Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/73A18E7E151811F086816DCA6DB8BCC6.roa
File: 73A18E7E151811F086816DCA6DB8BCC6.roa (raw, json)
Hash identifier: y2tIwRpNMoWSXgCQQbmqXZX+CkxPrhsVSQfljJU2wCk=
Subject key identifier: 4D:B6:5F:8A:86:D3:58:AB:C0:0B:A1:9A:46:27:04:20:27:06:20:87
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014B22
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/73A18E7E151811F086816DCA6DB8BCC6.roa
Signing time: Wed 09 Apr 2025 07:58:41 +0000
ROA not before: Wed 09 Apr 2025 07:58:37 +0000
ROA not after: Sat 10 May 2025 07:58:37 +0000
asID: 271916
IP address blocks: 45.194.48.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 29 Apr 2025 00:26:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84770 (0x14b22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 9 07:58:37 2025 GMT
Not After : May 10 07:58:37 2025 GMT
Subject: CN=67f628b1-ef1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:4c:d5:8f:f9:2f:48:ec:31:24:10:a5:49:fb:
b7:55:00:fe:af:25:02:91:a7:74:90:3b:6b:a6:38:
7f:7d:b2:0d:c9:a8:3d:f6:7c:ec:22:9a:4f:71:fd:
61:fb:d4:a4:5e:0b:a7:b3:ca:83:1a:4d:97:fe:e3:
d2:59:d7:b4:f6:77:8f:59:f3:72:2a:f0:95:48:74:
69:24:3c:c8:18:8b:6b:9c:ff:11:5b:f4:e0:a1:b7:
2e:59:56:f5:a2:d3:59:c0:02:bc:23:9d:03:14:44:
88:bc:80:4a:76:c0:7c:6a:b4:d7:90:77:e4:ec:1d:
8f:b3:56:c3:bf:5f:2e:18:4b:ec:0d:e7:b8:8b:32:
b0:bb:86:68:36:c5:51:c6:8f:a5:2d:f8:3c:eb:d2:
0a:12:ea:fd:8c:76:4b:74:93:5c:66:41:b7:65:c8:
b1:60:1b:7c:21:32:6c:54:2b:11:3f:6e:01:09:7d:
82:62:9c:42:c6:c8:f5:a1:6e:7d:34:96:83:5a:9a:
ee:12:e9:c3:ff:fd:2a:60:07:53:a6:2d:ef:b1:14:
fe:07:2d:89:19:cf:dd:60:07:f9:b8:eb:21:69:7f:
4c:85:72:6e:c1:da:77:94:ea:6b:1e:bf:dd:06:9b:
63:d8:2b:ba:70:bf:cd:29:63:e6:60:24:69:89:d7:
12:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:B6:5F:8A:86:D3:58:AB:C0:0B:A1:9A:46:27:04:20:27:06:20:87
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/73A18E7E151811F086816DCA6DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.48.0/22
Signature Algorithm: sha256WithRSAEncryption
84:51:97:ed:b7:aa:65:82:95:c5:44:7a:0f:5d:28:e2:45:40:
2a:1b:ee:67:d2:8f:24:ab:94:95:b3:da:a4:d1:bb:fa:c3:b0:
ee:cb:ad:49:5c:64:04:a6:69:fa:de:bb:5d:91:1c:9d:09:8a:
74:d6:2f:6e:56:e4:4b:3d:65:05:27:00:a1:2b:84:68:7e:ca:
ce:a1:f7:f1:b3:d2:49:9c:03:cc:82:b2:57:6d:16:1a:c8:60:
76:87:4e:45:f6:55:22:2b:6e:a8:a4:11:7c:b4:db:6e:b3:69:
3f:b9:77:d5:b9:91:35:dc:9f:f2:16:d9:92:75:83:74:dc:81:
38:b2:b6:fa:2f:85:86:d7:79:8a:ae:1b:d7:ad:eb:18:5a:09:
70:e2:84:71:ad:5b:0d:37:19:63:23:a9:88:f4:0e:81:cf:cd:
3b:e0:ca:ff:b4:7f:df:d6:25:34:af:68:40:b6:4c:95:01:a3:
b4:6f:76:0d:39:e2:3d:66:e7:a5:7c:a9:0b:5a:97:c3:93:0f:
8c:91:53:95:12:60:34:2f:4e:a5:2a:93:62:89:92:ed:d7:2a:
f2:e9:7e:c3:98:59:60:d8:05:71:de:37:d5:0a:aa:14:c4:43:
79:ba:ea:a0:1e:c1:63:e7:43:35:ed:f5:f8:48:0b:28:d9:a8:
ad:74:4a:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 05:39:14 2025 by rpki-client on console.sobornost.net