Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D5696778438311F09316DBD5DAE4EC9C.roa
File: D5696778438311F09316DBD5DAE4EC9C.roa (raw, json)
Hash identifier: CD8ewzJuvyfjlQABhhm5VBcJAh98wDmy1O/0+BDjQO8=
Subject key identifier: DA:7E:02:53:C6:6A:DF:A4:BC:46:6F:7B:30:ED:C9:CE:61:34:2E:29
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015A2E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D5696778438311F09316DBD5DAE4EC9C.roa
Signing time: Sat 07 Jun 2025 09:43:15 +0000
ROA not before: Sat 07 Jun 2025 09:43:10 +0000
ROA not after: Sun 31 Aug 2025 09:43:10 +0000
asID: 399077
IP address blocks: 156.251.47.0/24 maxlen: 24
156.251.50.0/24 maxlen: 24
156.251.51.0/24 maxlen: 24
156.251.52.0/24 maxlen: 24
156.251.53.0/24 maxlen: 24
156.251.54.0/24 maxlen: 24
156.251.55.0/24 maxlen: 24
156.251.56.0/24 maxlen: 24
156.251.57.0/24 maxlen: 24
156.251.58.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 20 Jun 2025 06:15:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88622 (0x15a2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 7 09:43:10 2025 GMT
Not After : Aug 31 09:43:10 2025 GMT
Subject: CN=684409b3-e411
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:01:59:0a:5e:8d:38:20:b8:77:cf:f1:73:5a:
72:ed:e3:18:0a:6e:4a:83:9d:5c:df:d4:05:53:9a:
e7:cc:5e:53:29:b5:d1:28:d1:31:a3:4e:71:ba:33:
d1:d3:5d:16:da:4e:a9:a0:af:99:e8:01:4e:8e:a6:
f8:6b:c4:6c:8a:cb:b1:3b:dd:73:55:a2:8f:b9:f2:
2f:0e:c2:57:cd:df:e5:89:7a:c1:63:63:be:36:ee:
38:3e:92:e5:9c:aa:27:a5:78:c3:f1:06:f2:88:2d:
d7:0d:8c:d2:6d:52:f1:2f:4f:14:f5:76:55:2e:eb:
58:65:ea:11:78:6a:5b:48:89:98:ea:e7:4c:a9:bb:
61:d0:b7:d1:d7:e4:22:9f:4e:43:2c:3d:00:17:3d:
84:b5:b1:ee:18:8f:ae:66:8e:ba:77:14:2d:03:26:
73:20:3e:b5:54:50:1a:72:4c:b5:69:7b:a8:1e:a5:
8e:5f:80:a6:3d:3a:59:57:6f:43:94:ba:45:4b:6e:
d1:98:b3:17:c4:d7:a6:ff:e1:16:a3:fc:c4:13:c2:
85:8c:08:9d:2f:cf:41:2f:a4:b0:c6:38:7c:59:2f:
a4:fe:52:0c:79:29:8e:de:81:e0:00:f3:cc:f2:f1:
8d:d3:05:0e:63:d0:49:73:9d:cf:90:90:44:f0:1a:
13:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:7E:02:53:C6:6A:DF:A4:BC:46:6F:7B:30:ED:C9:CE:61:34:2E:29
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D5696778438311F09316DBD5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.251.47.0/24
156.251.50.0-156.251.58.255
Signature Algorithm: sha256WithRSAEncryption
92:0c:6a:a6:2f:ee:a9:43:01:8b:35:09:45:76:6e:3e:11:64:
28:fd:bf:f3:aa:8f:73:ab:ee:40:c9:d0:05:da:74:70:5c:45:
ea:91:c3:c1:50:e7:2f:99:b7:41:47:ca:fa:e3:6d:3d:8e:80:
12:b3:f6:f3:51:5c:a9:14:10:89:c6:46:77:98:34:8d:ab:82:
49:8b:7a:9a:be:cd:8d:fe:60:28:e1:c5:b4:ec:b2:dc:e8:43:
82:0b:ee:9a:b7:4a:4c:ae:f2:d4:5b:6b:e7:8e:8f:6d:fb:79:
0a:83:68:b7:2d:ff:cd:f6:79:e9:cc:06:15:8c:5d:11:f0:e6:
32:0f:6a:8c:5e:ca:14:3f:f1:54:e4:b5:a5:47:22:bc:72:d4:
ce:97:e1:17:06:da:96:35:30:f7:81:59:ee:33:bb:d0:42:8c:
ed:55:fb:bc:c1:a7:50:18:f8:5f:f0:6e:4e:79:98:3f:5a:9c:
e3:bb:59:9c:90:c0:94:ed:f2:01:33:c8:d2:84:cb:40:2c:b9:
2e:34:9a:83:9e:fc:41:13:5d:a7:79:5e:32:a0:74:ef:fb:68:
94:27:63:95:93:c7:2f:6d:16:f7:18:3e:de:a5:b8:b0:c0:8a:
9b:df:26:1a:74:c0:7e:cd:18:02:8f:df:2d:91:91:ac:d8:ea:
5a:1c:38:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 18 20:18:38 2025 by rpki-client