Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F205174AC96E11EFB1406078762E951A.roa
File: F205174AC96E11EFB1406078762E951A.roa (raw, json)
Hash identifier: HkGWLTD+U7aG4wQNm1a6I5qMbA8bgPRae8UKQ9+T3Ac=
Subject key identifier: 4E:90:88:92:AA:39:54:D0:94:9F:D9:76:7B:1E:06:63:09:D8:0C:43
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: F4A1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F205174AC96E11EFB1406078762E951A.roa
Signing time: Fri 03 Jan 2025 01:06:22 +0000
ROA not before: Fri 03 Jan 2025 01:06:18 +0000
ROA not after: Mon 13 Dec 2027 01:06:18 +0000
asID: 17561
IP address blocks: 156.227.66.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 29 Apr 2025 00:26:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62625 (0xf4a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jan 3 01:06:18 2025 GMT
Not After : Dec 13 01:06:18 2027 GMT
Subject: CN=6777380d-d426
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:93:9a:34:d6:14:30:d6:5a:c7:8c:b2:91:c8:
3d:83:de:10:19:71:a5:b6:8e:34:db:d2:85:e4:1a:
dc:8b:f4:64:4f:2c:24:cd:4d:04:83:2e:a6:7e:0b:
e5:47:05:1b:1c:9f:ee:4b:7f:27:2f:ca:d3:cb:05:
a0:23:5f:d8:9c:54:5e:d7:6f:fd:a1:df:d2:a1:9c:
55:f1:20:fb:ca:f0:45:da:a0:b5:56:c7:13:34:f0:
30:78:30:35:b5:83:c6:be:c6:4d:56:04:d7:79:2e:
86:c6:77:65:d2:e3:be:0f:14:7b:f0:9d:57:3d:9b:
3b:99:7c:1b:56:07:98:b6:96:ef:43:5e:75:52:96:
47:75:a8:b0:09:b0:35:74:83:d3:71:b3:3b:95:c1:
15:26:2b:8b:f7:f9:3f:5b:d7:38:41:0c:b1:38:9b:
d8:fe:16:96:57:8a:20:65:86:71:19:74:e0:2b:00:
c1:cc:a6:01:9b:94:51:c5:a5:66:8e:8e:a9:57:ed:
16:83:0e:62:b6:b0:50:80:b4:dd:1f:89:e9:4e:60:
33:c2:c0:28:89:32:ea:23:49:41:61:02:29:4f:92:
ed:67:bb:53:28:7b:df:6a:e6:d9:c6:7a:1f:35:5c:
c2:01:46:46:4f:5c:fd:fd:1a:07:ee:6b:f5:20:7e:
a8:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:90:88:92:AA:39:54:D0:94:9F:D9:76:7B:1E:06:63:09:D8:0C:43
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F205174AC96E11EFB1406078762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.66.0/24
Signature Algorithm: sha256WithRSAEncryption
53:b0:d8:dc:49:68:96:d6:dd:3d:97:d6:0f:30:f9:93:cb:d2:
75:27:66:c3:35:3d:8d:38:1e:76:e0:9f:e5:b2:73:a1:92:27:
b6:57:51:2e:b6:61:97:0d:21:95:6b:c8:37:39:54:94:79:d7:
99:72:18:9a:82:13:13:2c:6b:2e:6d:d3:d1:e0:12:b9:77:c0:
1e:a1:10:e9:20:57:92:2f:47:b4:27:73:d7:79:35:88:dc:e8:
28:39:50:eb:3a:3a:d9:ad:95:b7:2a:36:aa:49:4e:b4:52:4d:
7e:38:57:c0:96:fc:7d:3b:49:a6:a8:7f:c3:9a:de:a4:1e:b4:
9a:98:cc:84:b9:61:14:45:68:ad:38:55:7a:42:8b:b9:67:63:
23:66:ac:c2:1c:19:bc:99:bf:b7:09:3b:f5:86:35:2d:75:13:
6c:71:5b:38:87:c5:43:ef:7f:5d:f9:a1:80:66:39:7c:4c:5d:
0b:bd:ef:a0:7f:d3:e7:f1:ee:1a:d6:ca:b1:51:f7:af:89:f7:
ad:5c:a5:1b:f0:83:ae:00:6a:a4:77:6f:26:f1:99:58:94:d0:
e9:01:b7:cf:6b:61:6f:34:66:64:ab:c4:08:67:7b:1b:b7:cb:
90:f4:57:1b:7c:b3:c2:71:7d:bc:2d:6d:04:28:69:dc:11:8d:
ea:42:bd:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 14:56:17 2025 by rpki-client on console.sobornost.net