Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F8DB006E1A0611F0A34A3FBD6DB8BCC6.roa
File: F8DB006E1A0611F0A34A3FBD6DB8BCC6.roa (raw, json)
Hash identifier: F51uCRBY21k1N4LlosdM5YNYVzmnQehmWw7ZXswXaL0=
Subject key identifier: 1A:5C:3F:1E:AE:2B:AE:51:57:DA:31:81:7E:A8:89:9B:AD:05:C9:01
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014C74
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F8DB006E1A0611F0A34A3FBD6DB8BCC6.roa
Signing time: Tue 15 Apr 2025 14:36:10 +0000
ROA not before: Tue 15 Apr 2025 14:36:05 +0000
ROA not after: Thu 22 May 2025 14:36:05 +0000
asID: 213993
IP address blocks: 156.253.239.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 30 Apr 2025 00:26:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85108 (0x14c74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 15 14:36:05 2025 GMT
Not After : May 22 14:36:05 2025 GMT
Subject: CN=67fe6eda-52d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:5b:b9:1e:c5:4a:8d:15:0f:19:8a:12:53:31:
4c:44:69:9b:c3:c7:af:05:73:66:8d:c5:a1:d8:c6:
d1:40:1d:f2:44:83:9c:1f:5f:fb:85:3c:49:ea:96:
9a:eb:4f:39:2d:c1:ca:1b:45:16:8b:10:2d:87:00:
c5:02:d9:b1:0d:3c:8a:40:9c:e1:0e:c3:46:be:e0:
c7:d5:31:15:8f:19:5f:30:84:86:c4:df:4f:38:bf:
4c:e0:58:80:66:10:e9:5c:3e:5e:46:1a:94:03:dc:
2c:29:47:05:d6:67:40:65:44:93:0d:65:3b:5a:05:
ac:a2:21:64:d6:a5:4a:a8:7e:a6:81:ae:48:8c:e2:
e5:17:f1:81:44:be:0f:69:d0:04:9f:f2:01:2b:da:
cb:09:32:4f:23:93:58:ee:fc:16:91:6e:f6:2c:e9:
49:14:df:08:6c:65:c8:79:60:3c:78:50:6a:ad:2f:
4a:43:bb:66:d1:52:a7:97:a1:97:0f:37:16:c7:ff:
97:ee:56:96:a8:51:6b:9b:1b:35:01:2d:fb:e2:af:
04:77:81:ac:3f:57:45:0d:dc:c8:12:a3:ac:c9:74:
ff:f5:cd:be:09:cd:93:e4:11:27:db:9b:45:d2:33:
59:86:2e:d0:b9:92:be:fa:98:57:62:a7:fc:c1:91:
ba:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:5C:3F:1E:AE:2B:AE:51:57:DA:31:81:7E:A8:89:9B:AD:05:C9:01
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F8DB006E1A0611F0A34A3FBD6DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.253.239.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:a8:29:73:79:8f:3d:f4:25:fc:53:57:65:dc:df:6b:40:69:
03:89:e6:ff:37:fa:5e:b0:78:55:17:ea:0e:16:86:06:2b:dc:
0a:9f:81:8e:a1:16:35:05:dc:e3:d9:52:96:a5:11:bf:ec:3e:
b3:68:e4:d8:9c:44:ba:40:03:e8:cb:7d:1d:84:25:2a:eb:4b:
33:a6:44:23:7e:af:30:07:eb:6d:7b:6d:c4:20:e9:9e:5a:d2:
2d:2e:b0:a8:cb:88:2d:ae:df:48:b3:4e:22:4c:df:62:de:8d:
2d:86:37:ca:63:02:78:85:5d:9a:43:a2:be:43:d9:1e:13:9f:
39:da:78:8d:e7:d0:d2:f1:27:c0:61:f7:3b:57:64:32:bc:4c:
cb:7c:86:f5:59:54:de:4e:f0:85:90:7d:e8:86:2b:42:35:73:
7c:48:73:0b:1c:d5:ef:23:28:37:fc:76:da:42:10:1f:04:13:
ab:30:59:9f:17:af:a6:d6:2b:58:4f:9c:bd:56:27:65:09:38:
f9:56:01:76:61:42:88:18:8f:eb:68:1b:b0:e3:a8:10:0b:74:
29:17:c7:3d:21:54:55:7b:d2:3d:f5:97:6b:9b:8e:67:70:96:
41:fa:80:54:fc:06:fe:4e:8d:28:0b:04:a8:65:08:59:c4:6e:
89:cd:c3:51
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAUx0MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNDE1MTQzNjA1WhcNMjUwNTIyMTQzNjA1WjAYMRYw
FAYDVQQDEw02N2ZlNmVkYS01MmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0lu5HsVKjRUPGYoSUzFMRGmbw8evBXNmjcWh2MbRQB3yRIOcH1/7hTxJ
6paa6085LcHKG0UWixAthwDFAtmxDTyKQJzhDsNGvuDH1TEVjxlfMISGxN9POL9M
4FiAZhDpXD5eRhqUA9wsKUcF1mdAZUSTDWU7WgWsoiFk1qVKqH6mga5IjOLlF/GB
RL4PadAEn/IBK9rLCTJPI5NY7vwWkW72LOlJFN8IbGXIeWA8eFBqrS9KQ7tm0VKn
l6GXDzcWx/+X7laWqFFrmxs1AS374q8Ed4GsP1dFDdzIEqOsyXT/9c2+Cc2T5BEn
25tF0jNZhi7QuZK++phXYqf8wZG6HwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFBpc
Px6uK65RV9oxgX6oiZutBckBMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9GOERCMDA2RTFBMDYxMUYwQTM0QTNGQkQ2REI4QkNDNi5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnP3vMA0GCSqGSIb3DQEBCwUA
A4IBAQC3qClzeY899CX8U1dl3N9rQGkDieb/N/pesHhVF+oOFoYGK9wKn4GOoRY1
Bdzj2VKWpRG/7D6zaOTYnES6QAPoy30dhCUq60szpkQjfq8wB+tte23EIOmeWtIt
LrCoy4gtrt9Is04iTN9i3o0thjfKYwJ4hV2aQ6K+Q9keE5852niN59DS8SfAYfc7
V2QyvEzLfIb1WVTeTvCFkH3ohitCNXN8SHMLHNXvIyg3/HbaQhAfBBOrMFmfF6+m
1itYT5y9VidlCTj5VgF2YUKIGI/raBuw46gQC3QpF8c9IVRVe9I99Zdrm45ncJZB
+oBU/Ab+To0oCwSoZQhZxG6JzcNR
-----END CERTIFICATE-----
Generated at Mon Apr 28 23:03:51 2025 by rpki-client on console.sobornost.net