Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FB43B036151911F08BE2F6D36DB8BCC6.roa
File: FB43B036151911F08BE2F6D36DB8BCC6.roa (raw, json)
Hash identifier: qdEp0a7TMEZGFGVJWOKGCAeJhmCCH/+7MyFGRIxCOsg=
Subject key identifier: C3:7D:18:2F:76:C2:1B:7B:7D:D4:06:9C:C3:32:6F:23:FF:F9:32:61
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014B26
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FB43B036151911F08BE2F6D36DB8BCC6.roa
Signing time: Wed 09 Apr 2025 08:09:38 +0000
ROA not before: Wed 09 Apr 2025 08:09:34 +0000
ROA not after: Fri 17 Apr 2026 08:09:34 +0000
asID: 46071
IP address blocks: 156.238.17.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 28 Apr 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84774 (0x14b26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 9 08:09:34 2025 GMT
Not After : Apr 17 08:09:34 2026 GMT
Subject: CN=67f62b42-ab7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:69:33:0e:a8:de:27:a4:2b:d7:11:b1:03:31:
7b:79:d1:04:74:73:28:c7:29:d8:57:d6:fd:17:d6:
21:35:28:c2:39:74:69:3a:b1:fa:25:16:6d:46:04:
aa:ba:83:54:10:ba:a7:34:25:a3:9a:d9:d8:fc:fd:
8f:d1:73:bf:8c:8e:8d:67:fd:85:76:ab:59:6d:53:
32:75:83:9d:42:da:72:a7:ba:37:6e:7e:9d:59:35:
e6:64:4b:06:6e:27:86:52:19:7b:ca:c4:90:e0:2a:
1c:7a:42:20:ce:d4:d8:b4:97:9f:8d:9b:ee:ba:2d:
d1:4d:54:f8:d6:8d:8d:42:e5:23:1a:41:07:cd:61:
25:42:68:3d:1b:48:7b:09:55:bc:0b:69:dd:c9:19:
f1:1c:68:03:0b:e7:cd:ec:52:f7:c2:c5:39:48:08:
8f:12:39:27:1f:ec:5a:52:7a:48:6b:b1:fa:78:d9:
91:23:d3:0f:b2:a1:e6:43:19:c2:cf:8d:a3:db:be:
85:5c:73:3d:6e:af:94:ca:3d:5e:af:44:29:ef:e3:
f6:ed:9a:bc:2c:e5:86:9e:2b:df:f8:36:8b:3c:b9:
9b:09:88:1f:5c:de:c0:86:e2:d5:be:08:15:5b:4d:
bc:fd:b6:58:cf:7b:01:1d:df:4d:df:77:1e:de:91:
72:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:7D:18:2F:76:C2:1B:7B:7D:D4:06:9C:C3:32:6F:23:FF:F9:32:61
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FB43B036151911F08BE2F6D36DB8BCC6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.17.0/24
Signature Algorithm: sha256WithRSAEncryption
95:2f:c5:0f:b1:a4:00:57:09:5b:e4:41:47:f1:f7:94:d7:bd:
fa:e4:90:0c:c8:bf:92:8c:0d:60:d6:d0:be:d8:3d:37:16:1a:
5f:e8:80:6c:3d:8c:56:8d:e5:b7:91:54:0f:c6:53:46:cf:e4:
3a:13:e3:93:72:1b:67:0f:96:6d:6f:07:90:ab:29:f7:60:10:
6d:96:aa:34:72:cf:74:db:0c:59:91:fb:c1:d1:25:ca:09:2a:
8b:a9:b8:d8:af:7f:38:bf:ca:66:e9:7c:23:3b:18:93:fb:ac:
ca:9a:93:f6:d3:fe:df:47:21:8a:8b:de:68:f3:bd:2f:a6:e3:
59:f7:b9:24:4b:8c:9b:f9:ba:88:76:16:87:74:88:9e:ed:e0:
b8:db:0c:f1:3a:ea:0a:f0:1c:57:26:e4:26:45:51:a6:5a:da:
66:3e:b5:4f:86:f5:8c:c1:4f:47:49:0e:23:c3:6f:6b:6f:ff:
23:94:00:79:a0:03:b8:d2:ba:cb:ea:c0:c3:74:63:7a:3e:49:
cc:ce:80:bc:9c:30:11:98:27:95:62:d0:e5:e5:88:6f:ff:b9:
ad:00:06:38:ed:8a:c9:c1:6c:28:49:6c:69:4c:61:15:fc:fd:
81:e0:e7:88:c3:8f:85:05:03:1b:16:92:46:2c:20:a4:95:d9:
80:bf:6d:98
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAUsmMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNDA5MDgwOTM0WhcNMjYwNDE3MDgwOTM0WjAYMRYw
FAYDVQQDEw02N2Y2MmI0Mi1hYjdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEArGkzDqjeJ6Qr1xGxAzF7edEEdHMoxynYV9b9F9YhNSjCOXRpOrH6JRZt
RgSquoNUELqnNCWjmtnY/P2P0XO/jI6NZ/2FdqtZbVMydYOdQtpyp7o3bn6dWTXm
ZEsGbieGUhl7ysSQ4CocekIgztTYtJefjZvuui3RTVT41o2NQuUjGkEHzWElQmg9
G0h7CVW8C2ndyRnxHGgDC+fN7FL3wsU5SAiPEjknH+xaUnpIa7H6eNmRI9MPsqHm
QxnCz42j276FXHM9bq+Uyj1er0Qp7+P27Zq8LOWGnivf+DaLPLmbCYgfXN7AhuLV
vggVW028/bZYz3sBHd9N33ce3pFyVQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFMN9
GC92wht7fdQGnMMybyP/+TJhMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9GQjQzQjAzNjE1MTkxMUYwOEJFMkY2RDM2REI4QkNDNi5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnO4RMA0GCSqGSIb3DQEBCwUA
A4IBAQCVL8UPsaQAVwlb5EFH8feU17365JAMyL+SjA1g1tC+2D03Fhpf6IBsPYxW
jeW3kVQPxlNGz+Q6E+OTchtnD5ZtbweQqyn3YBBtlqo0cs902wxZkfvB0SXKCSqL
qbjYr384v8pm6XwjOxiT+6zKmpP20/7fRyGKi95o870vpuNZ97kkS4yb+bqIdhaH
dIie7eC42wzxOuoK8BxXJuQmRVGmWtpmPrVPhvWMwU9HSQ4jw29rb/8jlAB5oAO4
0rrL6sDDdGN6PknMzoC8nDARmCeVYtDl5Yhv/7mtAAY47YrJwWwoSWxpTGEV/P2B
4OeIw4+FBQMbFpJGLCCkldmAv22Y
-----END CERTIFICATE-----
Generated at Sat Apr 26 08:51:31 2025 by rpki-client on console.sobornost.net