Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FD21DF241F5311F091132491DAE4EC9C.roa
File: FD21DF241F5311F091132491DAE4EC9C.roa (raw, json)
Hash identifier: ddjlSdP1SqWlzLYnMvcRWkD20rc1JttIsOY5NmJGvDc=
Subject key identifier: D4:8C:91:AE:96:AB:8B:6B:9C:D7:34:32:C2:2D:57:C0:0D:57:B5:A3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014DEE
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FD21DF241F5311F091132491DAE4EC9C.roa
Signing time: Tue 22 Apr 2025 08:30:04 +0000
ROA not before: Tue 22 Apr 2025 08:29:59 +0000
ROA not after: Thu 01 May 2025 08:29:59 +0000
asID: 39600
IP address blocks: 156.237.108.0/24 maxlen: 24
156.237.109.0/24 maxlen: 24
156.237.110.0/24 maxlen: 24
156.237.111.0/24 maxlen: 24
156.237.112.0/24 maxlen: 24
156.237.113.0/24 maxlen: 24
156.237.114.0/24 maxlen: 24
156.237.115.0/24 maxlen: 24
156.237.116.0/24 maxlen: 24
156.237.117.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 26 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85486 (0x14dee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 22 08:29:59 2025 GMT
Not After : May 1 08:29:59 2025 GMT
Subject: CN=6807538c-8fdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:6e:9f:2b:b3:d8:81:db:3c:6a:d1:8d:1b:29:
b6:c0:f0:47:99:95:24:80:ef:e1:21:b4:9b:f0:98:
76:ea:93:7e:ad:36:13:d1:fb:ad:89:3d:44:f2:05:
d8:84:56:c4:b5:9b:3c:8e:f8:15:91:d8:44:4c:92:
d1:71:32:66:2f:54:bc:07:9c:9e:ce:49:c8:b4:05:
45:d5:04:b8:8b:ad:4c:a8:dd:19:73:8a:63:3c:b1:
db:75:ac:dc:18:d0:78:b1:eb:e6:ed:67:af:d9:fd:
48:7e:fd:36:c1:79:62:f1:d2:3d:e9:de:57:db:a1:
f1:3b:1d:00:44:b7:38:14:5c:8d:f7:d5:dd:fb:57:
22:71:54:ba:1b:32:99:b8:92:d8:0f:eb:39:72:7b:
5c:f1:af:22:b9:8c:93:49:31:00:f8:37:a7:27:f0:
a9:77:99:36:3a:46:4e:58:9b:d8:f1:51:b0:29:3c:
58:fe:04:cd:6f:f3:07:3e:7a:43:b5:34:78:ac:81:
69:a9:6b:86:70:f9:15:7e:b2:3c:91:c5:ac:67:b9:
54:4f:5c:43:93:9f:cd:d2:8f:c0:21:6d:62:94:34:
df:a0:23:0b:12:b8:20:36:4c:05:56:60:7b:a6:3e:
5d:4f:11:0b:ed:1f:9f:00:f6:ab:b7:82:e2:4a:e1:
77:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:8C:91:AE:96:AB:8B:6B:9C:D7:34:32:C2:2D:57:C0:0D:57:B5:A3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FD21DF241F5311F091132491DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.237.108.0-156.237.117.255
Signature Algorithm: sha256WithRSAEncryption
72:0f:0b:18:6d:69:f6:72:2a:a2:bf:ab:be:38:ab:b7:ab:f0:
9e:a8:65:a9:dd:80:a3:ad:88:0a:ec:c5:a7:1d:82:24:2c:6c:
d8:b3:e8:44:76:1e:75:7b:9c:88:74:ac:7e:46:7a:29:32:5e:
31:d8:a0:08:30:af:d7:d6:1e:3e:15:7d:c1:df:2d:74:09:34:
99:c5:f0:9e:a4:34:18:3e:c0:5f:8d:3b:ae:2f:97:d3:f5:6a:
8f:23:97:dd:f9:fc:c4:88:05:63:8a:b1:b3:9f:82:51:74:66:
51:dd:f2:b7:ad:35:ee:8d:ab:ae:8e:cd:43:32:f5:6c:da:7a:
b9:f8:a1:3b:a2:ba:90:65:b9:d5:4b:1d:a8:21:d9:f1:d9:b3:
c5:83:29:95:0f:17:f1:52:f8:94:96:38:07:c0:6d:19:41:c9:
b6:90:76:c5:1b:f2:9f:b4:d3:9f:80:d9:c9:63:85:79:0b:85:
a4:d0:19:cf:65:1a:15:5a:b6:b4:66:c0:5d:50:8f:e3:71:98:
bb:23:00:fd:00:8c:9d:6a:9c:9e:7b:cc:66:72:00:89:17:b5:
ac:08:21:33:4d:81:0a:66:4b:ac:dd:f3:e0:d9:43:3d:bc:20:
05:d0:57:1a:d6:68:8a:b6:20:bc:5f:13:f6:e6:af:11:c3:1f:
87:c1:77:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 18:07:53 2025 by rpki-client on console.sobornost.net