Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/58EBE65249D311F09C500BF1DAE4EC9C.roa
File: 58EBE65249D311F09C500BF1DAE4EC9C.roa (raw, json)
Hash identifier: 6U2/0/+LMo4zZCPEpC9WcMtM42STUI6R6kKFatgyYsk=
Subject key identifier: A4:74:4B:A2:D8:3C:9D:61:9E:36:9E:08:45:57:C3:33:DF:C2:9E:4D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015C44
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/58EBE65249D311F09C500BF1DAE4EC9C.roa
Signing time: Sun 15 Jun 2025 10:27:33 +0000
ROA not before: Sun 15 Jun 2025 10:27:28 +0000
ROA not after: Wed 25 Jun 2025 10:27:28 +0000
asID: 131471
IP address blocks: 156.238.64.0/24 maxlen: 24
156.238.65.0/24 maxlen: 24
156.238.66.0/24 maxlen: 24
156.238.67.0/24 maxlen: 24
156.238.68.0/24 maxlen: 24
156.238.69.0/24 maxlen: 24
156.238.70.0/24 maxlen: 24
156.238.71.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 19 Jun 2025 00:26:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89156 (0x15c44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 15 10:27:28 2025 GMT
Not After : Jun 25 10:27:28 2025 GMT
Subject: CN=684ea015-35b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:2d:fa:f0:b7:ad:88:45:3b:a5:94:2d:59:4c:
ff:13:31:0b:df:a0:dd:ba:da:b6:db:fc:ed:40:8c:
53:c5:ba:75:45:b5:82:d1:71:1e:8b:3e:17:42:e0:
1c:47:c5:8d:e0:04:fb:fa:cb:4b:c7:03:9c:07:ec:
91:a4:21:64:3e:22:19:04:a1:d7:ea:da:16:42:92:
c6:49:34:81:a7:6b:29:09:af:9d:49:6d:89:1f:aa:
ee:e3:ab:7e:dd:c6:9d:0d:22:6b:62:75:65:b4:75:
dc:fa:97:36:6b:e1:28:ab:60:2c:ba:51:22:d1:1b:
03:02:ea:bf:2a:d6:2e:48:d2:2a:10:5d:49:91:05:
22:47:d3:d7:38:ce:d9:50:b8:37:25:f4:df:ee:f3:
f6:2b:9f:05:81:c7:da:43:c4:66:80:43:58:3b:03:
79:75:68:9a:6b:8f:4f:d1:c8:e0:12:6a:75:03:d4:
b0:73:36:42:51:9a:f2:a4:1b:22:e6:f3:0b:8e:af:
9a:9d:a1:34:ce:5e:79:84:f2:fb:45:ba:d4:7c:05:
13:46:a6:3e:4c:ca:0e:a4:d7:df:f7:78:02:a1:2d:
8d:74:f0:82:d8:c5:94:ba:78:37:f8:6c:16:0f:7f:
d5:27:65:3d:b6:48:6d:eb:71:a4:df:c6:11:f0:43:
e8:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:74:4B:A2:D8:3C:9D:61:9E:36:9E:08:45:57:C3:33:DF:C2:9E:4D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/58EBE65249D311F09C500BF1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.64.0/21
Signature Algorithm: sha256WithRSAEncryption
81:f1:7e:c1:53:81:4a:b0:84:d6:3f:3d:ac:03:55:7f:c3:ba:
2a:b6:53:b5:fc:be:78:01:9e:4b:72:c3:13:68:54:2b:b9:68:
c7:f9:13:f4:f6:ee:1e:80:a4:d4:15:6e:b4:b3:68:0f:fc:ba:
ed:e4:16:ea:46:ed:b5:94:3f:2e:5e:0e:48:8a:37:71:0b:3f:
bc:17:ed:3f:3f:23:7d:8d:c9:7b:1f:20:b8:20:ea:00:70:72:
04:08:e5:db:af:f9:fd:b7:82:0e:b2:33:3a:d7:0b:92:e3:f7:
32:81:13:fb:1e:98:0f:b6:c5:3f:90:ff:f0:61:52:b8:f9:01:
15:02:f9:a9:db:0f:1d:a9:c1:a7:67:93:8b:9b:27:16:18:85:
39:e1:aa:e1:2f:28:d0:6a:e4:7f:ba:13:94:d3:0c:0d:d6:cb:
61:7e:fc:18:1d:45:e1:c6:12:1f:ca:8f:81:9f:a5:e7:20:d4:
b5:96:0c:fb:fe:aa:72:5e:41:0e:a5:36:64:15:4f:1c:51:e5:
74:aa:8f:f6:41:c9:4c:28:0d:0b:ea:91:43:82:2d:94:5d:0f:
71:33:c2:91:fc:fe:05:77:95:e0:ac:fe:65:d4:dc:df:8b:fe:
10:9d:6c:56:e1:4e:ca:cd:e4:be:69:7a:ec:23:bd:d3:5c:0e:
1d:ec:bd:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 12:00:50 2025 by rpki-client