Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9CBB628242D911F0906E3A82DAE4EC9C.roa
File: 9CBB628242D911F0906E3A82DAE4EC9C.roa (raw, json)
Hash identifier: haxrCODTT9jutxH5SOcBaP/FKpQBwmezlAjhnEZ+Keg=
Subject key identifier: D7:BF:09:37:04:C5:18:D9:DE:90:1D:B5:55:69:10:ED:DD:CB:95:EE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015A0C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9CBB628242D911F0906E3A82DAE4EC9C.roa
Signing time: Fri 06 Jun 2025 13:24:46 +0000
ROA not before: Fri 06 Jun 2025 13:24:41 +0000
ROA not after: Sun 13 Jul 2025 13:24:41 +0000
asID: 397423
IP address blocks: 156.225.65.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 18 Jun 2025 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88588 (0x15a0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 6 13:24:41 2025 GMT
Not After : Jul 13 13:24:41 2025 GMT
Subject: CN=6842ec1e-710e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:dd:a3:aa:dd:4a:f9:e5:6e:c7:c9:5b:a9:33:
2c:cc:4e:be:de:93:22:f7:53:da:22:e3:bd:54:bd:
24:07:06:c7:e9:3b:e8:af:31:52:ac:4d:c0:e3:ac:
e9:c7:0a:c8:7d:af:6d:ed:0b:20:21:44:e2:68:cb:
cb:f4:b6:e3:5c:d8:78:db:24:6d:3d:cf:8c:9a:b4:
cc:60:60:30:db:cb:48:2c:f6:ea:c6:51:2f:bc:38:
5c:fb:b9:7e:0d:2d:4c:e8:0e:21:ee:63:20:d7:81:
c8:49:78:cb:8a:79:ee:e2:35:dd:dd:63:21:d7:8f:
3a:a5:cd:fc:d0:f7:63:20:e0:b8:00:a8:f4:11:dc:
56:9e:67:e1:ef:4e:a4:24:49:52:d7:85:f1:1b:d5:
71:ae:e9:af:be:d5:b3:19:8e:11:6e:5f:24:27:33:
fd:ed:69:1b:af:32:92:6c:83:71:40:a5:db:c1:8c:
01:52:f6:18:f2:8b:20:5e:38:fe:42:4b:0c:1d:ff:
29:96:52:49:8c:b3:01:3b:55:3c:a9:be:c2:ac:1d:
86:96:e0:b3:15:61:c8:35:5a:c6:1f:78:7d:97:81:
78:a4:15:db:be:b8:10:b2:76:75:4f:a4:82:68:9d:
80:37:9e:b4:c7:bb:0c:56:ad:12:95:66:1b:c8:14:
da:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:BF:09:37:04:C5:18:D9:DE:90:1D:B5:55:69:10:ED:DD:CB:95:EE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9CBB628242D911F0906E3A82DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.65.0/24
Signature Algorithm: sha256WithRSAEncryption
56:eb:4a:f8:9e:8b:bb:b0:74:a8:20:ba:35:14:dc:aa:22:95:
2f:71:62:80:ca:f7:94:ad:e1:95:25:e9:47:42:d4:f8:f2:f7:
6e:e4:39:f9:09:2c:83:a1:c4:2a:23:9f:0a:43:67:6e:f5:ab:
6d:4b:0b:8d:80:7d:f2:ea:9b:0a:b9:92:6a:0a:b7:36:cc:e7:
a3:71:31:f3:0b:cd:cf:87:b2:94:92:dc:9a:16:ec:55:8c:cc:
06:8b:7f:d5:10:d1:ed:3d:ec:79:b4:15:69:da:0f:23:24:0b:
83:3f:5d:10:1d:b5:22:ab:d0:fb:c8:b8:17:ab:2c:f4:a9:6b:
d7:f7:65:c1:92:b5:67:47:94:6f:d0:d7:b0:3b:ef:18:5b:1e:
9c:31:3c:72:0f:18:70:e6:53:9e:20:f6:c6:ce:dc:3f:51:25:
b9:3a:57:71:69:03:ec:8e:2e:8b:a0:b4:9d:4c:20:c6:44:9c:
b8:52:15:7c:5c:1b:17:b2:09:df:b6:84:34:1a:ff:d4:23:8d:
11:a2:bd:a9:7a:47:7c:3b:58:95:b6:c8:8b:2f:58:88:e6:ec:
65:ce:1c:f3:88:49:cb:b9:cd:c2:25:cb:b1:b2:18:1f:66:92:
62:5f:66:35:d8:4f:a8:2d:7f:a4:11:7b:80:33:91:6d:b8:e0:
6a:bc:52:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 20:04:39 2025 by rpki-client