Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E2DABF3211F711F08ADEB55A762E951A.roa
File: E2DABF3211F711F08ADEB55A762E951A.roa (raw, json)
Hash identifier: p6Dm9OzVmrelInS/mJDsWrO9vlXHA2t4+xOjwQiN1ps=
Subject key identifier: 2B:4F:5D:5C:D7:D2:14:1D:18:F2:43:CF:47:90:01:6E:EC:68:8C:EA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014A48
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E2DABF3211F711F08ADEB55A762E951A.roa
Signing time: Sat 05 Apr 2025 08:28:01 +0000
ROA not before: Sat 05 Apr 2025 08:27:57 +0000
ROA not after: Sun 11 May 2025 08:27:57 +0000
asID: 203020
IP address blocks: 45.202.46.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84552 (0x14a48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 5 08:27:57 2025 GMT
Not After : May 11 08:27:57 2025 GMT
Subject: CN=67f0e991-aa67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:c4:f9:62:c2:4e:af:99:79:e7:fd:6f:b9:7c:
59:9d:68:b9:60:bf:8e:ce:ed:db:1f:1b:21:75:29:
4b:7b:58:e5:1e:7e:1f:1e:ba:11:93:fc:5d:ae:11:
0c:aa:51:9f:96:80:ba:90:fd:87:66:5d:b8:58:94:
4b:c9:dc:a6:c2:41:da:6b:04:71:2b:4b:bb:c5:38:
cc:02:f2:48:f4:f6:37:95:07:53:70:0a:36:ef:c8:
1c:f6:c8:fe:03:bb:8c:be:f3:e1:47:da:a5:25:be:
e4:87:7c:f8:63:a3:ce:e5:d3:f9:25:68:65:73:16:
6f:83:cf:00:4f:98:87:ce:66:00:17:b1:97:4a:04:
ca:b8:01:bc:6b:a9:84:47:01:46:98:16:2e:e2:e2:
69:55:d1:f0:77:58:4d:8a:ef:89:c7:79:11:5c:6a:
1f:51:12:67:ef:a1:95:4e:7d:9c:9c:4d:ec:39:61:
d2:6a:ac:7c:06:a0:9b:90:a0:6d:1f:5a:4d:a4:20:
cc:67:cb:e4:16:ce:c8:c1:72:de:42:53:e3:51:1b:
39:fa:a1:30:12:c2:44:c9:64:81:54:b3:a1:9a:7b:
f4:20:45:71:c9:bf:1f:7b:74:ec:f9:d6:d4:11:32:
1d:e8:6f:b2:f6:17:5b:7f:1e:93:17:f9:c6:89:da:
e4:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:4F:5D:5C:D7:D2:14:1D:18:F2:43:CF:47:90:01:6E:EC:68:8C:EA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E2DABF3211F711F08ADEB55A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.46.0/24
Signature Algorithm: sha256WithRSAEncryption
73:26:4c:b9:aa:d1:58:08:8e:13:9a:c7:c5:9a:58:4f:d2:6d:
41:49:ae:00:34:45:87:5f:54:4b:58:7e:36:d8:d5:c7:df:99:
aa:1f:97:8e:74:96:13:e2:91:63:62:5c:8d:3d:24:38:d3:8e:
c0:e2:41:22:93:eb:2f:67:6d:66:70:7f:9c:83:2d:3b:61:a9:
bb:e9:94:19:bb:f9:17:aa:28:5f:29:b3:06:db:e1:b6:9f:2e:
48:b4:50:6f:ef:02:74:70:d1:c2:88:39:e2:16:54:67:58:7e:
c0:c6:96:36:a0:c8:56:7d:24:8c:5a:e5:7f:fd:3a:14:52:26:
61:f6:36:fa:37:dd:9a:80:b5:6e:6a:a4:09:ae:b4:07:e5:3a:
b5:78:ce:e3:02:9c:27:12:1c:54:8b:7c:0d:9e:42:84:b7:43:
c3:34:9c:ba:fc:d7:c3:8b:8e:06:34:12:a8:36:6f:c6:f0:18:
bb:85:5c:be:0c:35:fd:00:c8:63:4b:70:c0:39:63:ef:87:56:
35:9b:75:90:8b:99:ea:16:25:48:f5:2b:db:39:3a:18:4d:b8:
ad:bc:90:d6:39:e0:89:81:b5:29:bf:8d:79:c3:f5:ae:13:df:
81:6c:0e:3a:9c:86:c1:aa:5b:41:44:5a:0e:90:5d:25:2b:54:
cb:7d:c4:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 18:07:35 2025 by rpki-client on console.sobornost.net