Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DAEC8BE02F4611F0A4B88BBEDAE4EC9C.roa
File: DAEC8BE02F4611F0A4B88BBEDAE4EC9C.roa (raw, json)
Hash identifier: v/121tNjOEaj16hPIAWR9on4DNruJ4f4BkzQo4QISZk=
Subject key identifier: 7F:82:24:0F:12:B8:AB:7F:4E:57:6B:7F:63:34:D7:D6:B5:F5:5F:04
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0153B3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DAEC8BE02F4611F0A4B88BBEDAE4EC9C.roa
Signing time: Mon 12 May 2025 15:36:22 +0000
ROA not before: Mon 12 May 2025 15:36:17 +0000
ROA not after: Tue 09 Jun 2026 15:36:17 +0000
asID: 984
IP address blocks: 156.227.135.0/24 maxlen: 24
156.228.170.0/24 maxlen: 24
156.228.194.0/24 maxlen: 24
156.231.15.0/24 maxlen: 24
156.231.98.0/24 maxlen: 24
156.233.66.0/24 maxlen: 24
156.245.160.0/24 maxlen: 24
156.249.153.0/24 maxlen: 24
156.249.154.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 16 Jun 2025 00:26:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86963 (0x153b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 12 15:36:17 2025 GMT
Not After : Jun 9 15:36:17 2026 GMT
Subject: CN=68221576-ca8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b3:ed:26:85:28:d7:4f:d6:d4:b1:f6:78:3f:
46:0e:14:94:03:db:4d:9b:aa:ac:3e:7a:6e:ac:08:
02:20:34:ec:16:04:04:b4:5f:5d:2d:40:53:90:0f:
f8:f8:a4:31:06:28:b3:39:8d:92:57:16:06:69:16:
27:d4:d9:ed:30:4e:d7:e7:18:26:63:d9:e5:71:ae:
ea:a0:da:5f:c9:fe:c6:dc:e7:0a:26:bd:35:5c:30:
25:51:b0:4f:3b:74:69:ee:80:44:57:79:02:de:5e:
a9:4a:d1:98:0d:17:e1:ff:16:e5:de:0d:9c:75:92:
04:d1:47:7c:79:9f:1e:32:6a:35:ee:ae:11:0c:d0:
99:5d:30:98:a5:1c:14:58:dd:39:76:ef:95:d2:1d:
8d:42:e9:1f:e3:89:45:da:88:17:68:f2:7f:b3:68:
2f:fa:13:47:71:84:96:74:8f:ea:45:ee:e1:48:28:
dc:62:a1:80:d0:3b:57:cb:ce:6e:73:72:a0:00:0c:
4e:c4:a5:6e:2d:b4:d3:35:36:09:72:33:a3:55:f7:
1e:b9:2f:09:3c:27:01:31:b0:52:c6:c4:5a:e8:b9:
3d:90:b3:25:4d:d1:2e:3e:3c:04:86:7d:0b:25:e0:
81:04:c2:68:86:99:c7:e2:fb:62:44:37:fa:da:ef:
c2:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:82:24:0F:12:B8:AB:7F:4E:57:6B:7F:63:34:D7:D6:B5:F5:5F:04
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DAEC8BE02F4611F0A4B88BBEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.135.0/24
156.228.170.0/24
156.228.194.0/24
156.231.15.0/24
156.231.98.0/24
156.233.66.0/24
156.245.160.0/24
156.249.153.0-156.249.154.255
Signature Algorithm: sha256WithRSAEncryption
3d:17:e0:09:92:45:c4:ff:1b:66:b3:49:0b:03:1f:21:1c:ef:
be:5e:88:80:33:bf:80:40:db:9d:18:0e:c8:11:48:f5:e3:45:
38:66:9a:ab:94:b3:d7:7d:94:51:4e:63:e4:ca:a3:70:fb:72:
ff:0c:c0:68:e3:93:1c:1e:45:aa:e4:cc:fe:de:4b:ef:23:6b:
f8:b5:98:2e:0e:e2:33:2c:f3:f5:49:a9:23:9f:3c:f0:ca:de:
93:ea:ab:f8:f5:01:a7:43:b3:db:24:a0:ea:49:0a:99:27:30:
a7:50:34:dc:bb:8a:31:21:c7:5e:51:63:dc:23:b7:6e:82:3c:
f1:3c:5c:28:d2:f4:64:63:57:41:21:cb:ee:e8:56:ea:52:ef:
32:05:49:78:17:a0:b8:5c:04:cd:08:5e:69:3b:43:aa:fb:27:
20:c6:39:06:73:cb:57:5e:15:a8:08:98:f9:90:61:83:42:a8:
03:06:bc:3f:77:78:3e:59:f1:ae:10:ac:73:b7:9c:43:44:ba:
00:c6:25:18:3c:03:b4:9f:fc:f2:b1:eb:b4:23:48:1c:f3:f2:
fc:77:cb:87:99:cc:6a:11:c5:1f:78:3c:94:da:b7:70:c4:11:
1a:57:15:e6:64:10:4d:11:36:e9:7b:ae:d2:b0:da:98:2a:94:
f6:4a:4f:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 18:11:39 2025 by rpki-client