Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AFCAD4D4438811F0BEDE82F5DAE4EC9C.roa
File: AFCAD4D4438811F0BEDE82F5DAE4EC9C.roa (raw, json)
Hash identifier: 3ogESFesQQhzDwIQcyePwoB1kbMRBm1QkBmO6gSEr8c=
Subject key identifier: 97:3A:CD:4A:B8:53:89:FF:4C:6A:9E:B0:B2:5F:9E:87:9E:EE:22:07
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015A39
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AFCAD4D4438811F0BEDE82F5DAE4EC9C.roa
Signing time: Sat 07 Jun 2025 10:18:00 +0000
ROA not before: Sat 07 Jun 2025 10:17:55 +0000
ROA not after: Sun 31 Aug 2025 10:17:55 +0000
asID: 399077
IP address blocks: 156.240.253.0/24 maxlen: 24
156.240.254.0/24 maxlen: 24
156.240.255.0/24 maxlen: 24
156.251.1.0/24 maxlen: 24
156.251.2.0/24 maxlen: 24
156.251.3.0/24 maxlen: 24
156.251.4.0/24 maxlen: 24
156.251.6.0/24 maxlen: 24
156.251.7.0/24 maxlen: 24
156.251.8.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 18 Jun 2025 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88633 (0x15a39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 7 10:17:55 2025 GMT
Not After : Aug 31 10:17:55 2025 GMT
Subject: CN=684411d7-3337
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:82:f0:c4:fd:36:70:c5:88:bc:07:79:f8:8f:
79:55:c1:1e:29:25:b4:00:b9:72:e6:f9:55:43:c9:
34:46:64:e3:b8:2d:aa:36:04:ce:e5:f4:9b:5e:1b:
26:a1:17:83:3f:a2:a6:bf:d6:c9:b0:15:80:30:d8:
7f:24:97:8a:29:5e:74:67:ec:04:5a:ce:b4:f2:19:
86:a3:80:d7:d5:f1:8d:ea:b4:3b:bc:b1:cb:3d:4b:
d2:7d:75:ee:98:07:ce:0b:cf:9f:10:d8:45:20:91:
4d:df:d3:bd:32:f6:a1:ae:c9:15:57:e9:f2:d6:1f:
d1:77:43:6c:72:9f:0d:27:49:f9:78:33:ed:7a:49:
2f:80:2c:e4:16:0a:3e:c0:71:7a:f3:4d:02:98:20:
bb:c6:cd:90:19:c2:ee:62:da:2b:ad:86:24:a7:e1:
d4:b7:e6:58:d0:1b:dc:c7:53:3c:af:dd:38:6e:44:
cb:5a:bb:8c:0d:fc:ef:7b:ae:e5:ee:a1:72:33:29:
c9:f5:74:a5:68:84:a9:ac:88:e2:c5:35:96:f8:2c:
a7:3f:ff:7d:05:ec:ba:cd:b9:9e:39:d0:ee:fc:04:
41:e3:ab:bd:41:8d:fc:77:46:8c:a7:81:b8:e3:b7:
66:cc:84:9f:6f:f2:bf:5b:de:30:05:a2:e0:8b:17:
27:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:3A:CD:4A:B8:53:89:FF:4C:6A:9E:B0:B2:5F:9E:87:9E:EE:22:07
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AFCAD4D4438811F0BEDE82F5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.240.253.0-156.240.255.255
156.251.1.0-156.251.4.255
156.251.6.0-156.251.8.255
Signature Algorithm: sha256WithRSAEncryption
5d:30:7b:b3:70:7a:8f:57:af:10:d2:54:b6:8f:e8:7d:6f:72:
56:14:70:1c:51:a4:de:7d:6a:dc:be:3b:87:10:5f:5e:83:05:
13:18:2b:f7:89:b3:cc:d4:fd:67:61:d5:9f:3c:01:3d:a9:02:
b1:7a:a0:3a:ee:f6:bf:d9:0a:39:b1:f1:d4:3c:e5:1d:75:2d:
d7:3e:aa:2e:35:04:4a:bb:3d:b4:51:65:bb:e0:31:a1:9b:f9:
ed:78:e2:85:e2:f4:41:d4:1c:32:18:af:11:d6:eb:eb:d0:85:
f0:9d:4a:7a:6a:29:da:7c:2b:9a:2d:6d:5f:45:63:04:fd:a6:
f2:9e:5d:4e:9f:de:dc:fa:52:4f:01:50:33:ca:53:26:ef:62:
83:f3:a3:16:40:dc:d9:1f:f4:04:55:07:3b:3f:c6:8d:20:8d:
d0:59:af:33:b6:50:f3:36:eb:dd:89:75:41:6f:9b:ef:7d:31:
7f:e4:7b:e2:b6:49:75:c7:13:b8:13:53:d6:d2:79:4b:f5:60:
a4:c4:d8:a5:4d:29:d5:23:43:3f:3d:05:07:d9:cd:d0:dc:09:
2d:e1:22:10:24:69:f4:97:da:54:ff:93:4f:64:21:c2:cf:9e:
1e:9d:87:4d:e5:7d:17:65:38:b4:94:7e:a4:f6:cd:04:a7:19:
b7:c6:f5:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 10:37:59 2025 by rpki-client