Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AAD712D615F111F0A78B98F56DB8BCC6.roa
File: AAD712D615F111F0A78B98F56DB8BCC6.roa (raw, json)
Hash identifier: MnaDGDR7FcJ1YolIggzxs7vFYmAAl4o1RgCGopr6gdQ=
Subject key identifier: 03:66:9C:40:36:13:3F:D5:89:73:FD:64:E8:CD:28:41:D8:24:41:7D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014B7A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AAD712D615F111F0A78B98F56DB8BCC6.roa
Signing time: Thu 10 Apr 2025 09:53:35 +0000
ROA not before: Thu 10 Apr 2025 09:53:31 +0000
ROA not after: Sat 17 May 2025 09:53:31 +0000
asID: 397423
IP address blocks: 45.194.28.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84858 (0x14b7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 10 09:53:31 2025 GMT
Not After : May 17 09:53:31 2025 GMT
Subject: CN=67f7951f-f905
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ac:f2:0f:44:ff:04:ca:16:81:10:6c:ba:dd:
63:7f:c2:1f:15:fc:26:2f:7a:f6:f1:dd:37:56:3f:
c0:68:76:57:79:9b:a1:94:2e:c8:05:48:68:01:ac:
31:93:87:a7:7e:b4:74:07:74:fa:c8:7e:d3:db:4c:
c0:22:4a:d3:f4:c2:ad:00:7d:da:3a:fc:d1:d5:c9:
24:47:83:2b:23:96:dc:68:a8:c3:b5:6f:ce:37:47:
15:d4:d1:56:25:ff:44:db:4d:5d:44:2b:83:a8:db:
51:e5:dc:e8:c9:09:40:51:9b:8b:fc:cf:58:09:b6:
74:ac:42:ab:47:6e:c2:61:62:60:70:fe:8e:d4:bf:
3e:e8:b0:36:2e:6e:95:5a:51:61:6a:61:d2:28:b6:
6f:42:6d:b3:4b:f5:ba:70:ed:4f:86:a0:19:51:60:
64:39:41:64:d3:21:96:65:93:4b:57:63:b4:5a:7f:
f3:79:65:a6:5d:9c:de:3e:f6:02:ea:7a:30:5d:82:
c1:09:2d:4c:1d:a5:16:44:29:c6:d5:02:48:12:b0:
dc:82:c4:2f:0f:18:a3:e3:38:d4:22:a2:c8:c7:9b:
e5:2d:9f:d3:37:78:74:ce:e9:99:6e:ea:16:fe:49:
66:25:4f:08:70:55:e0:b1:6f:67:e1:fa:91:1d:17:
3f:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:66:9C:40:36:13:3F:D5:89:73:FD:64:E8:CD:28:41:D8:24:41:7D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AAD712D615F111F0A78B98F56DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.28.0/24
Signature Algorithm: sha256WithRSAEncryption
80:51:d6:6e:5f:ae:85:e0:36:7e:eb:82:d4:a6:40:e8:31:a9:
cd:53:0a:ba:e4:f2:d8:0f:22:ed:b4:1a:ef:6d:3c:9d:08:98:
ab:08:11:5b:ac:40:9e:66:78:95:2c:1b:71:d2:4f:41:70:f5:
dd:d7:4d:6f:b6:4c:c8:92:cb:1b:73:41:23:d7:ce:87:39:b8:
a3:16:a4:8e:2d:7e:bc:31:27:2e:72:e1:64:c4:5e:ea:1a:e4:
ff:74:3c:3d:2c:59:22:44:78:df:16:da:04:ae:1f:75:bd:80:
8f:4f:ed:0b:9d:d7:f6:a4:f1:5c:af:d9:53:6e:82:73:1e:c9:
57:42:12:67:ed:e6:88:df:7e:5f:2e:96:62:01:5b:95:4b:af:
ec:04:d9:dc:29:a2:3e:24:6b:22:48:11:a9:51:a4:ac:40:80:
52:e1:ed:61:af:e1:e5:49:53:39:3c:e8:9f:49:c7:09:94:ae:
8b:d6:b2:32:dd:39:ca:06:08:c0:1e:01:c8:44:45:67:d3:4c:
08:f9:b2:64:cc:63:2b:13:2e:bf:e5:f4:31:39:2d:8d:07:52:
c5:21:33:45:d0:5a:30:f6:9f:2f:40:7f:b1:34:9a:0a:71:40:
54:e4:69:32:3d:69:0d:26:f5:de:cd:92:0a:3d:e3:17:e1:e7:
db:57:b5:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 18:06:58 2025 by rpki-client on console.sobornost.net