Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DA96C9A61F4E11F096C975ECDAE4EC9C.roa
File: DA96C9A61F4E11F096C975ECDAE4EC9C.roa (raw, json)
Hash identifier: xp7b1Pn36wmcvoLp3SrvXP89gMaDLpgXllm9/2FN9rA=
Subject key identifier: B6:A4:E6:AA:D2:A4:73:1D:69:0E:21:64:81:A4:8A:A4:3F:AF:BB:DE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014DE6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DA96C9A61F4E11F096C975ECDAE4EC9C.roa
Signing time: Tue 22 Apr 2025 07:53:19 +0000
ROA not before: Tue 22 Apr 2025 07:53:14 +0000
ROA not after: Thu 01 May 2025 07:53:14 +0000
asID: 39600
IP address blocks: 45.195.212.0/24 maxlen: 24
45.195.213.0/24 maxlen: 24
45.195.214.0/24 maxlen: 24
45.195.215.0/24 maxlen: 24
45.197.8.0/24 maxlen: 24
45.197.9.0/24 maxlen: 24
45.197.10.0/24 maxlen: 24
45.197.11.0/24 maxlen: 24
45.197.28.0/24 maxlen: 24
45.197.29.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 27 Apr 2025 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85478 (0x14de6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 22 07:53:14 2025 GMT
Not After : May 1 07:53:14 2025 GMT
Subject: CN=68074aef-b9fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:20:14:0f:9e:d4:4f:3e:67:ef:bd:4a:b5:4a:
be:c1:b6:c2:de:77:e5:46:de:c3:c8:a6:12:a2:5f:
e0:45:d1:b3:c5:57:f4:d2:08:d5:8c:22:0e:e3:39:
23:0f:3a:36:e5:5b:3f:23:d3:30:d0:7a:13:8c:ec:
24:6e:03:d1:45:ff:d1:8a:0f:25:c8:70:1e:a6:af:
6e:08:69:fc:af:33:22:17:c0:55:e3:89:76:dc:40:
77:5c:ee:e1:44:0d:ad:2f:ea:d4:00:64:20:68:e9:
1a:f4:45:d7:b0:66:7c:eb:b0:3a:92:96:38:69:9b:
be:70:ff:7e:e9:e3:cb:36:8f:0a:f3:66:8e:f1:cb:
51:83:fc:15:71:c1:91:df:e2:f3:f1:e4:f1:55:96:
94:86:b4:56:8b:43:dd:12:82:08:4b:e3:dd:70:62:
84:65:c4:f1:12:f6:a5:31:49:38:58:f4:7e:b4:99:
e8:97:0e:77:10:35:3d:e9:96:28:4b:ef:bd:65:09:
9f:db:d9:8b:82:2d:56:d0:b5:44:20:3e:00:49:c6:
5e:f2:33:3d:8e:ac:22:34:50:eb:29:4f:11:9b:63:
13:44:3e:64:14:49:b5:d7:d6:08:f5:21:5d:09:1c:
24:f9:3c:14:4b:fb:16:cf:7f:f7:06:3d:48:a6:6a:
02:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:A4:E6:AA:D2:A4:73:1D:69:0E:21:64:81:A4:8A:A4:3F:AF:BB:DE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DA96C9A61F4E11F096C975ECDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.212.0/22
45.197.8.0/22
45.197.28.0/23
Signature Algorithm: sha256WithRSAEncryption
51:1e:49:ed:f5:4c:54:e0:7a:97:c6:b9:ba:43:9a:ad:26:5a:
72:db:e3:a8:f1:d5:da:75:56:ba:88:ab:68:28:9a:a2:46:65:
99:b8:0b:9f:32:a5:58:f5:2a:da:f0:10:7e:d6:f1:de:8c:88:
b0:20:ba:04:ba:91:67:21:10:7f:85:52:28:53:60:8d:77:ce:
01:0a:1c:b4:6f:18:6a:ca:ed:5d:9a:33:7a:c5:01:89:43:89:
6d:4c:ef:79:45:dc:20:fb:39:01:37:d8:c1:a1:fc:04:c0:d3:
ca:7d:f4:77:49:7b:8c:df:f0:91:b7:02:81:58:24:b8:a7:bb:
3c:de:91:e4:2d:58:15:35:c6:2c:9a:fb:fc:d7:a8:01:34:be:
76:76:5a:43:38:be:c1:3c:b0:39:5d:2d:3f:6c:da:74:9e:09:
87:ee:f9:30:a1:0e:a7:a4:c2:45:71:05:3b:30:ba:bf:f6:59:
9d:de:27:1a:c7:ae:3b:7c:c7:7e:34:f1:1a:06:5b:7c:ab:e7:
3e:90:96:f5:ee:9d:ed:1c:53:7a:d8:59:12:af:0e:68:62:9e:
b7:72:57:f6:f8:52:7f:34:9a:19:d5:c8:0b:ce:ae:03:54:cd:
a6:92:68:b5:38:01:34:58:1a:ac:c9:5c:7d:14:7d:56:80:4c:
52:60:9e:06
-----BEGIN CERTIFICATE-----
MIIFjTCCBHWgAwIBAgIDAU3mMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNDIyMDc1MzE0WhcNMjUwNTAxMDc1MzE0WjAYMRYw
FAYDVQQDEw02ODA3NGFlZi1iOWZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA8iAUD57UTz5n771KtUq+wbbC3nflRt7DyKYSol/gRdGzxVf00gjVjCIO
4zkjDzo25Vs/I9Mw0HoTjOwkbgPRRf/Rig8lyHAepq9uCGn8rzMiF8BV44l23EB3
XO7hRA2tL+rUAGQgaOka9EXXsGZ867A6kpY4aZu+cP9+6ePLNo8K82aO8ctRg/wV
ccGR3+Lz8eTxVZaUhrRWi0PdEoIIS+PdcGKEZcTxEvalMUk4WPR+tJnolw53EDU9
6ZYoS++9ZQmf29mLgi1W0LVEID4AScZe8jM9jqwiNFDrKU8Rm2MTRD5kFEm119YI
9SFdCRwk+TwUS/sWz3/3Bj1IpmoCOQIDAQABo4ICrjCCAqowHQYDVR0OBBYEFLak
5qrSpHMdaQ4hZIGkiqQ/r7veMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9EQTk2QzlBNjFGNEUxMUYwOTZDOTc1RUNEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQCLcPUAwQCLcUIAwQBLcUcMA0G
CSqGSIb3DQEBCwUAA4IBAQBRHknt9UxU4HqXxrm6Q5qtJlpy2+Oo8dXadVa6iKto
KJqiRmWZuAufMqVY9Sra8BB+1vHejIiwILoEupFnIRB/hVIoU2CNd84BChy0bxhq
yu1dmjN6xQGJQ4ltTO95Rdwg+zkBN9jBofwEwNPKffR3SXuM3/CRtwKBWCS4p7s8
3pHkLVgVNcYsmvv816gBNL52dlpDOL7BPLA5XS0/bNp0ngmH7vkwoQ6npMJFcQU7
MLq/9lmd3icax647fMd+NPEaBlt8q+c+kJb17p3tHFN62FkSrw5oYp63clf2+FJ/
NJoZ1cgLzq4DVM2mkmi1OAE0WBqsyVx9FH1WgExSYJ4G
-----END CERTIFICATE-----
Generated at Fri Apr 25 10:43:09 2025 by rpki-client on console.sobornost.net