Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F0F7BC0213EE11F0BBF8AEB9762E951A.roa
File: F0F7BC0213EE11F0BBF8AEB9762E951A.roa (raw, json)
Hash identifier: Y+LXxdgTRKLflCpNrr58hMFaho0lIuXqC31EKlVMtD8=
Subject key identifier: 90:4D:D9:94:C8:35:A8:E8:59:C6:4F:B3:90:15:9E:D2:70:65:83:34
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014AB6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F0F7BC0213EE11F0BBF8AEB9762E951A.roa
Signing time: Mon 07 Apr 2025 20:29:01 +0000
ROA not before: Mon 07 Apr 2025 20:28:57 +0000
ROA not after: Sun 08 Jun 2025 20:28:57 +0000
asID: 215691
IP address blocks: 45.198.54.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 29 Apr 2025 00:26:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84662 (0x14ab6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 7 20:28:57 2025 GMT
Not After : Jun 8 20:28:57 2025 GMT
Subject: CN=67f4358d-2efb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d1:ea:59:af:f8:a0:0c:2e:48:4c:b8:d2:a0:
13:3b:cc:74:50:50:e1:7d:1b:39:47:70:f6:cc:ba:
87:16:25:03:bb:d9:4b:6e:19:0e:0f:b8:a2:79:85:
5f:9d:1e:fc:30:22:57:e2:5e:84:f1:d3:47:e6:e3:
2b:42:6f:42:17:8b:27:5e:6e:cc:0b:8a:02:36:8d:
24:9c:22:5c:9b:06:78:25:3a:ba:b3:5e:22:b6:ab:
3e:a0:1d:fd:16:b3:81:aa:56:10:7d:60:8e:80:22:
7b:db:6e:b3:0b:16:d4:0b:d9:6e:be:58:01:1d:91:
df:51:0f:6d:0c:83:80:49:22:73:7f:97:b5:22:24:
bb:07:69:9d:a7:06:23:3b:3b:b4:25:45:e4:4a:cf:
51:05:74:13:42:e0:b5:82:8b:e4:63:12:91:ca:a0:
43:ca:d6:8a:d0:f3:b1:32:18:a9:6a:be:41:d8:d9:
87:12:6b:6c:c3:32:c3:fc:e5:e3:6a:18:15:7c:4f:
ac:6c:be:f1:76:82:05:9c:b6:0e:41:d9:70:e1:41:
fe:66:21:60:dd:88:fa:cf:33:a4:9d:a5:e8:55:78:
27:4b:e3:02:a9:6e:33:d4:83:ba:bc:90:6e:ce:01:
8c:11:27:cf:50:56:af:3d:31:1f:6a:0e:0f:e8:90:
36:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:4D:D9:94:C8:35:A8:E8:59:C6:4F:B3:90:15:9E:D2:70:65:83:34
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F0F7BC0213EE11F0BBF8AEB9762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.54.0/24
Signature Algorithm: sha256WithRSAEncryption
11:a5:ee:b3:d3:8b:a4:17:8b:cf:65:e7:14:10:88:37:c5:30:
69:bc:0c:5c:96:f4:0b:51:43:fb:0f:df:40:1d:6d:c2:20:0b:
87:ad:bf:81:be:6d:dc:df:d1:46:44:51:ed:94:04:a6:fe:f9:
bf:fc:e2:c1:bf:00:6e:2c:66:1f:b1:81:cf:e4:80:87:ee:eb:
25:66:66:31:88:21:68:ca:0b:e4:20:42:1f:50:3e:3d:dc:18:
61:a5:5e:e7:70:ed:b3:d3:61:b2:0d:f5:03:6a:89:cb:67:8a:
54:b6:84:ba:ca:7a:40:2a:33:0d:49:bf:6b:2b:47:94:7a:f4:
c4:6d:2c:79:eb:f6:a5:63:8d:93:a5:1f:08:46:a1:ea:78:74:
25:d7:29:f8:26:52:9f:55:41:87:fd:94:48:c0:ba:87:55:c1:
e4:7f:68:98:96:46:99:f8:07:81:5e:13:88:5d:c2:e9:7e:fc:
3c:6b:a3:b7:50:9b:80:66:e4:16:cd:93:6c:3b:34:a3:cb:cf:
14:5b:5d:09:a2:dc:e2:c6:90:ad:bf:83:95:c3:0d:04:43:22:
41:ca:d7:13:d1:cc:cd:a3:cb:6a:5b:15:78:5d:1b:3f:59:14:
2e:f0:ea:bf:df:6c:aa:21:2a:b2:9a:8e:8c:ad:23:b3:42:dd:
5d:e6:e3:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 14:56:17 2025 by rpki-client on console.sobornost.net