Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9AE16704486511F096747BA1DAE4EC9C.roa
File: 9AE16704486511F096747BA1DAE4EC9C.roa (raw, json)
Hash identifier: DOw+WB1Ew1Wm1LV6ZOeeAxjOdHYndQ1OJYGI5NKtRWU=
Subject key identifier: 14:15:55:EA:1C:F2:9F:6C:53:93:F4:A1:B0:3A:D7:9E:56:DB:02:A2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015BD2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9AE16704486511F096747BA1DAE4EC9C.roa
Signing time: Fri 13 Jun 2025 14:49:28 +0000
ROA not before: Fri 13 Jun 2025 14:49:23 +0000
ROA not after: Fri 20 Jun 2025 14:49:23 +0000
asID: 398478
IP address blocks: 156.252.96.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 18 Jun 2025 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89042 (0x15bd2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 13 14:49:23 2025 GMT
Not After : Jun 20 14:49:23 2025 GMT
Subject: CN=684c3a78-6b25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:42:24:cc:59:75:3e:c0:71:78:ef:94:50:28:
a4:a1:4a:ea:bb:f3:63:05:e1:91:c6:71:07:9b:93:
ca:1e:0c:86:1d:83:22:fd:e7:78:98:0d:1d:be:12:
79:79:df:8e:8d:07:a5:e9:d3:a2:20:38:b9:61:3c:
28:91:f7:10:48:e7:8e:cc:3e:2b:87:51:7b:33:c5:
82:d5:bf:7e:c0:e7:e9:0f:17:bb:29:88:9f:e0:cd:
5b:d6:02:48:d4:34:4b:3c:8b:f3:f4:5d:39:59:1c:
8e:5f:b4:fa:68:80:74:79:09:03:64:50:10:fe:5b:
75:6d:0c:fc:bc:fe:f8:6c:61:b5:f6:76:f0:38:8a:
c5:60:e4:59:34:bb:93:a5:3b:8b:c8:b2:c2:59:31:
a3:de:c7:01:aa:82:d5:fd:ab:01:34:31:9a:d5:aa:
7b:dc:7b:45:ba:97:cb:97:ae:d8:bb:a7:5f:a9:ee:
39:83:b0:7a:fd:8e:32:4a:e4:09:43:6a:26:5a:6b:
d9:23:57:84:ce:d6:38:ca:ee:71:e7:5d:1b:2a:24:
27:ab:65:33:b6:1b:26:d5:c7:0f:b4:8f:4d:97:46:
1a:e1:39:f6:bd:9f:17:be:c9:b8:01:4a:fa:ea:60:
2f:78:93:82:93:74:7b:30:b5:1c:6c:a3:de:cc:fb:
b0:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:15:55:EA:1C:F2:9F:6C:53:93:F4:A1:B0:3A:D7:9E:56:DB:02:A2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9AE16704486511F096747BA1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.252.96.0/19
Signature Algorithm: sha256WithRSAEncryption
47:a3:f3:5e:e5:69:19:6e:c9:4d:e1:37:85:3e:1a:61:4a:5c:
7b:37:9d:2a:00:f5:de:ad:4c:92:74:a1:42:f6:62:a1:0b:5e:
34:b3:0a:f4:98:f2:e2:c5:b7:ff:71:7e:e9:d6:a3:69:d9:96:
5f:7e:a4:65:5c:28:5b:02:41:65:f9:b3:4f:b7:e7:3a:19:69:
26:39:7f:a2:9b:b1:d4:fe:a0:14:f3:0b:81:9f:21:cf:da:b7:
ff:06:f9:32:1e:63:c5:3f:0b:c7:a4:f8:f6:75:3d:f1:1b:68:
15:b1:2f:88:54:3b:38:f7:a0:08:0e:29:6d:15:84:5b:b7:d4:
33:ec:4f:ec:65:91:12:87:d4:a1:95:8b:79:f6:11:22:6c:92:
1d:1d:f2:f0:0a:58:b8:70:b5:d3:91:28:22:1a:09:02:03:45:
7b:19:b4:3f:49:21:db:5d:d1:4c:2b:de:0f:70:ef:72:6c:d1:
a9:6f:60:88:37:6e:0f:61:92:09:d9:fa:aa:06:95:03:a5:db:
2f:79:f5:ce:2e:dc:11:fb:cd:ca:92:1f:d8:b4:89:39:1e:30:
93:72:bf:a2:62:b7:9e:31:e8:40:16:f1:d0:d8:3a:eb:de:d6:
8d:ce:7e:76:83:10:fc:3c:c1:ce:f5:8a:3f:fb:f1:42:51:6e:
06:7f:f9:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 17:07:34 2025 by rpki-client