Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BB51F83E210D11F0AC945296DAE4EC9C.roa
File: BB51F83E210D11F0AC945296DAE4EC9C.roa (raw, json)
Hash identifier: mdkdq0cQKw2b92GanXKrU7h/1geFrxdo/w4FdVCmdmg=
Subject key identifier: 74:F8:7B:D2:47:48:1B:71:41:16:E0:73:ED:18:00:A7:56:01:79:D8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014E60
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BB51F83E210D11F0AC945296DAE4EC9C.roa
Signing time: Thu 24 Apr 2025 13:12:11 +0000
ROA not before: Thu 24 Apr 2025 13:12:07 +0000
ROA not after: Sat 03 May 2025 13:12:07 +0000
asID: 131471
IP address blocks: 45.195.130.0/24 maxlen: 24
45.195.131.0/24 maxlen: 24
45.195.194.0/24 maxlen: 24
45.195.195.0/24 maxlen: 24
45.195.210.0/24 maxlen: 24
45.195.211.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 27 Apr 2025 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85600 (0x14e60)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 24 13:12:07 2025 GMT
Not After : May 3 13:12:07 2025 GMT
Subject: CN=680a38ab-4491
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:13:34:56:80:32:04:8d:38:ec:87:e2:dc:4c:
ba:90:71:3d:0c:80:4c:ae:cb:7e:13:5a:df:07:bb:
6b:f2:7a:a0:7a:ff:f7:95:01:bc:2d:e0:29:43:d3:
de:db:4a:d0:6e:c8:2a:e7:73:7d:31:87:07:b5:89:
e5:18:d4:cf:bb:b1:48:8b:33:f0:d6:0c:ae:d4:2b:
c9:c9:f4:31:63:aa:c1:46:d1:83:0f:8c:af:ad:e3:
bd:82:9a:7a:bd:57:b7:e5:fc:50:fa:c0:b4:8c:6c:
7d:62:cf:e9:97:c2:02:47:f5:70:c5:59:99:23:24:
8e:19:dd:47:11:ce:25:a8:74:54:3b:5e:e3:a6:45:
02:0c:75:03:0c:00:fb:53:6f:b8:e0:e3:b6:a1:ff:
53:57:a7:48:7d:62:31:1d:9f:84:46:b3:bc:44:61:
3a:a9:d2:ce:0f:0b:dc:03:89:c1:ef:61:bf:05:22:
69:2f:c6:0c:07:59:df:4d:a7:0d:4b:5e:9b:75:f3:
83:94:d2:fb:e4:bf:d1:c7:b7:85:57:5c:5d:6e:cb:
f1:dc:58:81:40:e6:66:f7:b4:6d:33:47:98:1b:80:
f7:7a:f4:4a:bf:49:d9:70:54:76:b2:c1:ba:ff:a0:
21:e5:2a:96:2d:b1:4b:79:84:7f:f6:03:de:3c:63:
e2:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:F8:7B:D2:47:48:1B:71:41:16:E0:73:ED:18:00:A7:56:01:79:D8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BB51F83E210D11F0AC945296DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.130.0/23
45.195.194.0/23
45.195.210.0/23
Signature Algorithm: sha256WithRSAEncryption
56:aa:75:50:fc:08:b8:a2:6c:9e:fd:a4:f9:e2:5a:dd:96:c3:
83:72:94:d7:86:bd:bc:6c:a3:c3:b9:3d:10:7c:78:4d:2f:52:
85:c5:c3:50:81:11:bd:1a:1c:c5:07:49:c6:22:7c:08:6b:6e:
8b:3e:18:2b:9f:03:78:99:f4:1a:e0:bd:7b:af:9c:cd:22:0f:
a0:c8:7c:73:c0:bc:90:e2:08:bc:59:8d:09:f6:fc:c1:5d:62:
ec:cd:b4:91:9e:1b:d9:62:a7:a7:35:57:40:77:5a:68:7e:1d:
18:08:7e:73:c4:c6:0f:00:f7:68:ba:fa:81:5c:df:ab:0e:91:
23:2f:e0:b1:23:ce:f0:ef:3a:fd:80:97:90:08:27:81:c3:db:
51:d1:39:98:08:23:15:1c:0a:a3:eb:e1:5d:fb:a4:c7:a3:b1:
d1:a7:fe:6c:e4:c7:13:46:cf:96:d6:0f:f0:a2:43:f7:aa:06:
77:5a:8f:b3:da:25:1e:3e:24:48:fb:87:d9:40:0b:d3:d3:95:
20:c7:c3:f5:0a:7e:bd:06:e9:d7:ac:c8:1c:6d:d7:d3:34:ff:
5c:be:bd:6f:04:6a:c5:3b:17:6b:d6:50:47:db:02:be:57:9a:
ad:99:cf:1e:79:dd:9e:5b:2f:58:d7:9d:2d:d9:d7:90:1c:ea:
84:5c:a9:8e
-----BEGIN CERTIFICATE-----
MIIFjTCCBHWgAwIBAgIDAU5gMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNDI0MTMxMjA3WhcNMjUwNTAzMTMxMjA3WjAYMRYw
FAYDVQQDEw02ODBhMzhhYi00NDkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvxM0VoAyBI047Ifi3Ey6kHE9DIBMrst+E1rfB7tr8nqgev/3lQG8LeAp
Q9Pe20rQbsgq53N9MYcHtYnlGNTPu7FIizPw1gyu1CvJyfQxY6rBRtGDD4yvreO9
gpp6vVe35fxQ+sC0jGx9Ys/pl8ICR/VwxVmZIySOGd1HEc4lqHRUO17jpkUCDHUD
DAD7U2+44OO2of9TV6dIfWIxHZ+ERrO8RGE6qdLODwvcA4nB72G/BSJpL8YMB1nf
TacNS16bdfODlNL75L/Rx7eFV1xdbsvx3FiBQOZm97RtM0eYG4D3evRKv0nZcFR2
ssG6/6Ah5SqWLbFLeYR/9gPePGPi2wIDAQABo4ICrjCCAqowHQYDVR0OBBYEFHT4
e9JHSBtxQRbgc+0YAKdWAXnYMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9CQjUxRjgzRTIxMEQxMUYwQUM5NDUyOTZEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQBLcOCAwQBLcPCAwQBLcPSMA0G
CSqGSIb3DQEBCwUAA4IBAQBWqnVQ/Ai4omye/aT54lrdlsODcpTXhr28bKPDuT0Q
fHhNL1KFxcNQgRG9GhzFB0nGInwIa26LPhgrnwN4mfQa4L17r5zNIg+gyHxzwLyQ
4gi8WY0J9vzBXWLszbSRnhvZYqenNVdAd1pofh0YCH5zxMYPAPdouvqBXN+rDpEj
L+CxI87w7zr9gJeQCCeBw9tR0TmYCCMVHAqj6+Fd+6THo7HRp/5s5McTRs+W1g/w
okP3qgZ3Wo+z2iUePiRI+4fZQAvT05Ugx8P1Cn69BunXrMgcbdfTNP9cvr1vBGrF
Oxdr1lBH2wK+V5qtmc8eed2eWy9Y150t2deQHOqEXKmO
-----END CERTIFICATE-----
Generated at Fri Apr 25 06:07:24 2025 by rpki-client on console.sobornost.net