Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7F0982D259CC11F0BF0313E2DAE4EC9C.roa
File: 7F0982D259CC11F0BF0313E2DAE4EC9C.roa (raw, json)
Hash identifier: RrIg7pp6m3Zr4yPxxBC5ymrs9EY4HndK8e1xgdLPZPI=
Subject key identifier: F5:48:36:CF:29:05:D8:D0:E5:76:A4:67:BB:25:B6:DF:05:11:A9:51
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0161CD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7F0982D259CC11F0BF0313E2DAE4EC9C.roa
Signing time: Sat 05 Jul 2025 18:18:49 +0000
ROA not before: Sat 05 Jul 2025 18:18:44 +0000
ROA not after: Fri 17 Jul 2026 18:18:44 +0000
asID: 398478
IP address blocks: 156.227.160.0/20 maxlen: 24
156.227.176.0/20 maxlen: 24
156.229.176.0/20 maxlen: 24
156.229.192.0/19 maxlen: 24
156.245.64.0/18 maxlen: 24
156.252.96.0/19 maxlen: 24
156.252.144.0/20 maxlen: 24
156.252.160.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90573 (0x161cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 5 18:18:44 2025 GMT
Not After : Jul 17 18:18:44 2026 GMT
Subject: CN=68696c89-7157
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:3e:90:4d:a1:fe:c1:f8:96:5d:b9:49:9c:b7:
f8:d4:19:4d:a0:bb:1d:1e:da:dc:7d:91:63:50:c1:
cc:8e:46:3e:82:75:25:b0:bd:39:13:55:93:17:80:
3c:01:c7:ea:a6:a3:ec:43:c2:66:a8:0c:17:02:52:
9a:cc:9f:f9:01:70:58:af:86:50:85:ca:73:6f:1d:
aa:11:4b:64:98:b0:f0:84:39:37:60:e8:1b:03:4b:
39:05:47:81:cc:ba:f4:eb:54:29:16:11:e4:06:0a:
71:da:91:69:79:02:df:bc:80:42:08:98:dd:07:42:
e1:ba:32:1a:5a:85:27:d2:51:df:59:02:05:56:2a:
ec:fe:c6:79:0f:65:de:d1:1d:a5:b6:01:a9:9b:7b:
83:cf:78:e8:f4:20:20:9e:78:d1:1e:a3:95:9f:af:
9a:85:81:38:01:2b:30:57:b3:73:3a:80:3c:01:1a:
44:aa:d4:16:67:e5:05:e9:06:15:7f:b5:e4:08:73:
98:78:5d:b8:21:bb:fa:4c:ea:ab:7e:4a:c0:b5:78:
88:a7:20:32:b2:25:5b:26:dc:51:dd:f4:1c:ca:b2:
96:03:c2:74:2e:37:4c:3c:cf:85:37:e3:c3:2f:54:
a2:05:11:b9:e5:9d:61:3d:a9:55:63:72:b6:ea:cf:
07:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:48:36:CF:29:05:D8:D0:E5:76:A4:67:BB:25:B6:DF:05:11:A9:51
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7F0982D259CC11F0BF0313E2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.160.0/19
156.229.176.0-156.229.223.255
156.245.64.0/18
156.252.96.0/19
156.252.144.0-156.252.175.255
Signature Algorithm: sha256WithRSAEncryption
06:89:e0:95:fa:39:7f:2a:ce:5e:0e:27:a4:52:20:d8:7d:8a:
d8:0b:a4:3d:00:c3:8e:bf:27:68:ac:6c:45:4d:ed:3d:93:1d:
62:6c:14:1a:46:84:54:9c:c3:dd:7c:b0:e8:fe:26:67:f6:8b:
71:e5:2a:74:11:80:cc:16:6f:55:99:26:37:79:88:b0:32:4d:
aa:da:1e:7c:a7:aa:f4:76:cd:04:0b:1e:b9:8b:07:84:7d:3c:
82:a2:9c:37:58:64:44:f6:76:9f:6b:5b:ad:c1:33:b8:f4:0d:
18:0c:de:2d:f7:7d:7e:f1:14:1a:e6:09:d8:06:51:e4:aa:16:
b0:f7:ec:24:67:53:c3:86:30:f3:29:3a:97:19:83:15:e8:95:
b5:f6:0d:d1:31:6e:e0:1a:0c:06:fc:8d:06:e6:3e:cf:4b:90:
7e:02:f1:39:d3:3e:2f:da:8d:88:16:90:e6:6d:f6:e8:ff:f8:
72:06:4b:c0:63:e8:3d:30:a1:7c:6a:69:99:c3:49:c1:0f:39:
cf:d4:ad:6c:e2:b3:31:4a:32:a2:99:8a:e8:9a:a6:6f:df:85:
cd:e7:13:1d:4e:d4:27:5f:ce:f8:f7:77:49:e5:9d:1e:9a:9c:
8f:1a:b0:18:4b:85:82:01:fd:86:25:08:d0:45:1a:3e:db:ea:
e5:6e:27:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 22:36:27 2025 by rpki-client