3F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4E8643CE1C5B11F0867938A7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.255.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:7f:85:70:0d:d4:79:8e:1f:e7:f7:0a:a1:b6:9a:e1:47:8a:
8e:f7:a6:19:03:e1:7f:40:fd:84:aa:2f:b6:ca:2a:3c:56:9d:
3d:7e:73:97:5e:8d:3b:dc:d8:61:d6:4f:21:f9:cf:ea:7d:9a:
38:b0:03:6b:84:5e:13:89:da:77:bd:13:94:a5:31:f6:65:61:
80:e9:20:4b:31:77:cc:87:32:4c:f9:64:c5:5c:64:61:18:47:
fa:77:1e:ef:90:0b:4c:ba:41:f0:5b:a4:35:41:ef:16:e0:a6:
fa:29:b8:2c:2c:5e:15:34:88:d4:62:21:dc:a3:79:e0:4a:aa:
d7:61:c9:25:27:12:c7:17:25:4f:f8:9f:61:77:dc:80:da:89:
6c:47:ae:f9:f7:32:44:6d:4f:f6:fe:26:68:bc:7c:b2:78:9c:
8c:ca:d1:47:41:98:67:c3:93:00:04:4d:5e:c4:d2:92:35:b1:
aa:57:51:46:f0:04:63:a4:04:a6:ae:78:ca:bb:ae:67:11:54:
ef:0c:c0:d1:a5:5d:96:a3:bb:56:65:27:01:a4:07:a5:49:ff:
3a:79:e2:d4:f9:90:97:b3:17:ab:62:fc:21:2e:ad:7b:94:18:
60:16:6c:51:8b:39:5f:84:02:0d:86:61:2e:88:5c:41:4a:32:
a6:d6:15:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 08:49:42 2025 by rpki-client on console.sobornost.net