Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/04014C4C575A11F0B250B0F0DAE4EC9C.roa
File: 04014C4C575A11F0B250B0F0DAE4EC9C.roa (raw, json)
Hash identifier: kM01IMeHl66H/r7Pn07eUiZkL1nrQgWk0B7fxBDwNVo=
Subject key identifier: 5A:59:29:BB:79:B4:BA:49:E8:8B:E9:E8:11:BC:CE:A9:9F:55:E4:03
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016032
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/04014C4C575A11F0B250B0F0DAE4EC9C.roa
Signing time: Wed 02 Jul 2025 15:34:18 +0000
ROA not before: Wed 02 Jul 2025 15:34:13 +0000
ROA not after: Wed 13 Aug 2025 15:34:13 +0000
asID: 399195
IP address blocks: 156.227.160.0/20 maxlen: 24
156.227.176.0/20 maxlen: 24
156.229.176.0/20 maxlen: 24
156.229.192.0/19 maxlen: 24
156.252.96.0/19 maxlen: 24
156.252.144.0/20 maxlen: 24
156.252.160.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90162 (0x16032)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 2 15:34:13 2025 GMT
Not After : Aug 13 15:34:13 2025 GMT
Subject: CN=6865517a-52ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f1:46:63:89:96:d6:d1:f0:41:21:71:df:9f:
4d:04:55:2e:61:f9:db:d1:1f:7b:be:09:36:98:93:
52:2e:df:4c:c1:28:a2:72:02:c5:a5:35:d2:59:81:
7a:ac:c9:49:6b:b6:7d:76:7f:c8:ad:fe:a7:81:d7:
9c:1c:6a:39:e8:d1:64:63:08:01:84:94:ce:f8:fe:
07:d5:ea:c4:49:e1:60:53:5f:b2:24:b5:23:7b:95:
b3:6e:18:e5:aa:9d:25:11:ed:2a:f2:d5:f2:be:9d:
7a:71:2f:b0:56:66:46:92:02:d3:bf:19:72:f9:0a:
34:aa:8e:dd:99:92:f7:f6:82:fe:fe:fd:de:d3:8d:
ea:37:4b:e8:59:f9:7d:b2:6f:c5:47:81:10:25:5c:
27:cb:c1:9f:4d:a2:e5:ee:87:15:e1:2d:a3:49:70:
c7:bc:9d:db:59:9b:97:e0:1f:fd:48:de:0b:c7:3a:
83:88:8e:1f:7b:9a:c7:14:8a:9f:cb:02:b8:83:5b:
bd:52:9b:9d:32:be:5c:69:cf:45:a4:00:96:c1:31:
9a:f2:ca:ae:2d:e6:8a:15:ca:84:17:d6:1f:73:c6:
23:5e:03:a6:b2:d4:69:9f:9f:6d:09:f9:68:95:1b:
66:29:c5:61:39:75:0e:ab:cd:50:09:cc:0d:87:14:
c2:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:59:29:BB:79:B4:BA:49:E8:8B:E9:E8:11:BC:CE:A9:9F:55:E4:03
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/04014C4C575A11F0B250B0F0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.160.0/19
156.229.176.0-156.229.223.255
156.252.96.0/19
156.252.144.0-156.252.175.255
Signature Algorithm: sha256WithRSAEncryption
40:90:dc:5f:12:05:ac:0d:96:76:b5:80:6c:5c:0c:2c:5c:58:
23:02:d2:1d:13:62:fa:e0:68:33:c5:ed:bb:df:49:8c:3d:c5:
a8:b5:05:d7:ce:bf:92:86:51:26:36:10:e1:79:03:1f:34:fd:
43:fc:55:d5:4a:a9:1a:50:e8:7a:63:22:fb:f4:44:c2:a5:16:
f9:36:f5:fc:ab:5a:ef:21:61:a3:9d:f3:08:52:9c:e4:04:e0:
58:ad:52:80:02:da:5d:85:4c:f8:28:9d:fb:e8:6e:c7:39:df:
0d:93:a2:cb:df:d0:00:c8:34:73:a3:ee:e2:72:01:2d:88:15:
62:15:fe:29:e2:36:f4:b0:f4:d1:e0:31:d0:e8:3f:63:63:cc:
bb:7e:93:5c:5e:15:d2:5b:7a:40:e4:56:36:62:fa:c4:9c:38:
31:b3:ab:a9:2b:e2:9b:7f:45:ca:b1:09:b0:93:8c:8e:49:01:
d0:d7:3c:76:c2:92:99:9d:3a:9b:26:47:49:8f:6c:de:98:6c:
f8:1a:0e:47:0e:a1:7f:8f:a8:c7:be:f4:8a:12:7c:1b:82:05:
0f:62:71:10:aa:95:09:fb:b5:72:61:85:26:c8:30:4d:39:31:
f3:69:07:6f:6e:5f:09:aa:d2:09:f6:9b:28:c7:cf:7c:b6:fb:
41:5a:41:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 22:35:34 2025 by rpki-client