Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/76AC8D065B2411F0B48D3BA9DAE4EC9C.roa
File: 76AC8D065B2411F0B48D3BA9DAE4EC9C.roa (raw, json)
Hash identifier: 2kDrtCm9b4gUKq7fRs883I1yUYP6Mf8dof+Ee8S3xoA=
Subject key identifier: F5:AB:C3:1D:7E:D8:2F:08:DF:96:C9:2E:80:2B:4D:53:66:B1:60:DE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016302
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/76AC8D065B2411F0B48D3BA9DAE4EC9C.roa
Signing time: Mon 07 Jul 2025 11:21:02 +0000
ROA not before: Mon 07 Jul 2025 11:20:57 +0000
ROA not after: Sun 10 Aug 2025 11:20:57 +0000
asID: 395886
IP address blocks: 156.233.224.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90882 (0x16302)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 7 11:20:57 2025 GMT
Not After : Aug 10 11:20:57 2025 GMT
Subject: CN=686bad9e-cbcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:3f:67:a1:34:86:ad:94:75:eb:6e:3e:da:7a:
2d:0c:29:99:46:5b:33:4a:8a:d2:eb:f4:86:e5:d3:
a3:3f:2b:5a:2b:89:85:e2:87:92:c7:bf:af:46:ae:
13:dc:ca:5d:1a:2d:c8:9c:d0:be:48:66:ea:9e:e9:
94:57:d0:ae:8c:1b:15:6d:25:4e:c2:6b:6d:cc:4e:
b4:c1:8f:d7:30:98:e4:06:fc:61:42:2c:ba:23:65:
f7:ea:32:9a:27:19:6f:e0:b3:ca:2d:08:8c:dc:7d:
73:ea:62:5e:cf:e1:1c:27:42:0c:40:fa:84:57:6c:
2b:60:df:aa:04:6d:e6:0e:ca:4b:eb:2b:55:d5:a1:
5f:38:01:85:3b:31:fe:09:1d:72:af:37:4e:a6:2e:
ee:95:b9:55:d1:2f:34:a8:a9:81:f2:f7:c5:d1:5e:
cc:9a:ca:16:3c:99:f2:db:b9:b8:5a:14:0a:88:92:
7f:92:f1:a3:e5:c8:8b:7c:c9:4e:34:25:04:dd:be:
7b:3e:55:91:db:d6:4c:fc:ce:08:cf:19:2f:a2:da:
c6:7d:59:b6:df:0d:91:3f:3f:ac:22:d6:4a:cb:c7:
ec:fe:66:d2:a5:b1:be:87:49:a5:56:3f:93:fb:b6:
66:75:3e:d4:73:ae:b0:f6:6c:9d:48:00:57:33:5a:
5b:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:AB:C3:1D:7E:D8:2F:08:DF:96:C9:2E:80:2B:4D:53:66:B1:60:DE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/76AC8D065B2411F0B48D3BA9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.224.0/20
Signature Algorithm: sha256WithRSAEncryption
59:53:25:af:0d:fe:2c:5f:a8:de:a7:33:31:67:53:7e:89:88:
20:3f:73:bf:44:da:26:c0:09:b4:ca:fb:54:3b:80:84:6e:72:
95:50:20:81:c3:ac:74:9d:e0:de:28:b4:2c:10:ca:e9:6c:ed:
64:60:ef:4c:9e:f1:48:f2:58:e0:8e:8c:81:f4:ff:42:64:0b:
ae:27:ec:37:5d:23:c7:35:0b:3b:2a:2a:39:37:ad:c7:bc:ad:
fd:d8:4a:10:10:93:ac:a3:7f:b9:c6:00:a7:32:9b:a7:ff:2e:
63:50:59:6e:16:8b:2d:f1:d7:0a:96:b1:90:6b:28:18:46:fd:
1e:82:85:e8:a5:e0:1c:b3:00:9c:44:7f:93:da:2c:8f:2e:53:
30:1a:c8:f1:83:56:65:de:68:50:09:3c:4d:62:c3:37:2e:2a:
d6:b1:c4:0b:7d:95:13:e1:bb:cb:27:f6:30:ef:db:5a:a3:14:
02:9a:54:0d:e4:d7:58:ff:b9:d0:ab:f8:ec:50:36:22:fe:0d:
9c:56:61:06:b6:fb:34:b3:c3:82:84:9a:e2:c2:b7:50:77:90:
8c:36:86:90:1e:51:c3:2b:d3:13:cd:29:47:6e:71:ec:9b:95:
99:d3:4a:63:7b:cd:c6:bd:c0:a6:2f:a9:f4:51:31:09:0d:c5:
f9:ad:a6:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 13:33:09 2025 by rpki-client