Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C15361AC1D0011F0A7AE4281DAE4EC9C.roa
File: C15361AC1D0011F0A7AE4281DAE4EC9C.roa (raw, json)
Hash identifier: rh2mRU4kJbn4PzImIc7nZX3SxuUqj0UqvrdGNoyJ8iM=
Subject key identifier: E1:04:99:F4:10:23:A0:18:5C:F1:56:70:86:74:3E:3D:0A:76:F6:E2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014D8E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C15361AC1D0011F0A7AE4281DAE4EC9C.roa
Signing time: Sat 19 Apr 2025 09:29:13 +0000
ROA not before: Sat 19 Apr 2025 09:29:09 +0000
ROA not after: Fri 30 May 2025 09:29:09 +0000
asID: 398823
IP address blocks: 45.192.192.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 28 Apr 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85390 (0x14d8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 19 09:29:09 2025 GMT
Not After : May 30 09:29:09 2025 GMT
Subject: CN=68036ce9-3cc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:58:9a:b0:6e:7a:ec:5b:47:9a:6a:44:24:a0:
85:a2:f6:46:a0:12:46:9c:93:c5:ce:d5:ad:fe:c0:
d2:dd:6e:fe:3b:48:07:cd:86:76:88:87:2c:05:b3:
70:65:3c:92:63:a6:f0:e6:2e:59:3d:d7:25:f4:bb:
a5:c1:ae:a1:6d:23:b0:64:f2:d5:07:72:48:88:b4:
79:e6:8c:08:d0:74:50:f2:29:04:27:75:4a:d0:fd:
09:62:cd:52:46:06:16:55:ac:34:c6:13:26:fc:84:
32:e9:1a:69:44:e3:99:fb:18:6c:e7:f9:20:5d:02:
5b:97:58:d8:8d:63:af:a7:91:76:b0:c0:eb:ff:a1:
b1:92:97:0d:ae:13:10:b8:06:53:a7:67:85:70:54:
8a:5d:77:87:20:7e:8e:cb:0e:68:c1:c1:b7:5f:23:
37:49:27:2f:70:a0:4e:b8:7f:5e:e5:e0:b7:3a:94:
9d:b3:b5:ed:45:7a:46:98:47:67:6d:44:46:32:64:
d2:c5:4a:40:76:a4:28:60:5a:18:47:0d:ab:f2:81:
27:56:ff:50:ca:7b:40:4b:8f:37:cc:42:92:26:d6:
54:b2:b8:a5:16:0f:6d:89:75:ea:cc:8f:ac:7a:7c:
e3:13:34:56:5e:fa:bc:ad:43:0c:cb:24:7b:30:c1:
32:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:04:99:F4:10:23:A0:18:5C:F1:56:70:86:74:3E:3D:0A:76:F6:E2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C15361AC1D0011F0A7AE4281DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.192.0/20
Signature Algorithm: sha256WithRSAEncryption
82:b7:9d:c7:3e:40:5a:9c:22:92:10:b0:f6:2f:38:98:64:97:
3c:46:d2:da:23:a9:7e:7e:7d:a3:23:64:53:47:8c:8b:ad:12:
a3:bd:c1:e4:2c:48:7a:77:f3:e7:57:bd:24:ec:fd:f9:2a:7c:
75:42:a4:c5:da:91:81:80:da:a3:95:20:f5:d7:4e:9f:e7:96:
07:eb:07:e4:d1:4d:26:7c:6f:60:c8:3d:42:f3:3b:7e:b6:7d:
c8:7b:8e:1f:7c:62:a6:90:08:19:df:ba:50:81:4b:49:db:b7:
17:d6:da:21:c8:ca:c5:87:8c:98:73:f9:10:37:4b:ff:e7:4e:
84:c1:e5:7b:da:ff:e2:39:66:4f:45:ad:5b:63:3b:fe:c4:92:
ea:d1:12:d5:d6:3e:27:40:f9:27:2c:e4:cb:a1:9c:c4:83:89:
b0:b9:3a:d3:df:f7:23:14:ca:99:a8:3a:0b:4a:42:48:5b:6a:
83:86:42:d1:d7:d6:c7:9d:b7:44:39:f6:07:45:06:d2:93:75:
33:e4:c1:d2:65:63:47:2f:3b:d8:ff:ee:38:ba:ee:c3:bf:f8:
e3:56:19:96:04:94:70:eb:c1:f7:35:e8:5f:50:5e:94:70:91:
98:59:32:46:87:95:65:6a:22:df:f4:3c:ab:f4:8d:e9:70:b9:
07:c2:94:da
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAU2OMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNDE5MDkyOTA5WhcNMjUwNTMwMDkyOTA5WjAYMRYw
FAYDVQQDEw02ODAzNmNlOS0zY2M0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA6FiasG567FtHmmpEJKCFovZGoBJGnJPFztWt/sDS3W7+O0gHzYZ2iIcs
BbNwZTySY6bw5i5ZPdcl9Lulwa6hbSOwZPLVB3JIiLR55owI0HRQ8ikEJ3VK0P0J
Ys1SRgYWVaw0xhMm/IQy6RppROOZ+xhs5/kgXQJbl1jYjWOvp5F2sMDr/6GxkpcN
rhMQuAZTp2eFcFSKXXeHIH6Oyw5owcG3XyM3SScvcKBOuH9e5eC3OpSds7XtRXpG
mEdnbURGMmTSxUpAdqQoYFoYRw2r8oEnVv9QyntAS483zEKSJtZUsrilFg9tiXXq
zI+senzjEzRWXvq8rUMMyyR7MMEy2wIDAQABo4ICojCCAp4wHQYDVR0OBBYEFOEE
mfQQI6AYXPFWcIZ0Pj0KdvbiMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9DMTUzNjFBQzFEMDAxMUYwQTdBRTQyODFEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQELcDAMA0GCSqGSIb3DQEBCwUA
A4IBAQCCt53HPkBanCKSELD2LziYZJc8RtLaI6l+fn2jI2RTR4yLrRKjvcHkLEh6
d/PnV70k7P35Knx1QqTF2pGBgNqjlSD1106f55YH6wfk0U0mfG9gyD1C8zt+tn3I
e44ffGKmkAgZ37pQgUtJ27cX1tohyMrFh4yYc/kQN0v/506EweV72v/iOWZPRa1b
Yzv+xJLq0RLV1j4nQPknLOTLoZzEg4mwuTrT3/cjFMqZqDoLSkJIW2qDhkLR19bH
nbdEOfYHRQbSk3Uz5MHSZWNHLzvY/+44uu7Dv/jjVhmWBJRw68H3NehfUF6UcJGY
WTJGh5VlaiLf9Dyr9I3pcLkHwpTa
-----END CERTIFICATE-----
Generated at Sat Apr 26 08:50:59 2025 by rpki-client on console.sobornost.net