Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F3700EBA484D11F0B424028BDAE4EC9C.roa
File: F3700EBA484D11F0B424028BDAE4EC9C.roa (raw, json)
Hash identifier: M9E5KgD8uvmhVEd9iuTnAcR+n9OIspvnn3LpQFg8bQs=
Subject key identifier: E4:C6:19:36:5A:F1:42:AB:19:13:BA:6A:02:17:CB:CC:E7:B3:5B:3E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015BC2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F3700EBA484D11F0B424028BDAE4EC9C.roa
Signing time: Fri 13 Jun 2025 12:00:09 +0000
ROA not before: Fri 13 Jun 2025 12:00:00 +0000
ROA not after: Sun 03 Aug 2025 12:00:00 +0000
asID: 216047
IP address blocks: 156.234.118.0/24 maxlen: 24
156.234.123.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 21 Jun 2025 08:49:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89026 (0x15bc2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 13 12:00:00 2025 GMT
Not After : Aug 3 12:00:00 2025 GMT
Subject: CN=684c12c9-ac5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:45:32:eb:16:ee:38:d9:15:60:8a:bd:28:da:
27:82:b7:d8:c8:5b:f9:60:ca:f2:43:11:51:be:e6:
8a:98:1b:be:e2:6b:20:58:32:16:0b:77:e5:dc:da:
aa:72:9b:d8:80:84:7e:b7:f7:44:7d:c3:6d:f9:74:
c2:a0:2b:07:4d:e6:96:ac:e2:80:68:31:4e:df:e6:
bf:47:29:41:61:f1:0b:d6:8b:38:a5:16:e0:db:0a:
7c:3e:61:b2:62:6a:af:bc:0a:57:db:c9:1e:92:b0:
9c:36:9b:9e:70:c4:fa:9a:48:dc:41:b0:b3:b5:d5:
a8:10:33:d7:86:5b:97:c3:48:95:c5:9f:bf:ea:3a:
77:ea:ed:98:67:8b:13:b6:0d:6d:7b:13:e4:4d:bd:
3c:c3:27:a4:61:5a:c8:5a:5a:23:18:b2:d9:f5:ba:
8a:f4:89:4d:8f:0a:a1:3b:97:cb:f8:df:17:d1:ec:
f2:68:0d:72:5e:12:d2:9c:e7:89:64:23:ed:7e:37:
6c:e5:c5:ed:88:15:b7:a4:14:2c:7c:3d:6f:d7:a5:
b6:da:98:f5:c3:2b:dc:a6:ab:71:ff:b3:5b:d5:86:
b5:4f:17:4b:b5:38:9c:ef:7c:91:a3:13:fa:c0:a7:
01:b7:2f:d1:a8:c1:af:c5:57:6a:cc:c7:99:f7:7e:
2f:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:C6:19:36:5A:F1:42:AB:19:13:BA:6A:02:17:CB:CC:E7:B3:5B:3E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F3700EBA484D11F0B424028BDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.234.118.0/24
156.234.123.0/24
Signature Algorithm: sha256WithRSAEncryption
39:30:e4:f6:f6:e4:2e:e1:18:24:b7:95:08:06:87:42:4e:49:
39:1b:d7:56:43:1d:b5:a4:32:71:f2:ae:6f:9e:8a:19:63:e0:
be:5c:ce:80:cf:e3:84:e4:76:51:bb:65:cb:89:35:e5:ca:98:
52:b3:70:9c:9a:a3:b8:93:c3:75:6b:b7:d8:78:c8:28:be:d4:
ba:fe:69:f7:f8:16:3f:87:3d:54:82:67:f9:36:0a:e2:7a:87:
76:bb:15:16:4a:a9:96:4c:7c:92:91:65:dc:d3:17:a5:c1:7a:
b2:0d:89:ad:3b:5d:d0:6c:78:32:9f:7b:13:0e:e0:16:d8:d2:
7c:ea:a5:3c:6f:45:12:e3:30:2c:92:89:1f:76:24:7a:9d:fa:
17:0a:87:a0:c3:72:00:e1:11:2a:65:55:07:85:70:c1:f9:4c:
19:9b:0d:fd:89:e7:b1:3c:82:99:32:94:f2:e6:48:85:7d:85:
f0:b5:d2:5a:b2:bd:af:9b:04:4c:11:b6:0a:c3:78:1b:4e:70:
2b:d3:38:2e:ac:49:ae:9f:fc:98:61:de:30:37:b6:53:7f:81:
7d:c0:84:5d:86:ec:81:ec:7c:da:ed:87:70:c6:25:47:98:48:
cd:ca:4a:18:85:d2:d1:23:a6:16:4d:69:cd:5a:08:9d:0a:91:
be:67:2c:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 19 13:55:03 2025 by rpki-client