Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/57E45A3E211311F08E526FBADAE4EC9C.roa
File: 57E45A3E211311F08E526FBADAE4EC9C.roa (raw, json)
Hash identifier: FirLAsptljBPw2KPoL0qXP/WpTSPjSB3C1YupfgwO5k=
Subject key identifier: CA:90:6F:56:48:36:C2:E0:07:31:62:8F:5F:FD:8D:99:D5:78:DF:CB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014E80
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/57E45A3E211311F08E526FBADAE4EC9C.roa
Signing time: Thu 24 Apr 2025 13:52:21 +0000
ROA not before: Thu 24 Apr 2025 13:52:16 +0000
ROA not after: Fri 30 May 2025 13:52:16 +0000
asID: 2914
IP address blocks: 45.196.69.0/24 maxlen: 24
45.196.82.0/24 maxlen: 24
45.196.83.0/24 maxlen: 24
45.196.84.0/24 maxlen: 24
45.196.85.0/24 maxlen: 24
45.196.86.0/24 maxlen: 24
45.196.87.0/24 maxlen: 24
45.196.88.0/24 maxlen: 24
45.196.89.0/24 maxlen: 24
45.196.90.0/24 maxlen: 24
45.196.91.0/24 maxlen: 24
45.196.92.0/24 maxlen: 24
45.196.93.0/24 maxlen: 24
45.196.94.0/24 maxlen: 24
45.196.95.0/24 maxlen: 24
45.196.96.0/24 maxlen: 24
45.196.97.0/24 maxlen: 24
45.196.98.0/24 maxlen: 24
45.196.99.0/24 maxlen: 24
45.196.100.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 27 Apr 2025 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85632 (0x14e80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 24 13:52:16 2025 GMT
Not After : May 30 13:52:16 2025 GMT
Subject: CN=680a4215-a266
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:7a:54:43:42:61:83:23:71:90:75:cb:29:d5:
03:19:2d:94:eb:d6:b4:9e:25:c1:9d:cd:64:58:57:
96:22:c4:37:97:a4:31:1c:63:3e:31:75:0a:5b:54:
ad:6c:53:7e:fb:01:6b:a4:7d:b7:77:49:20:a7:54:
8c:e4:09:aa:ce:72:ed:41:7d:f3:dc:e5:da:56:8b:
5b:f0:e2:2f:be:86:40:b5:c6:2d:ae:84:19:c0:42:
3d:c9:ed:30:31:0f:f2:8b:cf:39:82:48:e8:d3:61:
48:94:b7:5d:49:11:3a:41:1d:71:b1:00:f5:f8:40:
34:a9:03:30:39:85:d8:75:20:6a:8f:20:6d:d9:e3:
60:9b:7f:7d:09:aa:8c:17:aa:ad:ea:60:19:89:54:
bc:84:4a:77:23:c5:d0:45:6b:42:9a:8f:ff:b1:4c:
9e:5e:fd:e9:70:11:31:8f:6d:d8:a2:0b:5e:aa:51:
17:ed:ff:f3:5d:5c:e8:8a:88:02:7f:f0:70:22:bb:
3f:ad:86:b2:03:f2:3e:15:6a:02:9b:01:90:b0:6f:
44:0d:36:a5:7a:79:06:84:06:99:eb:e3:b2:0c:c9:
21:39:f8:f9:bd:7c:51:1f:85:a2:c5:d1:6f:8d:d1:
7c:ea:25:2a:8b:37:ac:7c:30:ba:b1:5c:ab:62:95:
45:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:90:6F:56:48:36:C2:E0:07:31:62:8F:5F:FD:8D:99:D5:78:DF:CB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/57E45A3E211311F08E526FBADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.69.0/24
45.196.82.0-45.196.100.255
Signature Algorithm: sha256WithRSAEncryption
44:d0:d7:db:d4:12:3b:e8:19:6b:ad:3a:5f:63:12:b8:93:73:
54:a7:ef:b9:42:3a:c5:4e:17:4f:65:02:f6:ce:9d:3a:62:68:
a1:fc:2b:dc:85:a8:aa:cb:d9:97:2c:5b:fe:78:d4:07:04:c6:
21:0d:81:40:66:52:24:4a:e7:22:56:33:97:e2:a8:d2:9b:a9:
5f:e1:cb:10:af:1a:92:3e:4a:62:40:78:c8:2e:4f:c8:f9:21:
68:71:e0:2f:9f:70:84:90:b7:b0:51:b7:66:b9:c0:57:d5:70:
9a:ea:e4:ef:30:74:99:0c:f1:88:31:2a:28:62:c5:34:e8:2c:
93:fe:ac:fb:0e:24:15:b3:2a:1a:8e:b6:23:16:70:cb:fe:7d:
92:78:72:34:f7:5b:bb:e0:23:b4:c0:93:91:f6:c4:db:31:16:
2d:a8:df:67:2d:06:e3:d0:d4:a0:ca:3a:ed:a7:9c:11:90:5e:
64:81:98:1e:5e:bb:89:f4:f6:4d:0a:55:7f:9b:76:6c:08:db:
47:30:30:7c:14:a3:12:7e:c3:4c:25:ee:e6:31:97:0b:14:23:
20:5e:6b:fc:fc:3f:e4:1d:a0:41:0a:59:da:c2:92:19:03:bd:
e7:03:02:ec:5f:86:30:28:1a:3a:0b:8e:f9:4a:07:c1:90:bd:
fa:ca:b2:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 10:42:05 2025 by rpki-client on console.sobornost.net