Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/54AA8EC8CDA411EF93C84F4B762E951A.roa
File: 54AA8EC8CDA411EF93C84F4B762E951A.roa (raw, json)
Hash identifier: Y6BiAgKyucTOA6FXaItlcu5UtlU3LZwLnC294aRsGtU=
Subject key identifier: 6D:98:9A:B2:28:39:FF:A2:D8:EC:4D:1F:F6:0B:01:D9:00:57:C9:76
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01010F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/54AA8EC8CDA411EF93C84F4B762E951A.roa
Signing time: Wed 08 Jan 2025 09:38:35 +0000
ROA not before: Wed 08 Jan 2025 09:38:31 +0000
ROA not after: Thu 23 Dec 2027 09:38:31 +0000
asID: 17561
IP address blocks: 45.197.169.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 29 Apr 2025 00:26:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65807 (0x1010f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jan 8 09:38:31 2025 GMT
Not After : Dec 23 09:38:31 2027 GMT
Subject: CN=677e479b-f840
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:57:d0:3a:60:4e:51:cd:53:93:d6:35:da:01:
1b:c9:b1:4c:18:e7:60:9b:b8:4f:70:b1:05:35:85:
b7:1b:7c:57:12:20:92:b6:93:b5:b7:77:28:3f:0e:
86:09:ff:08:01:c5:55:a9:f2:fc:af:d8:21:57:7e:
8e:5c:6e:71:ea:8f:2b:3c:89:8a:02:5c:0c:e1:22:
ae:ac:29:7c:ba:dc:e9:da:fc:f6:28:e9:95:5b:81:
dd:51:16:3a:b1:e7:40:8c:54:8d:7b:0f:a8:f7:3e:
97:55:22:4e:4a:16:6c:b9:47:01:15:cd:9b:aa:89:
df:34:80:92:20:0c:b0:5c:e7:af:bc:f7:24:73:ed:
d1:94:eb:fb:70:15:d9:88:1a:4b:c5:98:c6:9e:a6:
fe:8b:cd:64:31:53:4b:87:bc:81:4a:5e:8d:45:8a:
67:b0:f8:27:2c:59:2a:02:99:a2:4b:60:de:4b:1c:
7c:78:f2:63:26:a4:e0:54:7a:bb:89:c8:dd:b1:88:
7e:b6:37:0c:fe:78:00:0d:ad:e8:e7:df:8a:8d:70:
b8:8a:43:85:40:10:fc:44:f0:2f:d1:7a:43:e6:aa:
51:fa:03:8a:78:f4:a2:20:53:ef:f4:e0:68:12:96:
80:49:65:a0:46:71:ce:60:6b:75:e0:53:05:97:d7:
17:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:98:9A:B2:28:39:FF:A2:D8:EC:4D:1F:F6:0B:01:D9:00:57:C9:76
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/54AA8EC8CDA411EF93C84F4B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.169.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:28:c9:b2:de:2e:76:71:72:ff:79:38:ce:b4:ee:27:fd:68:
63:65:1d:b6:75:26:ce:2a:dd:a0:fa:48:76:cc:ce:bc:4d:a1:
dc:81:22:40:af:05:a6:19:f2:b9:21:20:c6:be:18:ae:4e:e1:
27:16:b7:b7:99:cf:30:40:a9:ad:8b:77:39:ac:61:b4:53:3c:
15:aa:50:b7:d1:4e:5d:9a:2b:4e:42:03:03:72:34:82:9d:0f:
13:0e:35:5b:b1:8d:7b:ef:4c:60:d9:49:6e:39:5b:f2:0c:47:
e5:bc:58:bd:83:86:e2:8b:0e:12:ba:20:10:83:10:c4:e6:8c:
ea:49:27:92:62:64:e5:59:2f:bf:f9:04:81:53:90:0b:c0:48:
8e:7f:2c:a8:39:96:9b:75:e0:26:d6:13:38:6f:06:b5:4d:eb:
5b:0d:30:d5:03:5f:98:1e:6d:31:04:a8:ce:0b:c9:db:95:f7:
08:0b:83:c6:b8:78:c8:8b:c0:33:30:13:ba:f8:4b:ed:ea:4f:
72:a6:0a:8b:2f:dd:0f:c3:e7:75:51:64:90:a5:2d:32:42:81:
6e:03:9b:f5:6d:e3:6a:b9:81:0d:fb:30:08:cf:5f:52:16:0c:
39:a4:30:f4:f6:02:5d:08:4f:26:3a:75:db:7e:7e:e6:19:cc:
f6:82:8c:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 05:38:50 2025 by rpki-client on console.sobornost.net