Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/99EBB96C618D11F0814FD0B6DAE4EC9C.roa
File: 99EBB96C618D11F0814FD0B6DAE4EC9C.roa (raw, json)
Hash identifier: 9w+VuDyXTAk/2Lqb1AOAtODrwq2uM8cPxAW+TJDT+SA=
Subject key identifier: B6:07:D9:E0:4F:0D:BF:FC:0F:D4:59:B3:6E:AD:F4:DD:DF:11:C1:59
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016563
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/99EBB96C618D11F0814FD0B6DAE4EC9C.roa
Signing time: Tue 15 Jul 2025 15:08:45 +0000
ROA not before: Tue 15 Jul 2025 15:08:40 +0000
ROA not after: Tue 22 Jul 2025 15:08:40 +0000
asID: 61461
IP address blocks: 156.255.128.0/17 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91491 (0x16563)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 15 15:08:40 2025 GMT
Not After : Jul 22 15:08:40 2025 GMT
Subject: CN=68766efd-6155
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:78:f3:9f:ba:e1:89:fa:11:2e:24:6a:03:3f:
b0:7e:e2:c5:dc:12:07:9f:18:72:1b:c3:0f:08:20:
31:0a:24:ea:70:4c:bb:28:5a:85:ae:b1:13:93:5d:
00:1d:cd:4d:9c:b3:67:9a:32:a6:ec:64:9c:fa:da:
77:1c:a2:53:50:59:a7:e5:64:0f:63:65:82:69:84:
33:a8:fe:34:ec:66:b3:7f:00:9b:47:3e:9d:c6:7e:
d7:07:02:9d:6d:5a:71:bc:ae:cf:ca:3d:55:9b:f6:
6d:d2:ee:e0:4f:ac:90:47:a6:90:56:db:c5:81:b4:
08:7c:43:7e:66:9d:d4:27:d6:48:9d:87:ce:ac:a8:
fd:61:42:e2:82:02:4a:4e:eb:46:1a:05:fe:41:b3:
68:7c:43:36:c2:70:08:27:f8:5e:b8:86:4e:76:56:
d2:17:09:fd:7b:7a:6a:26:8e:1d:66:f1:9b:04:6c:
8f:21:d8:02:6b:5c:8f:c6:35:85:ec:ec:57:ab:9d:
9e:17:63:9b:d5:92:f5:7d:05:85:6a:d2:71:1b:05:
7e:9d:d5:ad:14:6c:d4:31:2c:67:dd:99:85:29:2d:
9b:2d:b6:9a:d8:3f:ab:7d:9e:19:56:8f:63:da:a0:
19:10:4b:4d:39:9c:35:1b:2a:4c:f2:98:2f:c6:ad:
4c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:07:D9:E0:4F:0D:BF:FC:0F:D4:59:B3:6E:AD:F4:DD:DF:11:C1:59
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/99EBB96C618D11F0814FD0B6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.255.128.0/17
Signature Algorithm: sha256WithRSAEncryption
65:dd:4e:0f:78:af:cd:bf:c6:8b:5e:44:b6:09:5d:e0:dd:1e:
47:17:db:f3:7d:91:27:56:cb:5c:af:93:69:d7:4f:a8:3b:9d:
09:01:35:0f:8b:40:cc:26:b6:e8:61:cb:95:4e:1c:a7:08:7e:
85:9d:c3:64:f1:20:09:34:7b:ba:7e:8c:68:bf:31:e3:e8:ae:
5d:30:a8:ea:b1:46:0c:bb:0b:84:fd:89:f2:4a:e1:ff:04:c9:
ff:cc:56:96:14:14:f6:32:ac:c7:f0:be:61:0b:7f:bc:50:be:
64:dc:35:ad:8f:de:fe:5c:5b:10:4f:ee:bb:fb:37:d4:49:99:
9a:5d:62:b4:20:e2:f5:bc:41:76:0a:b6:21:6d:00:84:54:9a:
78:90:53:af:63:84:c6:41:dd:90:25:98:03:8a:59:a6:f5:9b:
d7:f6:74:55:eb:c2:a8:82:de:09:79:c2:7b:6a:6d:a8:04:9b:
7e:fb:25:b9:f1:9f:d3:01:fd:23:09:85:b7:23:d9:c7:a1:b6:
41:e1:24:b0:d3:23:ba:3f:1d:fa:0e:8b:10:4e:35:b3:2b:e4:
a1:ca:e7:b9:f2:05:ff:f8:3c:b9:14:1d:ce:e8:12:dd:d5:3b:
63:b7:0c:c3:ca:6d:17:60:e5:5d:3b:49:44:3f:a4:65:a3:3b:
1a:52:27:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 13:35:46 2025 by rpki-client