Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/628BD1265E7411F0BC96D185DAE4EC9C.roa
File: 628BD1265E7411F0BC96D185DAE4EC9C.roa (raw, json)
Hash identifier: YAZ7wh1HWWKx+z0VNgqBGQIGfRwebqqQV9oitkeOdYI=
Subject key identifier: 9A:B5:E5:CB:31:61:43:8A:CF:02:71:25:31:4B:22:DB:99:F5:24:02
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0164BE
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/628BD1265E7411F0BC96D185DAE4EC9C.roa
Signing time: Fri 11 Jul 2025 16:30:41 +0000
ROA not before: Fri 11 Jul 2025 16:30:37 +0000
ROA not after: Tue 26 Aug 2025 16:30:37 +0000
asID: 140869
IP address blocks: 156.225.80.0/24 maxlen: 24
156.225.81.0/24 maxlen: 24
156.225.82.0/24 maxlen: 24
156.225.83.0/24 maxlen: 24
156.225.84.0/24 maxlen: 24
156.225.85.0/24 maxlen: 24
156.225.86.0/24 maxlen: 24
156.225.87.0/24 maxlen: 24
156.225.88.0/24 maxlen: 24
156.225.89.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 23 Jul 2025 00:26:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91326 (0x164be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 11 16:30:37 2025 GMT
Not After : Aug 26 16:30:37 2025 GMT
Subject: CN=68713c31-dfd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:34:e1:49:28:0b:1b:82:50:d2:f3:49:a1:62:
22:b3:51:29:8c:71:91:b5:7f:01:95:5c:3f:3c:f4:
09:c2:44:ab:cf:44:14:ae:2e:94:ea:0c:3c:b0:f9:
b7:ed:f2:07:09:bf:bb:2c:ad:a5:84:c2:52:d8:a8:
8a:13:23:a9:50:30:22:5b:c1:86:b3:4e:4e:bd:43:
11:c9:2e:c3:b3:3b:7d:0d:bb:a8:50:d6:08:f7:35:
e3:c2:09:da:70:fb:6d:3a:83:2c:9d:c9:60:b2:f5:
79:fd:0f:ce:f1:9c:69:39:b5:d4:50:0e:87:d3:34:
4e:9b:0f:49:8f:00:5e:03:70:c5:e5:a0:4e:c3:80:
db:b5:a8:b5:bc:96:71:59:4d:3c:53:85:6a:83:e2:
fa:e3:4f:9f:84:cc:4e:c3:56:3a:a0:09:2c:d6:48:
0e:ed:97:94:5b:0c:b2:ac:7b:be:f9:66:91:6e:ef:
5c:d7:9a:3e:46:e5:53:b0:2e:29:66:66:8c:46:8e:
24:71:72:81:53:62:10:92:28:50:d8:db:76:29:1e:
19:e9:d5:f7:13:ec:70:9c:ab:96:3d:35:15:db:53:
23:89:d4:ae:94:d8:20:9a:3d:af:d5:01:88:6d:b2:
23:26:e2:e1:dd:71:9b:9f:ff:32:23:93:cf:ad:95:
b5:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:B5:E5:CB:31:61:43:8A:CF:02:71:25:31:4B:22:DB:99:F5:24:02
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/628BD1265E7411F0BC96D185DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.80.0-156.225.89.255
Signature Algorithm: sha256WithRSAEncryption
81:ef:3c:40:50:4e:1d:c8:f4:aa:59:94:a3:17:7b:14:23:b4:
40:c9:e6:93:f3:15:01:92:77:e0:ed:a9:6b:0c:11:a1:ab:2c:
fd:de:f1:a3:11:aa:2a:2e:c2:43:90:26:18:cd:78:ca:1a:7e:
4c:c8:d7:82:aa:a1:7e:96:6e:6d:1b:f4:a2:26:6b:a1:d4:10:
32:18:25:c5:52:5c:7b:64:63:f5:1b:38:c9:b2:64:02:b6:bc:
2c:93:45:d2:a0:70:e7:d9:ce:66:76:dc:4a:80:e6:90:d3:5a:
fd:5b:18:1f:88:69:52:90:5a:e3:2f:6c:e6:dd:33:6b:d4:e7:
5c:e8:87:7d:5d:d6:91:50:f7:f3:49:fb:d8:e1:62:b6:f5:cd:
fd:ae:7e:7c:9f:6a:76:2e:27:a1:3d:59:53:89:a9:58:41:2b:
50:9b:3c:a1:1f:a9:7e:d0:a7:aa:1f:9c:5d:3f:12:fb:ed:af:
25:b1:9e:d2:e6:db:c3:07:2d:99:5e:34:c8:36:80:8a:1b:a1:
50:b6:19:b7:e8:a5:ec:0f:4e:00:f2:21:f9:e1:00:66:66:c9:
cb:5f:7d:bc:38:ac:e4:8c:a3:61:ea:74:ca:79:d9:19:f9:fe:
e3:c6:e8:1c:5a:5b:b4:0b:6c:5c:54:02:81:54:58:ac:c2:ca:
e3:50:21:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 21 07:37:14 2025 by rpki-client