Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A010204E1C8711F097AF75CDDAE4EC9C.roa
File: A010204E1C8711F097AF75CDDAE4EC9C.roa (raw, json)
Hash identifier: D07LCTM7PTJC3kc+jU1Zz3lIDSaARVmzRLUIoAv55J4=
Subject key identifier: EF:4F:74:69:51:8A:5B:66:7E:61:8B:CA:DC:E9:3D:FA:04:66:36:46
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014D53
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A010204E1C8711F097AF75CDDAE4EC9C.roa
Signing time: Fri 18 Apr 2025 19:02:09 +0000
ROA not before: Fri 18 Apr 2025 19:02:04 +0000
ROA not after: Sat 17 May 2025 19:02:04 +0000
asID: 399195
IP address blocks: 45.192.192.0/20 maxlen: 24
45.200.192.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 27 Apr 2025 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85331 (0x14d53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 18 19:02:04 2025 GMT
Not After : May 17 19:02:04 2025 GMT
Subject: CN=6802a1b0-cb83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ae:e8:d5:ae:c0:ab:ab:f5:54:71:9a:13:c0:
94:69:cc:8f:90:b1:42:db:ae:5c:80:96:49:f0:f9:
b7:7e:8b:7e:bf:ca:13:c6:fa:39:d2:f9:63:78:48:
25:4e:cf:6b:c0:9c:b8:ed:f2:00:6f:df:f4:92:38:
aa:2f:f0:33:5b:98:10:8e:11:3c:3b:50:14:1a:6c:
bf:17:34:9c:6b:c6:3c:85:19:1f:0f:66:d8:71:dc:
b1:cf:fa:ab:8b:39:13:7f:83:79:b8:2b:4c:5d:3e:
8d:c9:88:fa:ab:ca:81:1c:95:9b:b5:d7:ed:65:a1:
67:87:1c:ef:34:1b:a6:c9:1e:ed:a4:9b:11:f6:5f:
5b:c7:b1:52:be:e4:c2:cf:77:01:25:8b:25:8e:25:
fa:87:e3:e1:db:10:7a:88:df:dd:fc:a0:fd:51:66:
01:25:cd:91:5b:9e:e3:5e:c7:45:d5:69:06:5e:0d:
d1:78:10:dd:50:2e:4f:06:97:35:fd:7e:a7:b2:6f:
ad:1d:45:50:22:f9:8c:60:ce:5b:22:08:9a:e0:cd:
d7:c1:58:e8:fc:97:d9:25:52:d2:9e:06:91:3d:52:
1c:a2:72:ab:70:43:1a:95:15:c7:09:b6:92:33:83:
5b:88:d8:22:b3:e3:37:3f:74:1f:6d:db:b8:3c:52:
7b:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:4F:74:69:51:8A:5B:66:7E:61:8B:CA:DC:E9:3D:FA:04:66:36:46
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A010204E1C8711F097AF75CDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.192.0/20
45.200.192.0/18
Signature Algorithm: sha256WithRSAEncryption
bb:4c:c4:95:19:9b:b1:1e:70:dd:08:7e:63:62:67:e8:c0:5b:
a0:6a:cd:31:f8:8a:7f:bf:fe:61:3a:5a:58:f9:50:7b:43:35:
99:9a:00:30:56:f3:af:57:dd:dd:eb:da:31:9a:07:51:7b:42:
c7:86:a3:36:3c:05:7e:24:90:72:70:e9:9b:b0:24:b7:3a:8a:
11:85:34:44:29:3e:c4:f4:ef:3e:c9:5c:3e:30:a5:eb:c6:6c:
8d:46:0f:42:33:4b:64:fe:e0:56:a2:7e:5c:fa:8c:01:f8:ca:
78:75:6b:b3:10:9e:e4:f9:a3:36:81:ed:17:1a:4c:d8:86:27:
d6:25:83:35:cf:bc:4e:87:68:9d:61:35:0b:ba:15:01:34:d9:
52:fa:59:6f:00:e0:18:08:b8:99:ca:9d:c9:fb:af:bf:1e:20:
b5:81:43:a8:a2:73:11:b0:ac:d8:fd:8d:29:e1:f4:33:38:87:
54:71:24:c4:bf:2a:a8:4b:c6:94:ca:d7:7b:56:f2:94:a0:3e:
68:00:70:ad:53:10:6c:5f:d3:2e:c5:97:6f:b5:d1:3d:6f:69:
62:e3:e0:fa:4c:18:c5:b1:87:74:9f:c6:15:6e:b5:7e:57:1b:
4b:8f:c7:2b:ea:23:c3:5d:7a:2c:d3:92:9e:e0:47:e3:fa:4c:
d1:b8:67:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 12:59:38 2025 by rpki-client on console.sobornost.net