Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E44EDC806D2411F0838391CADAE4EC9C.roa
File: E44EDC806D2411F0838391CADAE4EC9C.roa (raw, json)
Hash identifier: 901MnMUKvK0wsR2YYkGqeo2pCSOEIAqcPOsaIJwzdvg=
Subject key identifier: A5:5A:1D:1E:BF:CD:3F:07:BF:E8:D3:39:23:0F:E5:E8:B0:F5:06:34
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016840
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E44EDC806D2411F0838391CADAE4EC9C.roa
Signing time: Wed 30 Jul 2025 09:09:27 +0000
ROA not before: Wed 30 Jul 2025 09:09:21 +0000
ROA not after: Wed 03 Sep 2025 09:09:21 +0000
asID: 20473
IP address blocks: 156.253.60.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 Aug 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92224 (0x16840)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 30 09:09:21 2025 GMT
Not After : Sep 3 09:09:21 2025 GMT
Subject: CN=6889e147-f164
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:fb:c0:63:eb:a4:e9:a6:be:3f:8c:9b:08:5a:
c2:fa:10:c9:6e:95:a0:5e:fd:56:de:e1:9d:8e:32:
1e:6b:ea:6a:76:e5:a1:3f:7a:dc:fa:35:cb:af:24:
ca:0d:a6:5f:9b:be:a6:0e:cc:42:ea:63:ff:16:9b:
51:e5:54:5c:82:7c:a3:9e:5a:ca:0d:c5:8d:f3:16:
b4:87:87:2c:a0:17:ea:77:84:bd:c5:41:f3:98:27:
ab:af:8d:6e:2d:93:db:d1:3f:29:ff:b9:04:0a:8b:
59:33:ae:1e:04:af:6c:fd:5e:4d:99:11:de:d7:81:
89:35:d4:9e:3a:1c:13:5e:96:6c:13:26:de:de:a4:
5c:b0:c4:cb:de:ac:8e:2f:f0:d2:5e:0d:58:3d:b9:
fd:1f:c4:4e:a8:53:73:6a:11:e7:2c:07:b8:cd:37:
7f:79:e6:40:07:7c:9f:e3:9b:19:25:f7:a2:55:f4:
7d:87:7a:c4:6d:5a:b0:34:79:b3:1e:33:09:21:a2:
88:c7:54:b2:e9:13:8d:4c:8b:d4:a9:13:64:fc:1e:
4c:62:50:1f:4a:e8:55:5c:41:97:c8:03:90:12:45:
7f:35:8a:4e:e1:a2:b6:76:72:c5:41:48:ee:f4:89:
06:eb:9d:96:09:3b:22:ff:d5:ac:97:ce:6a:d8:f3:
5e:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:5A:1D:1E:BF:CD:3F:07:BF:E8:D3:39:23:0F:E5:E8:B0:F5:06:34
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E44EDC806D2411F0838391CADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.253.60.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:f0:65:5f:98:47:00:7e:ba:dd:f9:64:74:f3:cf:c1:18:f8:
0b:6a:a6:7d:37:c2:41:31:21:3d:74:5a:45:57:91:d5:1b:bc:
a1:5f:0b:83:92:69:73:40:21:b5:ce:14:3f:1f:04:e9:bb:3d:
3c:46:64:96:2c:dd:cd:ed:ce:c9:fc:5d:db:88:75:60:a1:c1:
af:54:ff:c8:7a:b2:df:ce:89:7b:5a:c9:9f:5d:64:1f:2c:e8:
45:54:b2:10:c0:89:28:af:e6:09:d6:a5:75:19:29:20:96:9a:
bd:63:76:dd:c2:72:5c:89:b9:16:5f:c4:30:57:05:e1:6a:8d:
70:b5:f7:75:45:f3:16:c1:2b:14:84:0c:aa:51:68:9f:13:10:
bc:c0:ec:d5:69:35:fa:92:46:a8:f2:b0:9e:f0:d5:f0:0f:b6:
42:19:6b:cd:71:4d:d8:2c:e9:fe:4c:e6:23:38:03:53:1d:00:
15:7f:c4:45:4a:61:2e:a9:06:84:02:f5:e8:70:b1:9a:d7:c6:
f5:78:2b:ac:ef:cd:f5:d6:1e:8b:1e:fb:35:43:bb:fb:fa:f0:
a6:67:84:72:7c:b4:1c:73:39:51:03:a4:8f:16:f3:3e:9e:c5:
98:ca:48:be:f9:21:b5:4f:c6:8d:16:0e:58:6d:fc:19:eb:51:
56:58:78:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 02:49:55 2025 by rpki-client