Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/82FAAE461CFC11F0BE5836E4DAE4EC9C.roa
File: 82FAAE461CFC11F0BE5836E4DAE4EC9C.roa (raw, json)
Hash identifier: es4uVrBDZq4NTvpY/Sgh0OoIBdGoz0c08ybUWAD01Sw=
Subject key identifier: 3B:0B:83:6D:A8:69:5D:F5:FD:FF:BD:59:A5:20:72:15:14:06:87:B5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014D7E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/82FAAE461CFC11F0BE5836E4DAE4EC9C.roa
Signing time: Sat 19 Apr 2025 08:58:51 +0000
ROA not before: Sat 19 Apr 2025 08:58:46 +0000
ROA not after: Mon 28 Apr 2025 08:58:46 +0000
asID: 141167
IP address blocks: 156.228.3.0/24 maxlen: 24
156.238.2.0/23 maxlen: 24
156.254.120.0/22 maxlen: 24
156.254.124.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 27 Apr 2025 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85374 (0x14d7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 19 08:58:46 2025 GMT
Not After : Apr 28 08:58:46 2025 GMT
Subject: CN=680365cb-8660
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:da:a8:13:66:20:5a:13:ba:55:b3:cd:e1:b1:
ab:bd:e5:b9:0f:7f:32:21:0a:d6:88:95:ca:86:59:
f8:1c:96:17:4b:53:e0:3a:12:80:9a:97:e1:f2:a7:
b7:d7:67:e3:09:0a:55:40:2c:4e:78:4e:4a:71:e3:
fd:40:16:51:cf:4d:19:ee:b1:0b:c5:a8:89:79:8d:
cf:fc:81:91:ee:0d:4b:17:97:ac:9a:3d:3f:3e:47:
a4:7d:3a:c5:05:15:79:cc:fe:7f:e7:a0:28:56:2f:
8b:cc:67:c0:49:9c:8b:22:31:36:26:59:43:c6:7c:
cd:5d:a2:ef:46:f9:95:1a:2f:27:c6:9b:95:67:d7:
8e:de:fb:a4:54:0f:1e:ed:23:ed:11:98:dd:cc:37:
db:b5:75:7e:db:67:c5:ec:e9:31:5d:6c:69:68:2c:
36:7e:14:94:87:04:5b:d9:18:2a:c1:7c:c0:63:f3:
02:28:f6:3d:a2:4a:b9:98:99:3f:9c:10:0f:1d:37:
93:22:17:7d:11:ee:40:b4:00:28:01:ee:96:a8:81:
25:36:cd:b3:5f:13:e6:28:d6:e9:5a:67:46:69:f0:
7c:99:31:c5:63:bc:aa:28:a0:d7:57:12:cc:db:ce:
19:22:12:24:a9:b5:e7:54:cb:6e:80:d2:24:16:6c:
cb:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:0B:83:6D:A8:69:5D:F5:FD:FF:BD:59:A5:20:72:15:14:06:87:B5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/82FAAE461CFC11F0BE5836E4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.228.3.0/24
156.238.2.0/23
156.254.120.0-156.254.125.255
Signature Algorithm: sha256WithRSAEncryption
38:eb:23:79:de:b4:59:22:fa:5b:47:2d:5a:84:e2:48:c9:44:
c9:c3:27:b7:79:5f:4d:e9:f8:46:0a:74:ca:2b:39:c7:36:32:
49:2a:d1:85:a9:a2:4d:f6:84:44:b9:f1:95:e5:b2:2f:03:6d:
15:5d:0d:d0:96:f3:50:1a:44:b8:63:cb:1e:f5:eb:46:eb:bd:
93:f3:78:02:7b:1c:5d:df:ef:7b:56:0e:9b:c2:d5:ed:93:3e:
b5:d9:6d:f2:fd:ce:5b:1f:2f:5e:68:76:f5:af:6b:c6:69:4e:
62:a2:ec:ff:b5:b6:4c:2f:53:9b:a6:8e:8c:83:25:48:ba:6c:
b8:f7:c9:42:01:2b:e2:6b:76:98:4c:5c:07:12:3d:19:e8:2f:
ea:93:af:85:1d:28:02:2b:a6:dc:22:80:a9:ea:f5:04:91:21:
87:b4:95:61:d7:a5:b1:69:7c:a9:9d:ad:a6:bd:ef:e3:9c:6a:
64:3d:eb:38:e5:d7:0a:fe:02:88:1c:b9:00:63:58:de:8f:92:
d5:b4:67:21:bc:4f:dd:de:4f:ad:00:89:ed:86:c1:f4:0b:fc:
13:a3:a8:d6:f4:b9:0a:84:fa:8c:66:d4:9e:23:8c:7d:7f:9a:
d4:31:cf:23:ad:bc:34:88:15:8f:04:0d:fc:53:3b:f1:f9:2d:
25:27:24:cf
-----BEGIN CERTIFICATE-----
MIIFlTCCBH2gAwIBAgIDAU1+MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNDE5MDg1ODQ2WhcNMjUwNDI4MDg1ODQ2WjAYMRYw
FAYDVQQDEw02ODAzNjVjYi04NjYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvdqoE2YgWhO6VbPN4bGrveW5D38yIQrWiJXKhln4HJYXS1PgOhKAmpfh
8qe312fjCQpVQCxOeE5KceP9QBZRz00Z7rELxaiJeY3P/IGR7g1LF5esmj0/Pkek
fTrFBRV5zP5/56AoVi+LzGfASZyLIjE2JllDxnzNXaLvRvmVGi8nxpuVZ9eO3vuk
VA8e7SPtEZjdzDfbtXV+22fF7OkxXWxpaCw2fhSUhwRb2RgqwXzAY/MCKPY9okq5
mJk/nBAPHTeTIhd9Ee5AtAAoAe6WqIElNs2zXxPmKNbpWmdGafB8mTHFY7yqKKDX
VxLM284ZIhIkqbXnVMtugNIkFmzL5wIDAQABo4ICtjCCArIwHQYDVR0OBBYEFDsL
g22oaV31/f+9WaUgchUUBoe1MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC84MkZBQUU0NjFDRkMxMUYwQkU1ODM2RTREQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAATAaAwQAnOQDAwQBnO4CMAwDBAOc/ngD
BAGc/nwwDQYJKoZIhvcNAQELBQADggEBADjrI3netFki+ltHLVqE4kjJRMnDJ7d5
X03p+EYKdMorOcc2Mkkq0YWpok32hES58ZXlsi8DbRVdDdCW81AaRLhjyx7160br
vZPzeAJ7HF3f73tWDpvC1e2TPrXZbfL9zlsfL15odvWva8ZpTmKi7P+1tkwvU5um
joyDJUi6bLj3yUIBK+JrdphMXAcSPRnoL+qTr4UdKAIrptwigKnq9QSRIYe0lWHX
pbFpfKmdraa97+OcamQ96zjl1wr+AogcuQBjWN6PktW0ZyG8T93eT60Aie2GwfQL
/BOjqNb0uQqE+oxm1J4jjH1/mtQxzyOtvDSIFY8EDfxTO/H5LSUnJM8=
-----END CERTIFICATE-----
Generated at Fri Apr 25 10:42:28 2025 by rpki-client on console.sobornost.net