Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/890C29E61C6011F09E4F14CCDAE4EC9C.roa
File: 890C29E61C6011F09E4F14CCDAE4EC9C.roa (raw, json)
Hash identifier: GkSjAbO3Hph7WxZnR73e4wBmEoAdm8A7LtP8y8F2VRo=
Subject key identifier: 6A:08:D8:07:F6:31:DE:40:31:7E:D1:0D:92:D2:BE:43:61:9B:AB:F6
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014D0C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/890C29E61C6011F09E4F14CCDAE4EC9C.roa
Signing time: Fri 18 Apr 2025 14:22:19 +0000
ROA not before: Fri 18 Apr 2025 14:22:15 +0000
ROA not after: Sat 24 May 2025 14:22:15 +0000
asID: 137899
IP address blocks: 156.239.52.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85260 (0x14d0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 18 14:22:15 2025 GMT
Not After : May 24 14:22:15 2025 GMT
Subject: CN=6802601b-7b6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:50:90:8c:5a:16:07:59:c8:b9:c8:e6:c0:fb:
e2:10:70:dc:83:4f:17:9d:49:77:b1:63:2e:02:65:
87:bb:71:b0:bc:fb:1b:61:71:a3:49:b6:7e:f9:ca:
8a:9a:be:5a:10:39:37:69:99:cb:cd:7a:98:88:ab:
7b:95:df:ae:ae:15:e3:33:82:87:c4:98:c9:10:4d:
77:ea:e8:4e:3a:bc:9d:be:9f:ac:ef:06:d0:58:00:
f4:c8:58:be:39:e1:b0:03:af:aa:47:91:76:13:a1:
f9:7c:a5:e0:b3:43:33:e2:5b:0b:f8:9f:91:62:c3:
b9:ad:90:12:f2:80:3d:db:82:55:2c:f2:7d:3d:09:
db:ca:7d:38:f1:0a:07:41:df:48:2b:82:78:8a:bf:
51:07:87:a4:d5:18:aa:96:0b:3c:87:38:c9:99:9d:
15:3b:36:ea:c7:d7:30:6a:d3:d8:ae:be:0f:91:5b:
0f:86:49:6d:0d:ca:57:92:6e:eb:c6:26:dc:d8:03:
ab:59:fb:2a:b2:83:a2:3f:30:e7:84:fe:da:3c:a8:
d1:6d:47:a0:f9:04:fb:98:5b:cd:2e:74:95:13:73:
45:cd:a2:70:a2:e7:b3:0a:7c:af:f6:eb:4b:eb:71:
3f:34:5e:fc:4b:cf:a3:93:01:c4:ec:0c:a6:3e:e2:
40:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:08:D8:07:F6:31:DE:40:31:7E:D1:0D:92:D2:BE:43:61:9B:AB:F6
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/890C29E61C6011F09E4F14CCDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.239.52.0/23
Signature Algorithm: sha256WithRSAEncryption
43:cd:ba:a0:04:38:a0:53:02:ac:7e:4c:d9:ae:8b:81:0c:c0:
de:00:d2:ac:a8:5e:da:fe:96:21:ef:e4:1c:6a:f9:67:70:3a:
43:8e:74:2a:e7:17:ee:c1:a4:40:f0:83:34:c2:35:bf:f8:a8:
11:08:93:7b:41:51:75:5c:dc:b3:3d:76:c8:76:ae:95:c5:74:
c8:b8:df:fc:56:2e:b0:ee:f3:26:b1:20:69:8b:1e:fb:0f:72:
f9:cc:69:61:bc:f1:10:1f:e8:2b:c1:21:da:d6:ec:11:f3:7f:
04:8a:e0:c9:5f:29:c8:bf:c4:e5:55:6e:65:fa:11:56:bd:cf:
00:20:35:07:3d:3d:2f:51:78:0b:ae:42:b9:58:5d:53:36:33:
f3:55:da:0e:01:42:7b:1e:7c:f4:bc:96:14:cd:38:cf:b8:82:
eb:31:26:70:fa:b2:c6:5e:84:0a:2f:8c:28:33:f3:b7:c7:a3:
34:6b:eb:44:92:5e:8e:0b:bb:a5:86:5e:d9:c6:3f:58:99:03:
df:c2:e7:49:09:af:72:31:df:cd:42:ec:1e:eb:0f:b8:4a:92:
e0:5c:1e:7b:87:ed:25:3d:98:b4:30:de:ef:73:5f:48:4d:61:
74:c6:c5:20:d5:d2:7d:1a:d7:53:01:d5:97:d8:3e:5b:93:dc:
a9:01:3b:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 18:06:34 2025 by rpki-client on console.sobornost.net