Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6B51AED6452711F09BAADE7BDAE4EC9C.roa
File: 6B51AED6452711F09BAADE7BDAE4EC9C.roa (raw, json)
Hash identifier: gGE0R3cQZTjKMbeIP2H6duOV/Ls+5S/or2TWi7BjDzk=
Subject key identifier: 1F:97:5E:D1:68:62:3A:FE:DD:01:F5:9C:01:94:34:D2:2F:29:5A:AE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015A95
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6B51AED6452711F09BAADE7BDAE4EC9C.roa
Signing time: Mon 09 Jun 2025 11:46:46 +0000
ROA not before: Mon 09 Jun 2025 11:46:33 +0000
ROA not after: Tue 11 Nov 2025 11:46:33 +0000
asID: 400619
IP address blocks: 156.224.16.0/23 maxlen: 24
156.224.18.0/23 maxlen: 24
156.224.20.0/22 maxlen: 24
156.224.24.0/22 maxlen: 24
156.224.28.0/23 maxlen: 24
156.224.30.0/23 maxlen: 24
156.224.63.0/24 maxlen: 24
156.235.96.0/21 maxlen: 24
156.235.104.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 18 Jun 2025 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88725 (0x15a95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 9 11:46:33 2025 GMT
Not After : Nov 11 11:46:33 2025 GMT
Subject: CN=6846c9a6-3472
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:e8:af:94:d5:f3:f4:a4:8b:98:c1:30:b8:a5:
fa:78:c6:b2:ab:a9:a3:fa:de:4f:85:93:b8:a6:4c:
91:fe:82:49:83:f0:56:e1:65:14:08:d0:81:23:4d:
6f:4d:d9:d4:1c:04:30:70:ff:25:32:61:df:73:fc:
68:71:24:e5:07:9d:4b:76:0e:44:71:63:7a:cb:b8:
28:8d:51:09:2e:ab:6e:76:36:e2:b2:2a:d4:e5:4c:
f0:1c:8e:92:21:f9:24:47:5d:5d:e6:42:9a:42:2a:
0f:c0:5f:81:30:5b:c0:8c:bc:f7:ee:4b:68:20:10:
ab:a7:85:00:5d:f9:0d:6c:f0:15:9a:1a:ce:6c:90:
cd:b3:a3:1d:c6:db:d3:af:67:65:2b:f7:84:b3:b7:
2b:bd:54:a6:43:c5:94:71:1f:b5:82:39:78:1e:ff:
93:7e:71:1f:75:34:5a:c7:38:93:49:74:74:f2:47:
65:0a:c9:35:fb:50:a1:26:c5:11:8f:42:bb:45:ca:
97:86:d6:86:0a:fb:09:9f:ac:6a:31:fa:90:05:c3:
fc:d4:0b:1c:9f:8d:30:00:43:33:aa:bc:8c:a5:64:
41:3b:28:8b:be:fa:3f:6d:93:8c:1b:f4:03:6e:16:
f7:69:58:09:f8:d9:3d:a3:f0:80:f8:31:07:e3:ce:
f3:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:97:5E:D1:68:62:3A:FE:DD:01:F5:9C:01:94:34:D2:2F:29:5A:AE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6B51AED6452711F09BAADE7BDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.224.16.0/20
156.224.63.0/24
156.235.96.0/20
Signature Algorithm: sha256WithRSAEncryption
96:47:4a:dd:23:4f:b7:cd:0e:e0:3d:80:0b:71:28:56:ad:97:
02:8a:14:f3:2c:86:98:ae:68:8d:42:3c:b7:ce:5f:de:cb:8e:
6e:f1:8d:53:76:2f:65:cb:cd:de:e0:a0:fd:67:af:c4:86:f9:
5a:80:88:4e:10:5d:75:81:42:b0:5e:d4:ef:18:ff:9a:4e:e2:
92:7e:ab:41:93:1b:bc:93:7f:d5:1d:b6:13:0f:fe:21:2d:3c:
0b:71:16:e3:ad:50:89:24:35:49:4d:08:43:a5:60:32:c0:5a:
e3:52:3b:42:b4:d5:ab:48:f9:52:98:62:d1:78:9c:19:73:df:
43:0a:e6:ba:d4:d6:0c:b4:00:ba:69:a1:1c:3a:5c:e9:35:0c:
51:78:8c:e5:51:e1:13:98:e6:72:af:a5:87:f7:cf:58:32:e0:
dc:f0:06:eb:33:47:77:ed:61:97:47:40:02:fd:9f:a3:ce:d1:
d0:4c:13:3a:2d:49:ef:0b:8b:f9:68:b1:5a:8e:69:50:16:26:
3a:5e:59:ac:6a:ff:eb:5e:34:53:12:eb:1e:76:95:41:23:25:
9c:06:ed:57:b7:0a:54:c1:89:a0:5c:e1:15:99:fe:58:f7:11:
dd:fe:27:9d:0c:6b:e4:a2:80:a2:b9:ee:63:48:23:e8:f1:a3:
c1:d1:5f:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 13:15:22 2025 by rpki-client