Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DF025D5617A711F0A429D8E36DB8BCC6.roa
File: DF025D5617A711F0A429D8E36DB8BCC6.roa (raw, json)
Hash identifier: p7PXV92SZqdR9v6jybsDRff+q9HTFbhZiO98SonKovU=
Subject key identifier: B8:D9:24:72:6F:CD:24:7B:21:66:90:2B:E8:E3:76:61:FA:7F:8F:28
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014BDE
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DF025D5617A711F0A429D8E36DB8BCC6.roa
Signing time: Sat 12 Apr 2025 14:10:22 +0000
ROA not before: Sat 12 Apr 2025 14:10:18 +0000
ROA not after: Tue 20 May 2025 14:10:18 +0000
asID: 57043
IP address blocks: 156.253.42.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84958 (0x14bde)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 12 14:10:18 2025 GMT
Not After : May 20 14:10:18 2025 GMT
Subject: CN=67fa744e-8e7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:61:1f:e9:77:e6:3e:9e:1b:c0:e3:9d:90:7d:
3a:42:66:6b:8a:1c:bd:db:9c:fd:49:ae:54:0b:bc:
ca:b2:fb:4b:f9:1c:cd:93:c6:30:7d:02:58:02:2a:
36:43:56:6c:57:b5:78:48:75:66:41:33:24:05:4c:
8f:a7:43:d6:c6:1d:c9:99:b4:79:27:e0:34:79:1f:
77:28:5d:0a:81:71:8f:56:9a:6d:8e:d9:cc:df:c7:
f0:1f:4e:e1:e0:64:79:b4:e3:47:5a:91:1d:cf:17:
32:35:63:ba:59:7f:e8:f3:2f:34:cc:78:17:a2:35:
60:d7:05:bf:81:e5:ed:fc:45:5b:fd:f3:c5:21:93:
b1:22:3c:d5:1e:4f:83:77:50:01:f9:1f:b6:73:b9:
03:bd:91:43:ff:b4:6f:d0:79:46:09:0e:7a:6b:44:
59:3c:19:de:15:c2:f3:9c:ae:bb:af:2c:84:da:a8:
62:2c:06:86:95:94:fb:9b:90:bb:a3:15:35:c7:46:
14:df:36:de:b5:58:15:90:35:ae:e2:24:04:08:a6:
d7:7f:01:84:68:2e:eb:41:5c:a0:e0:50:d9:f6:48:
69:0b:6c:37:69:dc:0e:17:3c:ff:4e:ed:6b:49:9c:
d0:c7:fe:55:8a:88:5f:78:46:ba:0c:49:58:d4:7f:
19:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:D9:24:72:6F:CD:24:7B:21:66:90:2B:E8:E3:76:61:FA:7F:8F:28
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DF025D5617A711F0A429D8E36DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.253.42.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:94:6f:46:0c:82:9e:08:a1:96:16:c1:2c:30:ec:d5:51:83:
83:5a:87:04:de:0f:67:a7:ce:04:cf:79:28:01:24:50:9b:bd:
5a:3d:de:ae:17:58:50:83:77:43:e5:3d:22:77:32:ed:37:7d:
54:92:76:21:ac:a4:8e:6b:fe:aa:23:e7:f6:62:a1:70:49:2e:
a1:62:6a:22:f4:ad:cb:a8:07:cd:8c:23:0d:4b:a4:fb:a0:e1:
fa:d1:98:80:7b:d6:72:56:bf:bd:3f:57:36:f2:52:05:1f:ec:
6a:ce:0b:1d:b8:97:12:26:3a:1b:e7:0e:56:6a:e5:f6:d4:05:
3a:93:49:3d:19:9f:a9:14:2c:d3:e4:6f:cb:d9:ca:f7:70:92:
bc:7b:2f:6a:3c:24:69:ac:00:e4:e8:ae:bd:9e:17:4c:c8:f3:
0b:d2:28:8a:94:40:cc:10:98:24:a5:72:d7:a0:81:66:54:47:
cf:99:2d:d4:3f:4a:b3:3e:bd:79:f9:ea:50:c1:39:ff:3c:8f:
ba:61:db:97:3c:ed:f9:fe:82:e1:97:9c:b2:03:21:ea:ce:f4:
f6:d6:c6:a4:09:b7:f8:40:51:d0:c8:61:13:ba:32:60:45:0b:
84:5d:9c:7f:6e:fc:64:6f:81:bf:b1:01:a2:11:fc:c2:32:a8:
87:f0:25:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 18:07:33 2025 by rpki-client on console.sobornost.net