Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/691A265A1CA711F0B4E6939CDAE4EC9C.roa
File: 691A265A1CA711F0B4E6939CDAE4EC9C.roa (raw, json)
Hash identifier: rdhoajbdJRzIJhx/QPLyFjdAUn0adVwzS0t+YaoHGY4=
Subject key identifier: 7C:FC:E2:12:BA:78:7C:86:41:3F:9B:C7:B9:5E:53:9D:92:A1:31:B7
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014D65
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/691A265A1CA711F0B4E6939CDAE4EC9C.roa
Signing time: Fri 18 Apr 2025 22:49:40 +0000
ROA not before: Fri 18 Apr 2025 22:49:35 +0000
ROA not after: Wed 04 Jun 2025 22:49:35 +0000
asID: 54600
IP address blocks: 156.229.176.0/20 maxlen: 24
156.229.192.0/19 maxlen: 24
156.239.24.0/21 maxlen: 24
156.239.32.0/20 maxlen: 24
156.239.48.0/22 maxlen: 24
156.239.52.0/23 maxlen: 24
156.252.144.0/20 maxlen: 24
156.252.160.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 28 Apr 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85349 (0x14d65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 18 22:49:35 2025 GMT
Not After : Jun 4 22:49:35 2025 GMT
Subject: CN=6802d704-48cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:76:2e:18:46:7a:1c:44:42:2f:99:ce:be:0b:
a2:3f:90:61:aa:d6:f0:71:c6:74:28:57:57:d2:5f:
00:28:27:82:31:e1:c3:02:e1:9c:0b:64:eb:fc:21:
0b:42:2e:bc:9c:47:38:a3:e9:01:93:fe:6c:86:e9:
e4:bc:23:42:1f:16:81:11:1a:78:de:e5:ca:ac:c3:
46:3a:19:17:e9:ab:e2:a7:fc:45:a2:87:91:62:1e:
33:6b:f0:3e:bd:1d:d0:55:7b:2f:55:9d:8f:72:fe:
8b:2b:4b:a3:bd:fd:c8:96:83:01:53:59:16:2d:42:
64:4f:8d:ee:ef:d4:e4:26:f2:34:c7:83:01:1a:33:
df:fa:bc:3b:99:ec:3f:28:12:63:bf:5d:07:c2:09:
30:d4:7e:50:f0:03:ab:20:48:cb:f0:8e:91:bd:4e:
a5:41:64:58:1b:f9:ca:2a:f6:1b:a1:3f:08:cf:e2:
7b:53:fb:1b:18:7f:7c:8f:dc:cc:94:a4:41:d5:85:
ef:93:6a:17:8d:6b:b4:fe:79:9f:7b:5b:2e:97:03:
de:c7:bc:83:fe:8d:8c:92:fc:f5:da:13:d2:d0:b8:
44:e8:e0:29:70:e1:c5:30:1f:ca:67:0d:32:c4:6c:
70:a9:72:c9:1c:d0:19:f2:f5:28:f7:3b:97:9e:39:
a7:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:FC:E2:12:BA:78:7C:86:41:3F:9B:C7:B9:5E:53:9D:92:A1:31:B7
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/691A265A1CA711F0B4E6939CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.176.0-156.229.223.255
156.239.24.0-156.239.53.255
156.252.144.0-156.252.175.255
Signature Algorithm: sha256WithRSAEncryption
8c:d7:94:f9:d3:81:20:29:4a:df:81:1c:1f:6a:7d:c5:fc:cd:
2e:76:29:c3:44:c7:fb:4e:bd:5d:1c:55:23:33:92:e8:1a:bd:
57:d7:a2:d7:ec:40:ab:a5:c6:05:a7:02:50:70:97:9f:00:6a:
ad:68:ba:77:84:40:d3:ad:63:37:74:a6:72:75:0f:8a:16:8e:
78:25:b9:e4:d3:23:39:3f:fb:0c:07:e3:d3:1a:8c:9c:20:31:
3b:27:ac:b2:32:37:5b:d6:b5:10:0b:b7:6b:a6:49:34:94:f0:
a5:82:19:da:74:c5:55:e0:15:86:f4:71:f6:f9:56:2f:2f:9a:
3e:77:dd:97:85:5e:ae:bd:25:bd:c1:f0:b6:95:ca:47:29:2f:
ba:e8:9f:b3:67:2b:18:1f:e5:d5:5a:a9:21:34:aa:b9:60:ff:
ea:c1:4f:e6:d0:18:cc:1c:56:07:18:07:5d:b5:10:a5:03:d6:
5d:2d:a6:8f:8a:cc:54:0e:17:db:3d:37:6e:9e:de:b6:8c:29:
c0:a4:da:a4:d7:82:1d:c8:77:ac:53:44:5b:96:d0:b5:fe:ba:
7f:8d:7f:55:9b:59:9f:23:23:b3:8c:af:92:2a:89:0e:7d:09:
10:bc:9c:ee:1d:cb:22:8a:68:7f:82:9c:51:78:04:7a:c7:15:
e2:4c:06:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 16:55:07 2025 by rpki-client