Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/418F0BD05B0B11F0BABFEE88DAE4EC9C.roa
File: 418F0BD05B0B11F0BABFEE88DAE4EC9C.roa (raw, json)
Hash identifier: wX7wHcHORp0StKBHE4BMSKkpvOFu4Jn16MsLQjAp95Y=
Subject key identifier: A1:A8:67:4B:51:17:28:C1:AD:AB:39:2B:C0:CB:7C:3A:AA:C2:EC:3E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0162CC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/418F0BD05B0B11F0BABFEE88DAE4EC9C.roa
Signing time: Mon 07 Jul 2025 08:20:36 +0000
ROA not before: Mon 07 Jul 2025 08:20:30 +0000
ROA not after: Thu 07 Aug 2025 08:20:30 +0000
asID: 200373
IP address blocks: 156.228.95.0/24 maxlen: 24
156.228.96.0/24 maxlen: 24
156.249.137.0/24 maxlen: 24
156.249.138.0/24 maxlen: 24
156.253.164.0/24 maxlen: 24
156.253.165.0/24 maxlen: 24
156.253.166.0/24 maxlen: 24
156.253.167.0/24 maxlen: 24
156.253.168.0/24 maxlen: 24
156.253.169.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90828 (0x162cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 7 08:20:30 2025 GMT
Not After : Aug 7 08:20:30 2025 GMT
Subject: CN=686b8353-a158
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:bf:8e:d8:7e:39:8d:d2:84:2d:98:67:94:ed:
aa:89:b7:ea:28:cc:ad:0e:d2:00:21:1e:79:ed:46:
f8:29:99:4e:92:dc:34:3c:0a:18:7b:36:b3:df:17:
ae:3e:7d:b9:86:16:31:2d:ed:0f:9b:d6:a6:c0:ea:
42:f3:93:f5:16:73:e3:dc:c8:43:25:8a:ff:13:b3:
25:fd:47:8b:c6:5f:60:88:d2:1f:c2:9d:39:ed:8b:
74:6c:59:48:0d:92:46:cd:41:0a:fc:3d:bb:cb:ca:
67:b1:3c:9e:a5:b9:e5:b8:b1:62:cf:ec:c3:6f:ba:
d9:2a:bb:8f:74:fa:03:9c:0b:41:1d:ea:54:d1:36:
0e:36:fa:de:36:05:db:da:5b:6a:12:9a:00:77:22:
d0:27:41:18:73:09:8a:5c:f0:29:92:c0:80:ef:e9:
3e:e5:3a:57:0a:8d:a4:af:73:d0:54:e3:ab:2d:f3:
69:a2:bf:da:fa:17:3b:c5:86:c7:9f:63:22:9a:88:
24:55:2e:33:91:e5:55:34:5c:ae:de:da:19:15:d0:
24:24:1a:17:bb:af:5b:bd:17:10:96:35:bc:c4:85:
ee:02:64:25:5d:d1:12:57:65:aa:af:06:63:de:26:
75:ca:c1:91:a5:21:60:7a:95:2b:d7:54:9e:f6:a7:
45:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:A8:67:4B:51:17:28:C1:AD:AB:39:2B:C0:CB:7C:3A:AA:C2:EC:3E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/418F0BD05B0B11F0BABFEE88DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.228.95.0-156.228.96.255
156.249.137.0-156.249.138.255
156.253.164.0-156.253.169.255
Signature Algorithm: sha256WithRSAEncryption
24:07:79:0e:77:e5:cc:fa:16:cf:5f:bc:53:3f:f0:ab:07:99:
c2:b1:23:73:85:a9:a9:7c:45:9f:aa:69:db:25:93:da:ac:84:
bd:cc:f2:90:74:4f:9f:9d:4d:f5:1e:58:c7:4d:07:1d:19:eb:
ba:fb:df:6a:7d:18:01:5c:87:28:f2:fe:27:2f:8b:3e:cf:b7:
4f:c6:77:7b:54:a8:0d:5b:07:6c:b4:a8:90:b8:b1:c3:7e:61:
2c:13:d0:40:61:0d:68:53:8a:1d:f3:5c:af:8e:78:e6:57:3c:
0a:89:36:50:8c:0b:fe:2e:97:61:41:c1:53:ed:02:fd:fb:d2:
f5:68:fc:68:16:8e:37:a0:bd:2f:dd:2f:12:0e:f4:ee:b9:6a:
28:72:9a:cc:a5:17:dc:b5:87:b1:ba:8e:0e:c8:fb:65:87:ea:
f6:ae:89:1c:a1:03:54:83:91:3b:b5:c4:4e:d4:6d:00:18:3d:
ee:fc:78:5b:0d:9b:2a:20:d3:3e:da:34:10:7e:24:23:2e:bf:
5f:19:89:49:99:7a:78:c1:46:4a:f6:24:0a:94:22:2b:e3:08:
54:e5:0b:5b:ad:c7:53:44:7c:19:71:41:fc:22:10:f7:a1:50:
ab:1a:29:93:b1:ec:49:be:2e:f7:84:e0:24:76:70:4a:d4:e7:
dd:52:9f:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 13:33:39 2025 by rpki-client