Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/52750FBE572B11F0835FBBCBDAE4EC9C.roa
File: 52750FBE572B11F0835FBBCBDAE4EC9C.roa (raw, json)
Hash identifier: SAFY0TLYRIzPJRmI9+kknXe7qDrifyBm1y31QaxMBFs=
Subject key identifier: DE:19:9D:B5:EC:20:BE:87:1A:BA:FD:76:29:64:A0:2D:68:41:DC:A3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016002
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/52750FBE572B11F0835FBBCBDAE4EC9C.roa
Signing time: Wed 02 Jul 2025 10:00:03 +0000
ROA not before: Wed 02 Jul 2025 09:59:58 +0000
ROA not after: Fri 25 Jul 2025 09:59:58 +0000
asID: 203020
IP address blocks: 156.233.12.0/22 maxlen: 24
156.233.36.0/22 maxlen: 24
156.233.76.0/22 maxlen: 24
156.233.112.0/22 maxlen: 24
156.241.32.0/21 maxlen: 24
156.243.140.0/22 maxlen: 24
156.244.132.0/22 maxlen: 24
156.244.136.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90114 (0x16002)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 2 09:59:58 2025 GMT
Not After : Jul 25 09:59:58 2025 GMT
Subject: CN=68650323-764f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:8c:24:8e:2e:24:a6:c5:7f:8d:84:21:45:06:
69:13:25:58:a1:18:66:c6:57:5f:5c:82:d6:4a:f0:
65:cf:df:41:3c:86:aa:db:ba:7d:63:28:3a:ef:62:
38:dd:e2:26:4d:2b:98:fc:f8:ab:77:4c:91:55:b0:
d5:4a:89:3f:10:9f:fa:24:55:9d:70:9c:a3:c5:e3:
55:a0:b1:bf:b5:71:d3:9f:f3:3c:45:64:03:ee:94:
50:68:6c:d1:c4:c8:a9:03:f1:ce:8f:8d:5f:40:a7:
f1:35:ee:58:7e:74:67:bc:6e:9d:65:a0:13:6f:91:
c8:36:d9:83:2a:0e:99:26:d7:49:6e:b4:8b:0a:e2:
66:cf:4a:73:2e:12:7a:e6:2b:8a:f2:f3:ea:aa:25:
86:a6:ff:0a:26:19:45:3f:ec:4f:de:7a:ca:74:36:
0a:2e:93:c3:29:ab:0e:94:b6:6c:6e:f3:b5:0d:bf:
ca:91:a5:90:6d:41:ae:ba:36:93:c3:c1:5c:65:4c:
3f:1d:cc:98:00:4d:51:f9:67:2a:c7:ea:99:7b:7f:
08:98:04:1c:51:79:a5:52:0c:c7:ee:8b:94:43:9e:
77:99:c0:ff:26:60:b8:c4:13:b5:c7:6e:39:91:b1:
45:cb:58:1f:57:10:aa:7e:0e:67:56:cf:f8:90:a1:
06:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:19:9D:B5:EC:20:BE:87:1A:BA:FD:76:29:64:A0:2D:68:41:DC:A3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/52750FBE572B11F0835FBBCBDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.12.0/22
156.233.36.0/22
156.233.76.0/22
156.233.112.0/22
156.241.32.0/21
156.243.140.0/22
156.244.132.0-156.244.143.255
Signature Algorithm: sha256WithRSAEncryption
0e:78:93:9d:eb:95:9e:a7:e3:a6:a8:e5:a1:8e:25:fb:e0:e4:
dd:9a:1e:92:a1:0c:69:74:e1:e8:72:9d:dd:ab:5e:fd:7c:cc:
30:e2:5c:b2:fa:65:18:64:17:c6:b1:4e:05:75:6a:29:96:c5:
42:a7:f4:0d:bb:3c:16:1d:47:84:fc:31:b2:9c:a4:72:6c:37:
14:fe:f3:52:20:ce:23:b8:b1:de:58:e2:3e:30:ed:d0:72:b4:
81:13:f6:1b:fd:5c:85:e7:58:2e:2b:d7:08:90:9f:64:e3:57:
25:23:46:fb:fb:b8:aa:52:e9:01:e8:a8:98:9e:f6:22:61:c2:
56:85:60:ee:0c:c5:4e:72:ed:d1:39:e5:46:33:cc:3e:ea:1a:
d2:8c:9c:3d:6c:e1:96:84:3b:10:33:b0:ab:2b:d8:7d:5c:ab:
e9:1e:b3:d6:39:69:ee:79:a0:7a:cc:79:25:28:34:e0:4d:f3:
ba:a6:b5:12:ba:58:9a:4a:78:c3:2f:0d:34:f5:e8:da:bd:c3:
21:5b:8e:94:52:60:a4:dd:a0:2e:40:d0:3a:5b:b4:7d:53:11:
ec:54:47:6c:26:e1:20:6c:b8:0c:20:d6:93:70:40:8b:dd:26:
dd:c2:28:d6:c6:d9:e0:cb:fb:4c:ce:10:08:eb:d5:a6:7d:ca:
4c:82:63:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 22:37:09 2025 by rpki-client