Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E607533614EB11F08C6E191D6EB8BCC6.roa
File: E607533614EB11F08C6E191D6EB8BCC6.roa (raw, json)
Hash identifier: +jzA8sAJ8jmVXGILzwYpKKJLpm8Q/kyHldSzoxINve8=
Subject key identifier: 0F:58:10:BB:B8:28:97:DA:B5:1C:20:8B:22:90:26:D0:07:F5:01:CC
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014B00
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E607533614EB11F08C6E191D6EB8BCC6.roa
Signing time: Wed 09 Apr 2025 02:39:46 +0000
ROA not before: Wed 09 Apr 2025 02:39:42 +0000
ROA not after: Tue 29 Apr 2025 02:39:42 +0000
asID: 20473
IP address blocks: 45.195.137.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84736 (0x14b00)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 9 02:39:42 2025 GMT
Not After : Apr 29 02:39:42 2025 GMT
Subject: CN=67f5ddf2-8cb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:d9:b9:7a:83:1c:f4:82:c3:d0:f6:e9:50:36:
dc:0e:02:5f:2a:16:a1:76:29:98:32:06:ad:1e:d7:
4c:ba:b6:c0:3c:f4:0f:1a:3b:39:13:8c:d7:b7:c5:
9e:2f:ba:78:95:78:82:1c:01:05:cd:70:17:bf:49:
1f:ab:81:ef:9d:d1:43:c9:38:58:bf:98:e0:c7:96:
a6:84:bc:58:48:ee:fc:46:b6:ca:1d:1a:77:11:88:
64:26:05:bb:23:f9:de:72:42:d0:03:ea:ae:62:43:
aa:a8:d2:9e:71:3e:94:dc:3f:4a:fc:c1:f4:ed:c4:
4c:64:5d:4b:f4:16:a5:0b:8a:52:a7:6e:95:e4:6d:
45:66:97:78:8c:f6:14:aa:9a:54:41:27:40:82:f4:
a2:4a:d4:f0:b7:c7:35:2a:f5:f1:9b:70:1d:be:01:
1e:20:13:e8:11:a5:15:82:84:66:ce:95:c3:62:cd:
74:53:3a:49:89:e4:15:c4:ce:f5:42:58:b2:e8:9d:
c5:4b:76:7d:1c:1d:cf:14:e6:ed:a0:54:be:34:27:
fc:3c:d5:41:fd:1c:95:df:3c:5b:90:69:e8:22:13:
86:f3:77:a0:cb:0a:1a:23:d3:2d:e9:be:d9:7b:b0:
9b:f2:62:a9:15:19:01:b1:41:5e:2c:66:8c:95:98:
e0:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:58:10:BB:B8:28:97:DA:B5:1C:20:8B:22:90:26:D0:07:F5:01:CC
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E607533614EB11F08C6E191D6EB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.137.0/24
Signature Algorithm: sha256WithRSAEncryption
83:79:f3:99:5c:46:3d:89:d7:b2:08:09:c4:1a:ab:81:a3:00:
72:f0:37:5b:91:02:6d:28:8d:af:bf:86:97:1e:ae:e6:d3:2f:
1f:79:fd:50:79:5f:7e:a9:71:59:7d:c8:e6:d9:55:d2:4d:dd:
48:3b:96:56:ae:8d:01:a2:3c:34:56:ab:ae:8a:3e:db:f5:a3:
dd:3c:01:fd:b3:b3:6a:36:7d:93:dd:e3:20:59:0d:d2:9b:a6:
da:74:72:48:d5:d9:ce:5e:5e:8b:e8:ca:c3:1b:67:78:18:5e:
dd:7f:fb:88:82:91:10:51:6e:06:2b:fd:2b:62:37:36:5a:1b:
b0:6a:df:a4:4c:fd:76:37:5b:c0:fe:c3:2c:a3:6c:d6:75:b6:
31:98:ae:31:e1:ac:88:b1:35:b0:0e:bc:0a:b3:c5:86:7b:27:
66:03:1a:03:8b:60:ec:dc:b0:ba:45:3c:d4:2d:eb:89:78:b5:
60:16:c9:07:27:f7:2d:18:97:42:1c:07:d8:2b:a2:9a:1a:26:
87:6c:48:9c:18:c8:2e:f2:9d:17:8b:73:53:7f:a3:72:a9:ce:
53:b1:11:0d:16:98:4a:c0:1f:22:77:07:1d:ad:2e:59:7a:1e:
1e:05:8d:dd:60:f2:19:6d:46:26:7b:95:41:b6:e2:f3:5f:bd:
a6:24:2d:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 18:07:37 2025 by rpki-client on console.sobornost.net