Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/61CA5294617611F0867263A0DAE4EC9C.roa
File: 61CA5294617611F0867263A0DAE4EC9C.roa (raw, json)
Hash identifier: aSP1PWIkpHS1Sr9eg2UhXd+PRXAG/Fl4Pkh1QDi3ZCA=
Subject key identifier: 47:70:91:F0:A8:73:52:7C:DE:8A:51:C3:5D:78:15:F3:64:26:66:08
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016549
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/61CA5294617611F0867263A0DAE4EC9C.roa
Signing time: Tue 15 Jul 2025 12:22:33 +0000
ROA not before: Tue 15 Jul 2025 12:22:27 +0000
ROA not after: Tue 19 Aug 2025 12:22:27 +0000
asID: 53835
IP address blocks: 156.231.104.0/24 maxlen: 24
156.245.190.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91465 (0x16549)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 15 12:22:27 2025 GMT
Not After : Aug 19 12:22:27 2025 GMT
Subject: CN=68764809-e099
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:62:b9:43:d0:df:a8:2f:8d:44:b2:85:d9:d3:
4b:6a:e1:e8:dc:ca:42:43:45:82:27:6f:19:a3:2a:
62:0d:f2:87:9a:57:80:01:2b:8c:a5:dc:ec:98:f5:
31:62:21:cb:06:fd:84:88:ec:f7:e2:c1:26:4e:b3:
7c:0c:d1:62:9d:f2:c4:67:e3:27:77:89:f3:68:cd:
39:6b:2e:e2:94:16:b2:fa:94:6c:6e:01:72:85:17:
45:71:d4:fe:67:65:fe:4b:8a:e2:31:c6:89:1f:cc:
e4:e5:1c:b6:e7:37:ff:07:d5:3a:cb:fc:24:7d:6e:
53:0b:cc:1f:1a:f0:ed:58:41:a8:12:47:c4:a3:b0:
78:75:e6:da:da:9a:3d:a1:c2:12:bc:86:b5:e0:e9:
f1:0b:00:8b:32:62:ab:42:99:68:ba:0a:c4:04:69:
33:05:cd:64:b0:07:12:f6:c3:99:32:dd:c7:ff:df:
1a:54:d0:f6:5d:5d:9c:8d:3e:af:3e:6e:d8:3c:6f:
f8:39:e3:c6:8b:b9:fb:9e:30:81:2c:e5:d3:a4:ea:
84:ed:6b:e8:8b:e3:6d:b0:4a:1d:37:a8:fb:13:f8:
ea:74:06:26:79:b6:4e:6a:ef:08:d8:3c:41:56:79:
28:e5:94:7f:e7:0c:f2:3a:67:8c:03:99:bf:49:26:
e2:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:70:91:F0:A8:73:52:7C:DE:8A:51:C3:5D:78:15:F3:64:26:66:08
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/61CA5294617611F0867263A0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.231.104.0/24
156.245.190.0/24
Signature Algorithm: sha256WithRSAEncryption
af:b4:b4:14:45:d9:a3:af:e5:19:d2:cc:8a:f1:80:83:61:40:
b8:9f:4f:b6:9b:49:b3:24:d4:61:cd:52:5d:a3:bb:70:8c:1f:
31:ee:0d:17:e9:e1:93:db:24:99:80:0d:37:79:e4:1d:11:af:
34:24:02:b0:6d:6b:4f:9c:2a:24:55:2f:5e:ee:b0:d2:97:cb:
3e:7b:5e:98:92:37:e2:03:71:e2:55:56:04:58:5f:90:84:fb:
3b:cb:67:5c:95:b7:6e:10:de:d8:7d:50:d2:77:51:93:c5:0e:
61:dd:4b:86:cd:bf:a6:fd:00:44:c2:54:5f:ed:ff:1b:ac:56:
f8:ba:6f:a3:66:c8:9a:c1:58:c4:01:a0:e9:a2:fc:97:a0:9a:
7a:70:2f:25:ff:e0:38:72:29:fa:64:67:7b:ad:13:07:18:4f:
41:e8:db:09:b3:a5:19:a7:fe:31:85:ef:af:61:4a:91:08:4b:
22:a3:2f:57:df:d5:94:20:65:66:69:ce:99:a3:9e:a2:a3:ce:
4a:b2:c1:49:9e:12:6a:ba:c3:12:db:05:2b:aa:3e:78:d5:06:
14:1f:80:5a:07:fe:9e:00:6c:de:97:f2:77:5f:de:a5:4c:17:
b8:11:e5:fa:c6:63:4f:c8:5c:d1:0f:2c:6e:4d:49:4a:30:f4:
0e:47:0c:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 13:34:26 2025 by rpki-client