Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8C6F4CCC490A11F0BED1F7D6DAE4EC9C.roa
File: 8C6F4CCC490A11F0BED1F7D6DAE4EC9C.roa (raw, json)
Hash identifier: KiRstl6FAkrDNVtZdCuwsxgj2Zite7jg41yhVnOcTsc=
Subject key identifier: 91:7D:28:CD:21:A0:FA:B0:AD:7F:29:DA:26:29:CF:8A:B1:AF:BB:DC
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015C13
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8C6F4CCC490A11F0BED1F7D6DAE4EC9C.roa
Signing time: Sat 14 Jun 2025 10:30:11 +0000
ROA not before: Sat 14 Jun 2025 10:30:05 +0000
ROA not after: Fri 25 Jul 2025 10:30:05 +0000
asID: 401615
IP address blocks: 156.231.140.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 20 Jun 2025 06:15:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89107 (0x15c13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 14 10:30:05 2025 GMT
Not After : Jul 25 10:30:05 2025 GMT
Subject: CN=684d4f33-2901
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:0f:f4:da:0d:de:36:10:10:50:6b:c5:d3:33:
10:41:8d:b9:5f:f8:52:a6:1f:e1:10:15:85:2b:99:
f8:47:80:10:51:56:b0:04:f8:01:c3:f5:7d:b8:dd:
99:40:eb:32:a0:03:2d:53:75:6b:54:fe:56:71:ab:
f8:42:90:a8:66:f3:01:59:58:45:e0:81:53:fc:60:
92:bf:2b:82:9f:78:77:3d:36:af:45:6c:4b:7a:3e:
23:c8:16:89:ec:c9:7c:a9:d2:dd:cf:dd:05:cd:7f:
1e:6b:54:3e:16:b5:02:fc:49:69:c1:36:fa:b0:01:
46:99:e1:93:f1:d6:70:19:60:5d:3f:cf:9e:2c:61:
e8:d2:d8:4d:5c:82:dc:e1:d3:60:ca:b9:a5:63:07:
be:03:dc:df:37:92:ca:9f:fe:44:85:f5:86:97:7d:
ed:11:fd:87:61:2b:f5:ba:ba:f7:76:66:ce:d0:f6:
98:9b:07:fe:65:5e:e2:9b:9b:0e:00:a6:d0:72:db:
53:37:97:fe:42:6a:60:b2:cc:00:40:79:02:28:58:
03:46:88:d1:51:67:68:ca:07:b7:22:85:02:17:e9:
70:ef:07:c3:7a:64:97:f2:6f:d7:d5:70:2e:9a:3a:
2b:84:73:35:7d:65:8c:30:fa:78:49:4d:9f:20:c0:
59:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:7D:28:CD:21:A0:FA:B0:AD:7F:29:DA:26:29:CF:8A:B1:AF:BB:DC
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8C6F4CCC490A11F0BED1F7D6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.231.140.0/23
Signature Algorithm: sha256WithRSAEncryption
a4:58:0f:67:aa:8e:25:6f:f0:07:09:94:81:36:4b:75:9f:f2:
55:b1:16:f9:a5:79:f7:90:ae:32:32:24:7b:8c:b1:31:b1:81:
63:e7:8b:20:e4:7e:fd:fc:1e:93:c7:98:47:92:67:93:fb:57:
8a:ab:cf:fe:5d:bf:e9:55:a1:6e:cd:8b:8c:48:f3:8d:07:95:
a7:b4:27:71:8a:b5:b4:79:19:1d:58:f8:df:fe:ea:10:6c:11:
aa:21:b3:bc:d5:9e:a7:f6:9b:8f:56:52:a7:06:36:21:7d:ec:
70:34:2c:8f:69:c4:98:67:e6:9b:71:31:31:8d:e1:bd:1d:80:
d6:14:cb:bd:84:e8:8c:e0:52:26:53:4a:b3:9d:d0:a4:6f:f0:
61:9f:e7:13:08:99:25:1b:80:4a:38:50:cc:66:c9:f5:0e:55:
23:3d:2b:a0:a2:3f:af:c2:4e:6e:2a:4e:32:00:25:ca:94:fb:
6f:fe:f5:97:0a:ab:81:f8:ed:0b:92:b9:51:28:c0:44:c2:b0:
5c:98:56:4f:7f:88:7b:c6:07:d8:65:f2:66:7c:80:d8:c0:63:
49:ee:f8:1e:dd:bf:13:a3:80:b6:8e:0b:20:2a:7d:30:93:eb:
e0:5f:e2:74:02:43:eb:db:cb:ba:a4:0d:af:12:8d:d8:5e:02:
cd:b0:79:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 18 18:11:14 2025 by rpki-client