Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/ADA15648211311F09B20ECBADAE4EC9C.roa
File: ADA15648211311F09B20ECBADAE4EC9C.roa (raw, json)
Hash identifier: f6Y9snXc+3CV/1HNc3LETKtqsryvTypbzc7g4PrwPO0=
Subject key identifier: 1D:08:71:AC:48:BF:84:39:8A:87:A0:6B:56:35:CD:CD:AD:6C:6F:96
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014E84
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/ADA15648211311F09B20ECBADAE4EC9C.roa
Signing time: Thu 24 Apr 2025 13:54:45 +0000
ROA not before: Thu 24 Apr 2025 13:54:40 +0000
ROA not after: Fri 02 May 2025 13:54:40 +0000
asID: 134489
IP address blocks: 156.238.86.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85636 (0x14e84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 24 13:54:40 2025 GMT
Not After : May 2 13:54:40 2025 GMT
Subject: CN=680a42a5-f041
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:f0:80:d8:73:39:b1:2d:30:dd:aa:26:d7:fe:
2c:2b:94:56:d1:44:d3:d7:0d:d9:c5:f6:64:f4:99:
93:13:27:a7:60:0e:38:94:5c:69:11:97:21:0f:84:
32:a2:db:80:a9:7b:fb:62:f5:db:f7:8d:22:b8:41:
d4:46:f3:cc:d0:32:2c:d0:1b:4c:44:93:42:9b:6c:
5e:26:70:90:e3:f9:05:82:71:72:08:1d:2e:73:ce:
bc:09:e1:91:bf:1e:79:3b:13:57:1c:3c:71:8e:31:
ae:03:e1:09:3b:80:fb:0d:eb:0d:48:a5:e2:e3:26:
15:96:d5:61:13:b5:57:35:14:e7:f8:6e:60:72:63:
d2:de:d3:07:79:e7:12:21:c6:bb:cb:00:cc:04:a0:
ec:5a:7f:23:e7:bd:9f:96:8a:c2:6e:08:ae:b1:dc:
9d:dd:2a:e5:99:6d:02:b8:c5:65:e4:5c:c2:58:09:
a0:75:de:6a:b0:da:7a:7c:4f:4f:e9:76:21:eb:d4:
ef:4b:48:67:fc:69:f8:f4:fa:81:1d:5a:5d:51:4d:
96:c2:2f:38:6f:60:be:28:a6:3a:25:33:c4:57:c3:
25:94:9a:6a:f3:f9:e4:c8:54:ef:a6:3e:ea:0b:29:
94:e8:a3:a3:fb:1d:c4:92:a0:9d:60:d9:f0:f4:e3:
81:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:08:71:AC:48:BF:84:39:8A:87:A0:6B:56:35:CD:CD:AD:6C:6F:96
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/ADA15648211311F09B20ECBADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.86.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:63:1b:3e:7c:c3:12:25:d1:fe:c5:8b:eb:1e:cb:be:a8:c2:
f8:b7:4f:0a:92:a9:ad:e1:53:55:86:af:36:92:da:bf:c2:5f:
d4:72:01:55:70:85:6b:8f:05:d7:2f:36:c5:87:b6:a6:f4:d8:
33:96:b1:7d:4b:a0:67:ee:27:2f:18:d5:e7:ab:1d:c0:96:08:
e0:99:d6:02:af:bf:bc:59:0d:56:f0:b9:e7:5c:f8:a4:7b:b0:
65:1d:4f:98:dd:0f:df:bb:f7:72:da:70:dc:d8:97:5b:b7:c5:
c3:b0:7f:01:88:98:d7:6a:e7:91:2f:e6:f9:37:e7:51:c4:73:
66:fb:a9:f9:16:bd:a1:08:77:70:df:58:25:81:ba:0b:0e:4b:
c0:3b:5a:ba:96:be:aa:bb:b2:e6:d3:f8:46:c3:97:7e:69:30:
03:2a:10:88:56:75:04:bd:63:26:29:19:35:ba:a4:ee:51:d9:
4a:cf:33:c8:bc:47:96:9d:d2:cb:61:ac:59:75:33:c7:c5:f9:
62:32:af:e2:93:cc:c8:eb:cc:91:b3:74:8c:b6:6c:69:51:30:
4c:ed:5c:45:37:6c:34:4d:86:18:82:1a:60:45:41:63:c5:f9:
47:00:87:69:38:7d:04:2c:55:3b:9f:14:df:8b:52:71:cf:65:
77:16:7c:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 18:07:00 2025 by rpki-client on console.sobornost.net