Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/926C07EE608611F09AC3368CDAE4EC9C.roa
File: 926C07EE608611F09AC3368CDAE4EC9C.roa (raw, json)
Hash identifier: NTLAT+PEjOjQuOMjzb9CuWaFCPPZ082oTRlUQnTWS+s=
Subject key identifier: F5:DE:92:2C:3F:ED:03:C6:61:3E:BC:D5:FE:7C:07:F0:A6:E7:5B:1C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0164F4
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/926C07EE608611F09AC3368CDAE4EC9C.roa
Signing time: Mon 14 Jul 2025 07:45:55 +0000
ROA not before: Mon 14 Jul 2025 07:45:50 +0000
ROA not after: Sun 17 May 2026 07:45:50 +0000
asID: 138456
IP address blocks: 156.252.21.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91380 (0x164f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 14 07:45:50 2025 GMT
Not After : May 17 07:45:50 2026 GMT
Subject: CN=6874b5b3-8742
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:d8:6a:b5:a6:8b:26:0b:79:ed:1c:cc:59:25:
77:b0:50:4a:36:25:d3:36:14:99:51:56:0b:8d:f8:
44:d7:8c:13:f3:1f:3d:9a:7f:ce:48:80:bc:fb:a2:
b4:4b:04:06:4f:f1:06:a1:a4:e9:e2:86:40:41:af:
89:4d:74:70:24:be:30:af:fc:7b:06:95:a1:19:bd:
e6:c1:3b:b1:9c:1f:ed:e0:c2:dd:e5:55:84:1c:f1:
98:25:96:15:99:60:c8:5e:fc:2b:3d:e9:af:74:54:
7f:28:45:6e:b7:07:3d:74:27:0c:11:fd:97:f5:bd:
8e:75:14:7a:81:80:ed:bb:41:ef:e5:52:50:c4:f7:
46:85:3b:39:24:83:cf:8d:36:63:3c:25:e4:ee:12:
0c:5f:08:a7:79:fc:b0:de:20:23:11:f3:61:a6:2f:
d3:43:f6:75:06:1c:01:de:59:48:dc:fa:10:28:84:
1e:63:a4:05:f6:98:97:c0:e7:cf:3f:a8:4b:a7:71:
3c:75:14:f5:a1:aa:f3:2e:4f:f4:ed:34:ab:c6:53:
89:de:2f:14:9a:96:30:ac:fb:50:d3:c4:6f:2a:52:
35:03:24:f8:15:26:7e:2e:f8:39:27:e8:bb:55:6a:
39:35:87:bf:2e:ca:8a:59:87:53:8d:64:5b:32:7d:
d2:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:DE:92:2C:3F:ED:03:C6:61:3E:BC:D5:FE:7C:07:F0:A6:E7:5B:1C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/926C07EE608611F09AC3368CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.252.21.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:ea:00:27:58:55:5c:16:59:fd:ac:a5:bf:51:64:2c:09:d9:
f9:ea:3c:56:07:d8:80:cb:7f:67:61:26:ab:69:dc:7a:20:6b:
ef:93:36:e2:be:b9:d9:4c:ca:c8:9f:61:dd:ff:40:39:78:18:
99:cf:e5:6f:2f:8c:d2:df:de:db:4e:9b:33:63:2a:26:97:6b:
5c:ed:be:f4:d5:66:10:ad:7b:98:72:4b:e3:a5:a0:44:f7:21:
15:f0:0a:54:25:da:5a:85:f9:cf:91:ae:ec:94:1b:23:bf:90:
c2:63:30:e4:fe:82:94:6f:a4:0f:c3:47:5e:3b:04:36:23:ae:
15:da:eb:27:e0:bf:12:a8:6e:ed:d9:50:19:3b:98:75:90:64:
4d:da:95:6a:5e:b8:5f:ce:23:2a:46:7d:af:bf:f0:c9:b9:e7:
f3:a7:c3:55:0b:03:ba:60:2b:2b:7c:a1:bb:f0:1c:38:6e:17:
88:35:5d:2a:59:69:78:55:c1:46:36:89:55:ea:30:86:28:8f:
52:e4:bf:b5:56:d5:97:b5:64:6e:05:d1:ab:55:76:c0:9f:a2:
20:28:c7:a6:40:a0:ff:98:e3:9b:eb:62:a1:88:5c:dc:c3:21:
9b:ec:1e:8d:c2:f4:bb:5d:b0:ed:d2:82:3f:9a:7c:10:2e:84:
8f:94:ab:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 18:25:11 2025 by rpki-client