Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D8F415B6687F11F08132AE86DAE4EC9C.roa
File: D8F415B6687F11F08132AE86DAE4EC9C.roa (raw, json)
Hash identifier: 2056eMBbN/qEQ8bbSjHc6XJpb5iBtL+HKIbrmLz5JXI=
Subject key identifier: 48:6B:5B:20:45:55:22:68:1E:A8:26:32:EA:66:E9:19:71:AC:1B:62
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016749
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D8F415B6687F11F08132AE86DAE4EC9C.roa
Signing time: Thu 24 Jul 2025 11:17:57 +0000
ROA not before: Thu 24 Jul 2025 11:17:51 +0000
ROA not after: Thu 28 Aug 2025 11:17:51 +0000
asID: 44559
IP address blocks: 156.246.154.0/24 maxlen: 24
156.246.155.0/24 maxlen: 24
156.246.156.0/24 maxlen: 24
156.246.157.0/24 maxlen: 24
156.246.158.0/24 maxlen: 24
156.246.159.0/24 maxlen: 24
156.246.160.0/24 maxlen: 24
156.246.166.0/24 maxlen: 24
156.246.167.0/24 maxlen: 24
156.246.168.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 06 Aug 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91977 (0x16749)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 24 11:17:51 2025 GMT
Not After : Aug 28 11:17:51 2025 GMT
Subject: CN=68821665-a63f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:0d:17:6a:a2:e4:28:18:2d:42:a9:8f:97:64:
76:dc:fc:db:e4:80:b3:9d:d2:ea:36:e1:fb:61:74:
54:05:ba:74:09:9c:e3:5b:99:f2:ce:51:4c:21:64:
8d:d1:e8:cb:48:47:7d:f8:6a:1e:08:84:ab:63:57:
9e:53:fe:28:ab:9c:08:67:db:1f:cf:1a:90:a0:4a:
d7:9d:85:b1:c2:89:15:dd:a7:2a:a5:db:f1:dc:2d:
8a:3a:9d:fb:ad:ae:67:62:be:1e:46:14:77:75:c2:
f9:b9:cf:4b:e4:e6:2f:c2:ea:23:7a:15:7d:42:98:
36:67:b9:9c:14:77:40:eb:00:6c:10:72:98:0d:bd:
71:38:f2:0d:1a:11:bf:27:28:8f:a3:3e:1f:0a:7c:
96:6f:d5:6d:85:77:ed:62:c0:87:2d:b6:23:93:38:
c9:ff:02:3f:dc:35:45:65:01:75:cb:1e:a6:73:48:
99:ef:fa:e3:ea:19:9e:50:ca:79:2b:5d:d1:61:cd:
64:f6:30:1d:e6:8c:a6:04:48:bb:03:0b:c2:be:81:
70:0e:f3:c2:ae:bc:93:fd:a5:b2:1e:aa:36:97:85:
b0:f2:51:e4:16:39:07:f3:e7:ce:de:01:57:41:91:
08:90:f0:27:84:94:5d:a0:be:cb:f3:5b:bb:7c:1e:
e8:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:6B:5B:20:45:55:22:68:1E:A8:26:32:EA:66:E9:19:71:AC:1B:62
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D8F415B6687F11F08132AE86DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.154.0-156.246.160.255
156.246.166.0-156.246.168.255
Signature Algorithm: sha256WithRSAEncryption
8a:cf:c6:6f:08:a7:4a:39:7a:31:cf:5d:9a:2d:30:41:45:19:
62:96:5f:ff:96:e5:67:07:7f:75:f1:0f:7a:83:a1:1e:57:63:
31:e5:1a:14:c9:4a:e4:ac:06:d1:dc:64:b8:c1:27:45:4b:fb:
40:64:7f:83:97:49:0a:42:b1:ce:b8:6c:31:8d:6a:c4:52:46:
b2:29:00:2b:e6:f6:48:51:53:8b:68:9d:69:65:c8:32:67:96:
45:83:e7:70:45:ae:50:86:01:f4:69:f1:d6:28:1c:5b:3b:fc:
02:d4:52:ce:fb:65:8e:16:27:8f:51:60:cf:a9:99:f5:50:ff:
eb:be:7f:80:87:0e:79:06:dc:74:19:25:c1:94:ba:99:2c:c4:
33:05:a1:fe:2a:85:a1:13:18:6b:01:3a:83:8d:66:b2:08:fe:
83:31:aa:1a:e1:f4:e9:b9:96:82:05:bb:a2:8e:36:cb:15:31:
7e:44:6c:8f:46:e5:f2:10:04:59:99:cb:c0:71:ae:36:1a:cf:
2d:a4:25:cf:56:e9:1a:70:71:6b:e1:60:6a:92:d7:ee:a8:81:
a1:5c:9c:41:c9:9a:99:5b:57:fd:cf:d3:13:54:ab:42:ed:a9:
7e:89:0f:16:cb:59:50:9e:91:77:29:8c:d2:be:6f:f3:25:45:
e0:73:96:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 08:18:22 2025 by rpki-client