Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F66807F0202311F09EA1E87EDAE4EC9C.roa
File: F66807F0202311F09EA1E87EDAE4EC9C.roa (raw, json)
Hash identifier: ZN3vWFqbdqkzUQ/AcryixsxV5t6bBAC7CyuaZeVc8Jw=
Subject key identifier: 78:DA:38:91:2C:46:2D:8C:AF:13:78:EF:C4:DF:6C:67:95:0E:78:42
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014E3C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F66807F0202311F09EA1E87EDAE4EC9C.roa
Signing time: Wed 23 Apr 2025 09:18:48 +0000
ROA not before: Wed 23 Apr 2025 09:18:44 +0000
ROA not after: Fri 02 May 2025 09:18:44 +0000
asID: 5065
IP address blocks: 156.238.0.0/24 maxlen: 24
156.239.17.0/24 maxlen: 24
156.239.20.0/24 maxlen: 24
156.239.138.0/24 maxlen: 24
156.239.139.0/24 maxlen: 24
156.239.140.0/24 maxlen: 24
156.239.142.0/24 maxlen: 24
156.239.143.0/24 maxlen: 24
156.246.86.0/24 maxlen: 24
156.246.100.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 28 Apr 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85564 (0x14e3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 23 09:18:44 2025 GMT
Not After : May 2 09:18:44 2025 GMT
Subject: CN=6808b078-171f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:f6:74:10:f4:f6:17:5e:4c:a2:1d:4d:1c:0b:
0d:32:3b:9c:36:7b:d3:86:ae:17:e3:62:8c:ce:3e:
51:be:18:a1:20:37:69:46:2f:3e:7c:e4:fd:e0:29:
fd:00:fe:7f:2f:09:1a:1f:43:af:5c:a4:4b:27:75:
f4:f2:8f:9e:dc:67:24:5f:87:7b:9d:48:ca:87:29:
b8:95:a7:a9:80:bb:ed:4d:ab:0e:25:dc:a3:92:7f:
8c:18:58:75:4b:fa:22:44:38:cc:de:a0:39:12:7b:
e9:10:43:76:1c:80:86:24:1a:ad:e2:a1:67:5a:3a:
3d:ef:07:e8:0e:04:92:e4:13:00:e4:9f:42:5b:b1:
77:8b:a8:4e:25:36:bc:e7:04:fe:4d:6e:44:23:8d:
80:7a:f7:8a:6e:fb:6e:df:8c:f8:86:48:a9:8c:35:
ab:66:4c:8c:a0:ef:05:f0:78:fa:b0:06:f5:21:6e:
2d:82:64:14:b4:f5:4e:d7:42:53:8b:c4:12:d7:9d:
a5:f1:de:31:ef:84:f9:92:34:c3:33:8b:5b:10:9c:
28:10:cc:a1:8f:24:e3:1a:e8:54:08:b3:33:a7:4e:
1f:fe:2c:4c:64:c0:56:06:83:09:00:46:7d:55:b5:
79:02:74:36:a4:68:0e:39:fa:ea:17:ab:a5:ac:63:
ab:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:DA:38:91:2C:46:2D:8C:AF:13:78:EF:C4:DF:6C:67:95:0E:78:42
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F66807F0202311F09EA1E87EDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.0.0/24
156.239.17.0/24
156.239.20.0/24
156.239.138.0-156.239.140.255
156.239.142.0/23
156.246.86.0/24
156.246.100.0/24
Signature Algorithm: sha256WithRSAEncryption
17:8f:bb:8c:c8:81:ab:7c:86:2a:25:7f:ea:fb:53:33:4d:21:
73:2c:bc:af:49:d6:7a:dd:17:3f:fb:46:2a:7e:7a:26:d3:8e:
40:c8:73:37:70:2e:a9:e3:2f:4e:a1:8e:99:d6:b9:94:ca:c5:
7c:14:7e:02:e8:50:45:f3:db:c7:92:d3:01:49:32:71:69:54:
c2:04:18:e2:44:cc:15:32:88:ca:b0:55:9e:c2:19:c8:f0:a9:
32:01:ab:32:5b:fb:03:5d:08:f8:d3:15:e9:d3:84:a4:82:ae:
f2:d3:68:87:26:52:cb:4c:42:62:63:08:b8:d8:25:d8:65:39:
28:69:a1:07:94:44:8e:95:b1:13:14:a6:db:46:28:05:5e:ce:
e3:d5:a6:c2:26:c8:20:e6:d9:e7:df:18:ee:70:60:9c:1d:2f:
02:c9:2a:ee:c5:cd:24:1d:a6:ec:30:42:13:58:23:ac:6c:0c:
29:87:66:51:53:31:13:74:fd:69:fd:4b:e1:6c:ef:f4:02:77:
de:95:34:90:32:4f:c2:27:fe:74:e6:1f:51:81:b3:3c:7d:c2:
74:c6:4a:c2:fe:59:73:a7:62:3a:7d:58:f9:52:db:09:90:59:
9a:a9:f4:40:d6:c3:c8:8b:b6:6c:46:9f:15:87:6f:12:7d:e7:
2d:c3:c1:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 08:51:29 2025 by rpki-client on console.sobornost.net