Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8E83C270144611F0BC7D8065762E951A.roa
File: 8E83C270144611F0BC7D8065762E951A.roa (raw, json)
Hash identifier: WpXYpdnf6bwtEQWOx/Ky5uI6kEzZ9bURUbGpo9vWuR4=
Subject key identifier: 3E:D2:95:0A:B4:2C:9A:75:EE:0A:B7:D4:DF:F3:9E:67:97:40:C5:5B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014ACD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8E83C270144611F0BC7D8065762E951A.roa
Signing time: Tue 08 Apr 2025 06:56:12 +0000
ROA not before: Tue 08 Apr 2025 06:56:08 +0000
ROA not after: Sat 10 May 2025 06:56:08 +0000
asID: 271916
IP address blocks: 45.194.48.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 30 Apr 2025 00:26:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84685 (0x14acd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 8 06:56:08 2025 GMT
Not After : May 10 06:56:08 2025 GMT
Subject: CN=67f4c88c-f970
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:4d:4a:83:11:5d:c7:d4:fb:05:fe:5d:00:b9:
13:ff:80:2c:7f:72:0a:ce:c6:e5:75:06:8b:d9:68:
ae:2a:e2:8d:6d:8c:1d:11:27:5c:8b:63:f5:0f:d0:
a9:db:ab:72:7c:d4:e7:9f:d0:31:55:55:71:87:67:
9d:37:f5:aa:0d:d6:4c:a1:1f:3f:6d:9a:f9:51:1b:
31:3a:06:e2:50:24:36:7b:2b:95:69:64:d5:2d:00:
6e:7e:63:59:bd:da:98:a5:74:e0:1e:b2:d2:ff:5e:
6b:6d:93:1b:6f:63:f4:53:ca:65:6c:ee:77:11:c4:
6a:eb:84:bc:06:2a:61:2e:57:fc:78:13:84:d3:a6:
2e:49:3c:a1:c7:c9:81:6e:67:65:e1:31:d7:da:af:
7a:c5:16:86:9c:5a:74:88:f2:40:d0:dd:49:00:a4:
c8:d1:7b:fe:44:82:f5:fb:ff:7f:7d:39:0f:e1:51:
c7:3d:37:dd:d0:85:58:00:79:bc:3b:7c:44:84:64:
b2:f6:d1:69:ad:9e:18:6a:53:7b:5d:8f:43:c9:f9:
6a:a5:48:2f:7e:b0:bc:31:f2:33:dc:4b:4c:4b:da:
61:cc:c1:13:65:a6:59:d0:ef:42:1a:77:99:10:35:
49:5d:9a:06:ab:80:b3:da:64:d1:52:d0:23:97:cd:
67:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:D2:95:0A:B4:2C:9A:75:EE:0A:B7:D4:DF:F3:9E:67:97:40:C5:5B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8E83C270144611F0BC7D8065762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.48.0/22
Signature Algorithm: sha256WithRSAEncryption
54:8b:8b:e4:db:43:49:de:9f:37:db:82:9f:65:50:55:70:c6:
60:ed:de:73:60:f1:16:29:51:79:11:62:18:99:45:3e:35:52:
af:6b:e6:0a:aa:f7:d8:ee:a9:64:72:7d:20:1e:4b:45:a1:02:
a9:e0:44:25:85:5d:fd:29:a7:02:ea:fa:cc:f2:b9:23:8e:d7:
26:bc:aa:51:50:2e:ee:f7:14:3f:7a:b9:ff:2a:f7:4e:78:a5:
14:00:ef:99:c8:9f:80:b6:53:4f:c1:2d:9f:2b:cd:7d:d7:0d:
57:41:a6:64:2d:b8:ce:98:9e:39:6b:ea:9e:62:bd:c5:37:93:
20:d2:93:7b:32:1d:d9:e2:f3:cf:0e:14:62:d1:67:b6:28:0d:
d5:a5:ff:7d:0e:3c:a0:d9:44:ff:a0:d8:be:2e:0f:89:62:e9:
b5:1a:6f:50:41:ba:6f:fd:d9:1a:9b:de:08:26:9e:c8:20:6c:
cb:3e:e6:aa:14:7b:17:79:97:1f:70:b0:42:c9:19:cb:2f:ad:
30:62:4d:99:a7:2c:98:43:17:50:ff:a3:87:ff:a7:6c:b9:cc:
15:b3:29:eb:3f:d1:76:2a:39:59:d0:ae:05:39:40:25:be:40:
22:de:10:10:dd:4c:a4:4a:6e:00:d7:3a:fd:bd:88:a4:ce:33:
46:b9:0b:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 23:02:16 2025 by rpki-client on console.sobornost.net