Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4914FD6659CF11F0B07693F4DAE4EC9C.roa
File: 4914FD6659CF11F0B07693F4DAE4EC9C.roa (raw, json)
Hash identifier: Pv4t7R//QwhilXiI9+vwr7xK0J+nGDBIb6QiwF7uO2Q=
Subject key identifier: 0D:0A:78:10:1A:EC:A2:40:25:79:73:B2:A0:B6:D1:D3:4C:97:6A:3F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0161D3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4914FD6659CF11F0B07693F4DAE4EC9C.roa
Signing time: Sat 05 Jul 2025 18:38:47 +0000
ROA not before: Sat 05 Jul 2025 18:38:42 +0000
ROA not after: Fri 17 Jul 2026 18:38:42 +0000
asID: 394432
IP address blocks: 156.227.160.0/20 maxlen: 24
156.227.176.0/20 maxlen: 24
156.245.64.0/18 maxlen: 24
156.252.96.0/19 maxlen: 24
156.252.144.0/20 maxlen: 24
156.252.160.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90579 (0x161d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 5 18:38:42 2025 GMT
Not After : Jul 17 18:38:42 2026 GMT
Subject: CN=68697137-f251
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:35:bf:76:97:64:6d:cb:60:3c:35:11:b7:92:
30:60:8d:b3:47:37:96:f8:f8:9d:fe:f2:91:dc:4c:
61:47:41:d5:9a:96:b7:e9:a1:d3:83:93:98:29:5a:
79:6f:43:c1:7d:76:ec:be:8f:56:c3:bd:58:ab:89:
51:a1:38:ea:a6:62:bb:de:51:71:7b:c5:ae:5d:8f:
ce:85:46:7e:ae:6d:49:24:61:96:b7:b6:67:d3:03:
4b:a9:27:a1:0e:1b:1d:ed:80:af:a8:6f:6b:1d:3b:
50:2d:c1:a3:ae:ab:31:e2:1b:4c:f0:93:b5:a3:21:
b1:d0:ac:5a:fa:11:91:aa:e0:96:5d:92:1e:09:80:
a3:bc:64:66:c4:ae:c4:ad:72:2e:2c:d3:52:8e:b1:
e5:ef:fe:8a:80:ea:cc:2e:f0:5f:05:64:ba:10:c8:
7c:0d:c5:d1:2c:f2:7a:9a:ab:fe:88:81:15:dd:86:
47:bf:66:9a:2c:47:20:59:bb:f1:f6:e7:ad:a4:03:
01:9f:a7:7e:81:27:dc:54:f4:9d:9d:7d:83:3e:99:
ca:7e:0d:21:b1:28:45:ef:c1:d5:af:ff:d1:79:43:
ce:23:d5:54:13:8a:c7:67:c9:52:5f:43:ba:79:39:
71:73:8e:b0:e0:fd:15:34:e1:ae:98:f5:3e:45:43:
8b:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:0A:78:10:1A:EC:A2:40:25:79:73:B2:A0:B6:D1:D3:4C:97:6A:3F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4914FD6659CF11F0B07693F4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.160.0/19
156.245.64.0/18
156.252.96.0/19
156.252.144.0-156.252.175.255
Signature Algorithm: sha256WithRSAEncryption
8d:7c:44:81:9c:70:de:96:58:ee:8e:9c:db:41:7d:d3:17:40:
a1:ab:82:78:54:d4:60:b4:a2:69:51:a5:ff:36:1e:f8:07:be:
d7:14:24:87:01:e5:ce:c4:ae:d6:17:61:c7:60:c6:82:24:4f:
35:c2:e6:59:77:73:be:2c:d5:eb:10:d3:c3:99:7c:0e:5e:7b:
f0:e1:34:cd:bb:2e:d4:5f:24:d2:3e:43:ac:8c:2d:26:90:b1:
14:10:de:5c:a3:53:b8:67:3d:43:d6:09:49:c8:6e:a1:45:a5:
dd:e1:fd:3a:e8:72:05:47:5c:e6:0f:c4:12:83:5c:01:c4:57:
d3:34:2b:5b:13:01:7a:66:b7:29:1d:b1:6e:fc:8a:55:ab:f7:
d4:7f:ea:76:7e:ba:1e:9b:2b:32:fe:31:3d:45:81:0a:4f:c6:
5b:27:4d:f7:43:7d:5f:d8:c0:6e:b5:eb:dc:b2:57:52:ba:c8:
e4:62:ea:92:27:65:95:41:68:3f:a1:15:fa:e7:f3:88:46:44:
ba:ce:17:24:18:fd:ab:85:5e:d9:b7:71:c4:48:53:2e:94:1d:
4a:4d:c1:1d:e7:aa:49:fb:9a:94:51:ca:cf:0c:6b:06:a6:c1:
46:3f:4b:78:bf:ac:da:0f:94:ad:65:11:c4:e8:e0:05:a3:ed:
31:7a:b4:97
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun Jul 20 13:41:36 2025 by rpki-client