Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C0C3A3D4191111F08F7C86DC6DB8BCC6.roa
File: C0C3A3D4191111F08F7C86DC6DB8BCC6.roa (raw, json)
Hash identifier: 7DEEiNf5eoOywNEn3+qNLw21OANgX3JjbBChGWaGLSU=
Subject key identifier: 5B:11:5B:27:75:F9:17:F5:88:42:2B:28:6A:E2:06:27:2E:7C:46:37
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014C2A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C0C3A3D4191111F08F7C86DC6DB8BCC6.roa
Signing time: Mon 14 Apr 2025 09:20:49 +0000
ROA not before: Mon 14 Apr 2025 09:20:44 +0000
ROA not after: Thu 22 May 2025 09:20:44 +0000
asID: 8796
IP address blocks: 45.205.16.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 28 Apr 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85034 (0x14c2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 14 09:20:44 2025 GMT
Not After : May 22 09:20:44 2025 GMT
Subject: CN=67fcd371-4615
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ba:b6:d6:b4:78:5a:00:86:2d:b0:86:86:e2:
92:18:ce:23:fd:d5:29:d1:8c:ba:41:8f:5a:c9:c6:
9b:0a:7f:a3:30:c8:13:3b:db:09:ae:74:aa:0c:a9:
b2:60:6f:24:f1:ce:07:0d:ee:b8:dc:63:04:1a:01:
94:93:27:34:e8:8c:2e:7c:2e:11:c5:db:f0:4e:8f:
81:e8:7c:97:88:34:47:06:43:22:5b:75:90:27:5d:
ef:2a:1a:a6:50:48:a3:a6:9b:ef:0d:e2:a1:71:56:
12:93:71:6f:0a:ee:96:86:8c:e8:eb:8c:64:26:ec:
d9:b1:3b:3c:6d:32:53:c0:22:fc:8f:3a:9b:1e:d4:
da:a3:35:5f:8e:cd:62:19:ee:a9:17:de:f3:eb:ac:
56:ee:eb:3b:80:72:63:b8:ca:23:71:99:59:f7:a7:
30:2b:95:fe:a2:73:9c:04:c6:d5:52:a3:51:dd:d9:
0c:1e:a3:c8:20:8c:7d:52:9d:b0:be:d1:5a:85:00:
1d:c8:e7:3a:2c:28:4d:76:20:6e:4d:fa:da:23:de:
5f:6a:9b:dd:d8:97:05:5e:c8:48:a8:6f:df:12:1d:
0d:b4:80:dc:8d:d5:58:46:8b:3b:e5:21:18:0f:54:
91:95:93:ca:40:41:a0:04:c1:11:46:ce:20:e6:e1:
2b:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:11:5B:27:75:F9:17:F5:88:42:2B:28:6A:E2:06:27:2E:7C:46:37
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C0C3A3D4191111F08F7C86DC6DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.205.16.0/20
Signature Algorithm: sha256WithRSAEncryption
08:7c:f7:73:cf:79:07:e2:e9:5c:c9:4a:e5:00:54:34:2a:39:
3f:47:c8:32:92:c2:25:f6:7d:70:66:3f:b5:36:5c:d6:1d:94:
2b:5f:85:dc:c6:21:0f:da:e7:36:c6:a4:67:e0:c9:73:6b:f6:
f6:af:0a:f3:7f:bb:bf:5c:f3:c4:a7:ae:af:34:7a:e7:0b:b2:
1e:05:65:22:f3:34:6f:3b:b7:9d:dd:3e:91:1e:e0:05:f2:73:
98:09:35:40:a0:67:f8:83:a2:68:0c:3b:c6:8d:84:c4:69:ab:
c5:6e:e4:35:e4:7b:a4:ca:71:bc:27:ed:bd:ca:b3:d5:d1:fc:
63:95:7d:c9:36:00:69:e5:2b:03:30:31:0e:a8:c8:66:d9:03:
f1:98:b2:1a:55:ab:e6:67:5b:ca:70:ea:95:ea:34:b4:e2:ed:
41:64:24:1e:e8:c1:c3:fc:01:f4:95:db:7c:07:ab:55:fd:47:
2e:2b:2a:3f:bd:83:3e:e8:ac:55:64:a4:cc:85:a7:c5:50:64:
c3:71:f5:09:a8:96:3f:e1:5d:9e:60:77:8f:df:46:d8:77:b6:
83:f7:5a:fb:21:c9:20:bd:7f:a9:fe:fc:5e:81:80:e0:b0:61:
0c:f6:d4:22:cc:2d:cd:7d:83:22:12:4a:4f:eb:a5:b4:33:b6:
3b:96:16:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 08:50:58 2025 by rpki-client on console.sobornost.net