Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BC83F7C81A0711F0924CEFC26DB8BCC6.roa
File: BC83F7C81A0711F0924CEFC26DB8BCC6.roa (raw, json)
Hash identifier: eO7LOvXKW6f9iL6V2/hHQhA/pz6c5UpH2UkQSvQTS0o=
Subject key identifier: BA:C3:1B:0D:F5:98:77:48:21:D6:47:50:5C:93:F3:2B:42:21:9E:EE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014C76
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BC83F7C81A0711F0924CEFC26DB8BCC6.roa
Signing time: Tue 15 Apr 2025 14:41:38 +0000
ROA not before: Tue 15 Apr 2025 14:41:34 +0000
ROA not after: Thu 22 May 2025 14:41:34 +0000
asID: 198584
IP address blocks: 156.253.238.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 27 Apr 2025 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85110 (0x14c76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 15 14:41:34 2025 GMT
Not After : May 22 14:41:34 2025 GMT
Subject: CN=67fe7022-2f68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:66:cd:fe:bd:d9:2d:d6:0e:79:b4:e0:72:fa:
35:ba:2f:2d:18:1c:ed:69:02:f3:6a:0e:df:88:20:
0c:8a:57:f4:37:42:0b:4b:1e:3b:6d:e3:26:f4:fe:
0f:97:66:0c:38:b1:80:54:11:e5:0c:bb:f1:56:29:
8d:1d:e1:49:c8:61:f6:b9:eb:a2:14:ca:4f:75:1d:
49:6b:7e:6e:a3:6b:ee:35:97:4a:fa:26:4a:f9:d0:
75:4c:9a:d1:99:d6:53:79:11:ec:9e:7a:22:0a:77:
1a:43:4e:6c:0f:18:59:a1:59:8e:d4:18:14:07:6f:
13:3a:4d:0b:9f:63:9e:41:e4:43:01:6d:9b:c3:f5:
76:9c:3d:6e:52:02:dc:bc:2c:eb:f0:d4:b5:f4:e4:
42:01:80:49:45:2e:7b:9b:57:92:d0:3e:4d:78:5f:
81:e9:64:be:13:31:b3:e6:fd:d9:8b:31:d5:d0:92:
60:a3:c7:01:97:cd:bb:da:e0:d2:b6:7e:e6:a5:95:
67:ba:8f:7a:c8:c9:35:89:f7:42:89:59:ab:83:14:
3c:ab:70:e7:b2:36:ba:2b:88:b0:42:32:27:61:05:
2b:35:4f:08:a8:bb:73:f4:10:4c:2f:04:1e:53:37:
34:57:ad:3a:87:31:43:c6:6d:3a:43:2d:ca:83:51:
6d:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:C3:1B:0D:F5:98:77:48:21:D6:47:50:5C:93:F3:2B:42:21:9E:EE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BC83F7C81A0711F0924CEFC26DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.253.238.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:db:c0:78:f2:fd:bf:ab:46:13:27:58:99:00:51:57:75:5b:
49:c8:20:b9:45:09:10:37:06:05:56:78:42:2d:d2:50:13:47:
ef:a4:73:42:9a:bb:b3:34:5a:d1:10:aa:02:c8:c9:e3:fd:a3:
b1:36:b4:77:6f:70:20:52:6d:2d:94:02:ea:a6:31:1a:e7:d0:
db:b8:4c:41:c3:75:9b:ec:d4:87:12:a6:42:4d:41:84:25:f3:
8c:34:08:b1:40:a9:87:65:83:a4:75:50:e5:2b:24:e1:65:a6:
8f:5b:00:ae:ec:1e:41:b9:b4:68:37:cd:8f:60:5e:a0:9c:dd:
f4:e0:8c:3a:44:b1:3c:55:fc:7a:92:14:d3:7c:2a:6e:2b:d7:
3b:39:d3:31:d6:3e:1b:8b:c7:53:86:77:e7:36:bf:9d:a4:99:
3c:29:bb:28:aa:97:22:fb:51:e5:b6:69:89:1a:1e:a9:fe:4c:
36:19:37:02:ef:03:51:35:6a:f3:6d:16:e2:da:f5:3d:1e:2b:
9c:5d:f0:16:9b:1b:9f:e6:ef:f1:38:ff:8b:be:89:fa:2e:18:
16:3c:20:9f:ef:59:3e:8e:23:fc:3f:b9:47:2c:4d:50:5d:cf:
7d:33:fc:af:fe:f8:d0:a5:3f:0a:e3:9c:10:e4:9e:71:ed:be:
93:50:ef:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 06:07:25 2025 by rpki-client on console.sobornost.net