Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/037E04C6437E11F086750BB1DAE4EC9C.roa
File: 037E04C6437E11F086750BB1DAE4EC9C.roa (raw, json)
Hash identifier: n/yvLBHGJtc+wf/uGuh/7FnjsaUp94zLDN5JcsGXDQ8=
Subject key identifier: 13:AE:D9:E0:E2:04:A1:03:8C:08:66:A9:AF:AC:89:1B:7F:14:3D:76
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015A1E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/037E04C6437E11F086750BB1DAE4EC9C.roa
Signing time: Sat 07 Jun 2025 09:01:35 +0000
ROA not before: Sat 07 Jun 2025 09:01:31 +0000
ROA not after: Wed 18 Jun 2025 09:01:31 +0000
asID: 138985
IP address blocks: 156.238.81.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 18 Jun 2025 09:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88606 (0x15a1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 7 09:01:31 2025 GMT
Not After : Jun 18 09:01:31 2025 GMT
Subject: CN=6843ffef-4ff0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:72:7e:3b:c8:ff:b6:40:c7:14:d3:d2:45:8d:
9f:80:84:13:91:22:65:27:8a:9f:83:e1:71:73:3e:
ec:a2:23:4a:b4:ae:2a:5b:62:0f:04:a7:1b:6a:0c:
c3:88:d7:3a:37:ad:ee:63:2f:0e:00:bd:03:6c:9c:
a2:90:ed:52:0e:68:9b:a6:ed:9a:4a:73:4c:48:31:
d9:89:15:f7:57:2e:d2:6b:dc:ed:78:ee:81:67:6f:
e4:2c:62:a9:a4:78:30:a5:dc:b4:81:a9:80:c5:10:
fe:4c:d7:ae:26:0e:9b:15:87:1a:2d:3e:61:c3:1a:
2d:64:ba:e4:56:a7:e4:b2:6f:c7:e2:c2:78:1d:6e:
a6:df:5d:06:4f:e0:2c:99:19:6f:a7:07:2d:66:a4:
3c:1f:a3:97:0d:83:7c:41:ac:59:ed:11:92:8c:67:
2a:d6:15:20:93:c2:39:62:04:21:43:35:ee:9b:5c:
30:00:62:be:22:7f:38:50:06:ab:3f:83:fa:0d:3a:
1e:00:c6:30:f7:b9:59:75:b3:c2:b4:1b:fa:10:e9:
db:ce:d7:cd:bb:e2:fe:a2:94:37:18:10:73:8d:8d:
ef:07:7e:12:5f:98:99:ba:15:ce:23:62:21:0f:3a:
f2:b2:5b:a1:b2:0c:e6:eb:dd:10:98:aa:e5:de:dc:
8b:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:AE:D9:E0:E2:04:A1:03:8C:08:66:A9:AF:AC:89:1B:7F:14:3D:76
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/037E04C6437E11F086750BB1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.81.0/24
Signature Algorithm: sha256WithRSAEncryption
37:55:61:e4:03:a5:71:9b:83:04:ab:0b:11:91:dc:69:07:c4:
07:3d:56:a8:87:1a:04:1f:66:6f:ff:01:41:1b:cc:0f:ec:10:
4f:77:37:ed:4e:e6:39:d3:55:30:08:cc:a5:b5:85:cf:66:b0:
05:f5:5c:b8:f0:bf:76:1d:29:0f:77:73:60:48:4c:91:23:bd:
e1:8e:f4:a5:9f:5e:ca:5d:10:c8:d4:45:17:4f:35:04:54:c8:
d5:83:7d:3b:4e:87:04:0e:6f:bb:16:bb:9b:de:0d:7e:6c:54:
f2:6a:ba:80:d3:3f:5d:46:6a:72:94:27:86:e3:55:df:ca:6e:
e8:88:17:ab:f0:4a:ef:fe:a2:81:ab:10:49:e7:14:7d:dd:7e:
99:75:4c:20:a6:e6:74:ac:e9:58:57:a0:60:d6:9e:0b:9e:61:
28:e2:e4:d4:fc:63:b4:9c:f1:9c:4a:69:88:f6:69:96:9d:ad:
70:c4:9d:ac:66:bd:cd:21:95:0b:ec:72:df:e5:ac:21:48:2d:
01:86:bb:db:e7:cb:39:6a:a6:d2:6e:ef:9c:0c:c4:d9:a0:76:
d3:55:76:de:10:61:9c:65:bd:da:61:a5:2e:3d:c0:fe:7b:aa:
d6:05:bc:c7:30:94:5a:b9:bd:72:92:2b:4f:97:23:4e:b5:d3:
ba:e6:e4:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 22:13:20 2025 by rpki-client