Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0DA1A014590611F0AAC0E3D3DAE4EC9C.roa
File: 0DA1A014590611F0AAC0E3D3DAE4EC9C.roa (raw, json)
Hash identifier: Woka7oig0ITgn0a4RTPca5mDg9uE8Iu3sNxd+pJMsv4=
Subject key identifier: 4A:3C:2F:B4:29:47:27:71:9E:5E:62:12:DE:EE:75:D2:9B:74:F5:17
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016130
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0DA1A014590611F0AAC0E3D3DAE4EC9C.roa
Signing time: Fri 04 Jul 2025 18:38:18 +0000
ROA not before: Fri 04 Jul 2025 18:38:14 +0000
ROA not after: Fri 17 Jul 2026 18:38:14 +0000
asID: 398478
IP address blocks: 156.227.160.0/20 maxlen: 24
156.227.176.0/20 maxlen: 24
156.229.176.0/20 maxlen: 24
156.229.192.0/19 maxlen: 24
156.245.64.0/18 maxlen: 24
156.252.96.0/19 maxlen: 24
156.252.144.0/20 maxlen: 24
156.252.160.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90416 (0x16130)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 4 18:38:14 2025 GMT
Not After : Jul 17 18:38:14 2026 GMT
Subject: CN=68681f9a-ce7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:f9:7b:a8:1b:a1:f3:12:94:cd:1c:3f:eb:8e:
6e:6c:e5:df:15:d7:00:c5:79:54:e4:d5:80:8a:16:
54:7f:5d:ee:69:70:7d:1a:42:55:58:ca:99:32:26:
2e:60:9d:6a:e1:ea:67:96:17:d3:b1:99:71:fb:87:
1a:10:85:dd:d4:dd:10:b8:33:75:da:c8:a6:36:a8:
16:0b:ec:70:1e:a5:31:7e:ea:73:c9:f8:ca:0d:e8:
bb:47:ee:79:e8:bf:96:04:03:fc:84:66:5f:7c:7d:
29:f9:0a:20:2c:e8:44:23:7d:3f:a0:b0:8b:f3:37:
fd:b1:d7:68:66:af:bf:18:de:a5:e3:22:57:02:62:
60:ef:d7:31:10:e8:35:1e:d6:e3:42:c1:4e:f2:69:
be:32:56:b5:8c:72:22:a5:34:d5:09:7f:9f:d1:33:
13:88:a4:85:26:a7:1e:77:0b:b7:8c:57:23:04:d7:
ea:2e:96:72:2b:d4:1f:cb:7e:64:3d:db:07:a4:f1:
df:d9:9d:53:08:40:c6:9f:e2:92:5c:95:1c:3c:0c:
53:f3:3c:89:56:e0:0b:41:0c:a6:38:ae:16:45:ff:
cd:a4:2c:36:fc:91:03:b8:a0:93:8e:46:6f:2e:6f:
f4:33:6b:2b:f7:ad:bd:88:32:b7:54:28:f6:d4:39:
61:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:3C:2F:B4:29:47:27:71:9E:5E:62:12:DE:EE:75:D2:9B:74:F5:17
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0DA1A014590611F0AAC0E3D3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.160.0/19
156.229.176.0-156.229.223.255
156.245.64.0/18
156.252.96.0/19
156.252.144.0-156.252.175.255
Signature Algorithm: sha256WithRSAEncryption
7e:ed:58:f5:95:0c:0a:08:b6:5f:f2:fa:af:a3:9d:70:3d:6f:
a0:71:10:25:3f:66:81:d4:4e:05:b7:33:85:bb:db:e5:45:68:
9b:d9:fd:01:c1:f9:fd:f3:62:e4:2e:4b:4f:1d:1d:f7:04:ab:
ed:f4:f4:cd:cd:5f:71:2e:c8:cc:ce:8d:81:e9:0e:d1:f3:b3:
46:e3:9c:dc:41:63:d3:4d:38:74:1c:9b:e9:10:85:8c:f7:45:
45:15:ee:16:ed:13:eb:03:1e:cf:62:23:7e:8d:f5:e2:60:63:
cd:1c:6f:32:5d:d5:10:ff:46:d4:7c:e5:18:1b:98:d0:21:7a:
e1:03:50:34:dc:ce:51:02:0d:aa:13:63:7c:b9:de:af:87:fe:
bf:5b:71:58:39:50:c9:6f:7b:0b:71:61:0c:4e:4c:18:ff:df:
53:28:e3:82:3f:e0:30:5b:cf:cc:cd:f3:d7:dc:81:0e:fe:0c:
c4:c1:0e:c1:94:63:be:e5:84:73:ae:d7:b2:38:47:db:9a:56:
a4:dd:5e:43:b0:97:65:d4:7f:83:f8:c3:bb:4f:cc:1f:6d:a1:
df:5e:55:ff:fd:0e:6e:6e:8c:05:40:86:9e:90:ab:94:4a:06:
b4:07:ad:ea:cb:12:77:a6:fb:cd:82:3d:3f:ee:09:74:48:e8:
b5:99:02:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 13:36:03 2025 by rpki-client