Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/53F23D20144711F092930F6A762E951A.roa
File: 53F23D20144711F092930F6A762E951A.roa (raw, json)
Hash identifier: gx6w3LR+aXoA/i/+8GAT5yDYBdWNRAeXmAA3djkh/xE=
Subject key identifier: 8E:92:64:56:33:AB:9E:73:A0:58:F1:81:56:B5:A1:E7:4F:F3:74:0A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014AD1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/53F23D20144711F092930F6A762E951A.roa
Signing time: Tue 08 Apr 2025 07:01:43 +0000
ROA not before: Tue 08 Apr 2025 07:01:39 +0000
ROA not after: Tue 13 May 2025 07:01:39 +0000
asID: 23470
IP address blocks: 45.199.189.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 30 Apr 2025 00:26:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84689 (0x14ad1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 8 07:01:39 2025 GMT
Not After : May 13 07:01:39 2025 GMT
Subject: CN=67f4c9d7-e670
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:9b:97:9c:6a:5b:3a:ac:9b:73:b8:e3:20:39:
3c:78:92:45:b9:a4:e7:ea:fd:58:44:68:cc:71:2a:
5f:8e:46:14:1b:45:5f:13:80:6e:fd:9a:ca:2e:a5:
ec:d2:32:2b:13:0e:f2:e4:0c:f1:2b:5a:55:99:65:
c3:1c:5b:40:fa:be:cf:6f:60:dc:ab:dd:03:f0:73:
e6:16:2a:ba:2c:06:e7:17:a8:20:7a:58:97:e1:7f:
2c:bd:fb:24:c9:9e:dc:8d:36:dc:3d:4d:51:e6:9f:
89:56:02:f5:c7:8e:eb:97:60:59:55:ff:4f:6c:73:
d2:a4:b0:2c:d7:9b:30:da:ea:b9:fe:d5:a1:3d:e2:
e1:f4:89:24:fb:49:2e:4d:bc:a0:cb:e1:4f:d2:af:
08:78:3d:64:0d:2e:37:7f:57:b9:b8:56:c7:5f:dd:
c4:16:c0:eb:be:1d:8c:ba:e5:a0:32:f3:4e:cd:c7:
51:da:34:b4:d1:f2:19:b7:bc:4a:2b:93:d4:43:eb:
ef:e5:f6:25:17:f9:64:6d:f4:c4:c6:03:4a:5d:03:
5e:52:c6:e0:75:40:18:06:c2:93:f9:11:af:a5:0b:
db:68:20:bf:ba:64:e3:a8:df:24:2e:d8:3a:d3:2d:
75:14:6b:d9:86:8f:6b:c7:e3:ec:b1:1d:88:84:7e:
9f:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:92:64:56:33:AB:9E:73:A0:58:F1:81:56:B5:A1:E7:4F:F3:74:0A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/53F23D20144711F092930F6A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.189.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:88:b5:28:d1:89:64:14:fa:07:6f:70:e2:21:f7:df:d3:14:
c1:ce:d6:cf:b7:12:7e:e8:ce:5e:15:95:20:23:7a:e5:95:3e:
76:46:26:f5:fd:3b:83:3f:5f:55:aa:db:0c:b5:0d:b0:fc:c6:
59:29:31:27:99:cf:9b:93:d0:59:c6:5e:ac:ec:cf:b2:d4:b4:
c1:cd:eb:aa:61:42:e5:a2:52:9c:2f:7c:2a:73:95:d7:c7:b2:
52:d2:cb:f8:86:c7:52:3f:e9:e1:d2:af:cb:b6:60:d2:b4:a7:
c2:64:70:d6:a6:c3:12:e6:e0:35:42:a6:1e:64:3d:fd:8f:e2:
89:87:86:64:01:cb:9e:bb:f4:2a:46:5c:b5:4b:04:03:3e:b4:
90:a3:82:7e:df:59:1d:24:32:29:c9:c9:4c:48:f2:56:b7:e4:
33:cc:42:52:bc:a6:e7:14:86:7a:46:19:34:bb:70:0c:20:cb:
dc:2f:cb:e1:16:94:b3:47:df:a7:54:17:79:4c:38:38:d0:b1:
36:2d:31:db:27:e2:ea:2d:b5:08:15:03:5a:6f:2c:18:db:5e:
11:3a:da:2f:76:db:f3:c0:40:0d:97:2a:70:0c:02:16:f0:e1:
9a:08:1a:d0:e9:7a:7d:b7:83:19:74:08:bb:9b:8a:04:f9:98:
c0:a4:61:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 23:01:14 2025 by rpki-client on console.sobornost.net