Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9738863C1CFF11F0A9227F7ADAE4EC9C.roa
File: 9738863C1CFF11F0A9227F7ADAE4EC9C.roa (raw, json)
Hash identifier: +uLIKsi7yxd9/480tSclObUSvnt9jR7PEhNPQjU9PS0=
Subject key identifier: B0:78:FC:EA:19:D4:77:F6:32:04:EA:B1:98:40:26:2A:24:32:F3:22
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014D8A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9738863C1CFF11F0A9227F7ADAE4EC9C.roa
Signing time: Sat 19 Apr 2025 09:20:53 +0000
ROA not before: Sat 19 Apr 2025 09:20:49 +0000
ROA not after: Wed 30 Apr 2025 09:20:49 +0000
asID: 61461
IP address blocks: 156.247.128.0/17 maxlen: 24
156.255.128.0/17 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 27 Apr 2025 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85386 (0x14d8a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 19 09:20:49 2025 GMT
Not After : Apr 30 09:20:49 2025 GMT
Subject: CN=68036af5-3f04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:76:91:d8:1b:64:de:fb:77:a4:ae:51:71:4f:
c9:50:4b:81:10:d6:f8:db:2e:52:69:32:cf:e5:7a:
cd:2e:02:1f:34:d2:32:b5:45:02:45:00:8d:93:9b:
7c:ad:43:76:4c:6a:2a:be:75:b2:a2:2d:77:14:5e:
05:f8:c0:ef:5a:95:67:b1:ef:6f:33:1a:a1:6e:c2:
ac:2d:06:d2:74:3e:34:1f:c0:be:4b:9a:d0:cb:ca:
a2:19:fa:73:40:c0:c8:48:cd:bb:73:3e:02:d0:25:
e9:5d:24:ab:17:5e:36:30:3b:6a:2e:c1:e0:d2:9a:
4e:e8:4e:ec:ca:c4:f7:b9:4b:4a:ef:cb:68:46:aa:
05:9d:12:7a:f0:f0:59:b6:0f:9e:41:0a:60:30:18:
bf:ca:28:0a:26:b7:03:ed:7f:09:d7:50:24:b7:ab:
91:1c:ff:e5:0e:c0:60:dc:4b:2b:29:08:c8:79:b0:
dd:d9:8b:81:9f:7e:80:37:11:14:ad:1a:07:ea:bb:
4b:6e:51:c0:59:41:d8:72:a0:29:a5:ff:fe:b3:33:
30:aa:8a:f6:ed:ef:75:5f:54:bd:d5:37:84:ba:7e:
47:b8:a4:e4:e4:4f:9b:3b:e1:42:74:d4:75:15:b3:
19:2a:62:2d:3e:02:1d:c8:b6:8c:d8:3d:54:c4:26:
b8:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:78:FC:EA:19:D4:77:F6:32:04:EA:B1:98:40:26:2A:24:32:F3:22
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9738863C1CFF11F0A9227F7ADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.128.0/17
156.255.128.0/17
Signature Algorithm: sha256WithRSAEncryption
75:cd:db:36:f5:c1:dd:3c:c1:cd:ed:72:5f:5c:09:cc:1a:1d:
67:98:f2:53:69:6a:53:ed:1a:a6:e8:7c:bf:b0:89:ea:62:ab:
12:35:1e:68:b4:8a:c4:9f:ca:d2:7e:0c:f4:01:e1:83:7a:dc:
43:11:15:e4:f3:d6:80:b9:59:b2:d5:9c:7f:27:71:3a:1a:e9:
21:77:3b:8c:f3:76:fc:b6:20:d3:04:ae:02:12:43:d5:7b:20:
c5:16:ca:08:99:31:1c:d7:9a:b1:be:b4:c8:81:7b:75:0b:94:
71:de:e2:ef:3a:42:b8:92:79:88:3e:45:29:7c:2c:5b:c2:5d:
27:a1:65:05:f6:e9:c7:1b:d1:d0:2a:ec:40:01:cd:2a:a5:a1:
86:0c:3d:16:f2:85:1f:aa:dc:55:a8:99:2e:82:81:78:ad:e1:
07:60:56:66:e1:8e:28:c3:ec:a4:f3:78:41:9b:dd:b3:85:d1:
3a:82:7c:19:49:82:1a:b3:dd:f6:23:8a:8b:22:f7:16:7a:30:
c0:49:dd:c6:ad:95:84:bd:21:b9:0a:3a:03:c1:b9:81:b1:ec:
0a:67:dc:d3:d4:56:20:75:b5:ae:38:5c:a4:8a:7e:62:2f:e7:
29:f6:c9:f9:f7:d3:26:b3:60:65:c8:72:95:b3:5a:a9:de:b7:
87:7a:a1:cf
-----BEGIN CERTIFICATE-----
MIIFhzCCBG+gAwIBAgIDAU2KMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNDE5MDkyMDQ5WhcNMjUwNDMwMDkyMDQ5WjAYMRYw
FAYDVQQDEw02ODAzNmFmNS0zZjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA3XaR2Btk3vt3pK5RcU/JUEuBENb42y5SaTLP5XrNLgIfNNIytUUCRQCN
k5t8rUN2TGoqvnWyoi13FF4F+MDvWpVnse9vMxqhbsKsLQbSdD40H8C+S5rQy8qi
GfpzQMDISM27cz4C0CXpXSSrF142MDtqLsHg0ppO6E7sysT3uUtK78toRqoFnRJ6
8PBZtg+eQQpgMBi/yigKJrcD7X8J11Akt6uRHP/lDsBg3EsrKQjIebDd2YuBn36A
NxEUrRoH6rtLblHAWUHYcqAppf/+szMwqor27e91X1S91TeEun5HuKTk5E+bO+FC
dNR1FbMZKmItPgIdyLaM2D1UxCa4BQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLB4
/OoZ1Hf2MgTqsZhAJiokMvMiMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC85NzM4ODYzQzFDRkYxMUYwQTkyMjdGN0FEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQHnPeAAwQHnP+AMA0GCSqGSIb3
DQEBCwUAA4IBAQB1zds29cHdPMHN7XJfXAnMGh1nmPJTaWpT7Rqm6Hy/sInqYqsS
NR5otIrEn8rSfgz0AeGDetxDERXk89aAuVmy1Zx/J3E6GukhdzuM83b8tiDTBK4C
EkPVeyDFFsoImTEc15qxvrTIgXt1C5Rx3uLvOkK4knmIPkUpfCxbwl0noWUF9unH
G9HQKuxAAc0qpaGGDD0W8oUfqtxVqJkugoF4reEHYFZm4Y4ow+yk83hBm92zhdE6
gnwZSYIas932I4qLIvcWejDASd3GrZWEvSG5CjoDwbmBsewKZ9zT1FYgdbWuOFyk
in5iL+cp9sn599Mms2BlyHKVs1qp3reHeqHP
-----END CERTIFICATE-----
Generated at Fri Apr 25 12:59:34 2025 by rpki-client on console.sobornost.net