Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/58751B4458B511F0AD48CCCDDAE4EC9C.roa
File: 58751B4458B511F0AD48CCCDDAE4EC9C.roa (raw, json)
Hash identifier: SRnfYMbikoOiWTQdkm7zRWjJUd1paD0rWt5igLUgSpA=
Subject key identifier: 99:BA:51:BD:F7:BE:6B:F6:96:60:77:0C:AD:C6:65:8E:8C:5E:23:D8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0160B5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/58751B4458B511F0AD48CCCDDAE4EC9C.roa
Signing time: Fri 04 Jul 2025 09:00:35 +0000
ROA not before: Fri 04 Jul 2025 09:00:29 +0000
ROA not after: Sun 27 Jul 2025 09:00:29 +0000
asID: 138643
IP address blocks: 156.234.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90293 (0x160b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 4 09:00:29 2025 GMT
Not After : Jul 27 09:00:29 2025 GMT
Subject: CN=68679833-6361
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:a8:c6:52:cb:fa:46:fc:f4:89:7b:f2:83:f0:
b4:d8:2f:9d:3f:bb:87:2d:d4:4e:1c:55:be:ea:73:
f5:13:c2:28:06:a8:a9:19:e9:f2:c9:d9:27:04:c1:
3f:0b:a5:f2:94:b5:af:0a:bf:64:83:17:69:aa:40:
e4:8d:50:b2:8a:ff:87:f6:14:f8:a7:a9:ca:b1:2e:
22:50:2a:85:a5:1f:60:5f:ff:8e:2a:cb:c1:53:03:
f5:2e:ac:c6:91:b9:44:f5:80:36:1d:c8:25:ef:79:
83:1c:7c:40:e5:50:36:af:87:ae:c2:eb:94:79:15:
02:e2:e4:56:eb:7d:09:f1:35:0d:e4:e3:f8:33:dd:
8d:e7:3e:09:76:8a:61:bb:e3:f6:ee:c1:4e:55:ba:
8c:61:91:b7:ee:cb:32:89:5b:93:a0:45:09:4f:cd:
31:42:25:92:a0:33:a9:63:f8:7a:66:b1:76:0f:79:
08:f8:a3:b2:ea:12:39:49:d9:34:e7:a7:a3:d2:e1:
b0:e2:75:0c:f8:82:a9:1f:df:6d:8f:2f:86:db:86:
5c:79:70:aa:01:59:67:43:b2:31:9e:fa:fa:80:cc:
9f:00:10:d5:1d:79:da:1d:d3:40:5e:a9:a8:48:13:
16:b2:79:8c:63:12:a7:1c:a3:5f:f4:b4:19:47:36:
4c:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:BA:51:BD:F7:BE:6B:F6:96:60:77:0C:AD:C6:65:8E:8C:5E:23:D8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/58751B4458B511F0AD48CCCDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.234.0.0/24
Signature Algorithm: sha256WithRSAEncryption
98:8e:68:04:0d:41:79:a7:7d:7f:0a:47:33:5d:55:41:4d:e8:
91:cb:8d:a8:6f:a3:69:c9:c2:ad:9c:40:a6:46:a7:c3:0b:95:
b4:92:3a:3e:8b:86:a8:7e:2f:f0:be:70:6c:a5:ff:6a:6c:ff:
a7:ba:cf:1b:62:ec:c4:ee:10:8f:63:db:b7:c3:d5:18:8d:ea:
ef:d4:42:5b:ac:cc:16:a8:68:91:81:91:ac:91:f4:d7:8b:3c:
6d:17:fd:4d:92:9c:e3:7a:86:27:2f:c3:6c:cc:22:30:9d:39:
3d:ef:f8:49:ea:c3:cb:d5:c6:56:2e:dd:fa:f9:7d:fc:c0:14:
61:c9:ec:79:45:e5:67:d7:62:aa:13:f7:82:23:36:31:5b:7d:
21:7e:4d:5b:1d:b2:50:18:39:15:d2:ae:f3:69:23:8a:90:c4:
dd:df:95:4c:25:40:7f:18:4c:ad:bb:c7:ad:d9:03:3b:e2:09:
5b:7b:cf:bd:8f:2d:b2:ce:d0:16:eb:24:0f:14:9e:f1:b8:3c:
9b:da:ba:27:01:c6:6c:85:68:4c:e2:15:02:c4:62:83:70:c1:
3e:2c:b7:ec:15:aa:14:be:7a:42:ce:36:37:13:83:dd:ee:eb:
d6:1d:53:c9:41:89:91:2f:69:7d:d8:46:5b:b3:c0:35:9b:84:
b7:c1:31:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 13:28:26 2025 by rpki-client