Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/60BD389860A511F093E7DACFDAE4EC9C.roa
File: 60BD389860A511F093E7DACFDAE4EC9C.roa (raw, json)
Hash identifier: +Ix4fbsUF9FwL6EdSKB3cGZfQYYwZZziCc7kI04jrT8=
Subject key identifier: BD:7B:21:50:F0:C3:75:E1:C3:B7:ED:BB:5B:3C:DF:CE:1B:D7:A4:65
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016528
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/60BD389860A511F093E7DACFDAE4EC9C.roa
Signing time: Mon 14 Jul 2025 11:26:26 +0000
ROA not before: Mon 14 Jul 2025 11:26:21 +0000
ROA not after: Wed 03 Sep 2025 11:26:21 +0000
asID: 134823
IP address blocks: 156.234.228.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91432 (0x16528)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 14 11:26:21 2025 GMT
Not After : Sep 3 11:26:21 2025 GMT
Subject: CN=6874e962-755c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:41:12:75:c8:e7:33:6b:7e:37:5b:82:17:46:
ba:31:8e:5b:4d:23:c1:ff:6d:f1:b9:b2:eb:44:25:
2d:e2:5d:b5:ae:1d:52:76:b6:5d:ed:a7:1b:e3:88:
68:b9:ba:d6:f1:81:5a:23:93:c8:9d:c8:f4:c3:12:
ab:14:92:ff:10:0b:6e:b0:d1:f3:ed:b4:1c:ee:31:
81:f5:2f:05:60:a1:f4:30:51:ee:72:a7:9d:89:d4:
10:04:a7:4b:e7:e7:60:92:aa:f4:8a:11:83:25:30:
2f:da:30:f6:28:7e:a5:cc:dd:c5:56:99:61:81:1a:
dd:61:8a:cd:6c:b2:ac:28:e7:27:e5:86:58:20:de:
a6:be:06:29:08:7f:34:04:3e:81:f5:63:57:b2:0c:
42:d8:5d:35:44:9b:cd:ab:a2:a9:46:9d:05:59:27:
0e:c1:53:d2:d7:df:a5:34:85:74:d6:94:bb:e1:ca:
41:fb:54:9e:55:d8:9d:bf:80:47:48:2e:5a:da:06:
f5:99:11:ac:08:99:42:34:25:2c:6d:24:ad:e5:00:
3b:16:6b:a7:17:e2:b3:67:28:fc:82:fe:0d:5b:8e:
ba:81:5c:8d:b3:cf:c0:f2:89:03:49:71:f5:7d:74:
98:97:d4:10:14:22:4d:c5:8c:17:ab:5d:90:a3:75:
d9:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:7B:21:50:F0:C3:75:E1:C3:B7:ED:BB:5B:3C:DF:CE:1B:D7:A4:65
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/60BD389860A511F093E7DACFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.234.228.0/22
Signature Algorithm: sha256WithRSAEncryption
81:8e:c3:5d:22:68:78:08:68:7c:bd:05:f7:ee:3e:1d:23:66:
e6:37:dd:b5:af:4a:48:5d:57:06:83:b5:89:0f:50:71:3a:d8:
96:61:cd:7d:3d:e3:e4:d6:77:d3:6e:fd:52:a2:60:b4:a5:07:
ec:6d:5c:e5:bf:34:08:a1:5f:d9:90:5e:1a:0b:78:a9:a6:1e:
ea:d2:ed:92:d1:b3:af:ce:75:04:dd:f4:3b:6d:b7:8b:6c:c3:
a5:35:47:b9:1e:36:71:de:2d:89:7f:8d:67:b5:e6:ec:a1:c7:
b3:2d:58:b6:48:ee:94:6a:13:07:3d:b1:16:0c:d9:74:d8:5a:
4c:c3:35:73:bc:4c:46:91:f5:ef:1b:7d:29:fa:a1:1b:8c:25:
3e:ab:82:17:fc:d1:85:34:38:b6:1f:85:86:f8:ca:52:65:f8:
c7:bf:a0:c5:de:25:fd:b5:bb:61:64:7f:e2:61:5b:3e:f3:62:
7b:ca:83:46:d7:2b:32:27:1c:e6:fc:b5:f0:cc:05:ab:f6:4a:
d5:b7:49:52:8f:c0:92:28:21:de:f1:30:5e:97:f5:1d:23:7a:
94:8a:a7:98:44:d3:f2:84:17:2e:ff:12:e5:f6:fd:aa:6c:f3:
e0:72:e9:04:e2:11:f2:a3:e7:b5:c6:d7:e8:1c:65:47:c9:a4:
92:8a:7b:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 13:29:27 2025 by rpki-client