Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9C8EEFD85D5D11F0A6FF6BACDAE4EC9C.roa
File: 9C8EEFD85D5D11F0A6FF6BACDAE4EC9C.roa (raw, json)
Hash identifier: 50IXLgFqnifsmRtnmJp9rgBiwIx7VzkAJrGLkUBNN8A=
Subject key identifier: 92:49:0A:0F:D9:3E:87:69:1F:00:BE:8E:3A:08:D1:21:D5:2D:66:1C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016453
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9C8EEFD85D5D11F0A6FF6BACDAE4EC9C.roa
Signing time: Thu 10 Jul 2025 07:15:09 +0000
ROA not before: Thu 10 Jul 2025 07:15:04 +0000
ROA not after: Tue 11 Aug 2026 07:15:04 +0000
asID: 142132
IP address blocks: 156.230.11.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 04:08:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91219 (0x16453)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 10 07:15:04 2025 GMT
Not After : Aug 11 07:15:04 2026 GMT
Subject: CN=686f687d-4a92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:86:b8:39:d6:59:a4:16:b5:d7:fd:0f:0d:92:
cf:ed:ea:1a:83:28:ca:c5:84:c5:33:e7:63:fa:6d:
ae:bb:8c:50:f2:44:95:f7:1e:10:ce:d6:b4:71:45:
73:08:9d:aa:a1:ab:a4:e7:fb:78:56:2c:6d:1c:c6:
b7:e8:76:81:7e:2d:61:d1:8b:1a:ba:53:f2:73:39:
01:58:76:4e:8b:e8:14:0e:ae:10:ec:27:db:2b:44:
81:af:62:e6:e6:b5:6c:1a:d6:73:08:a9:9e:28:64:
a1:75:72:65:d3:bc:21:f7:76:45:65:db:22:3f:b3:
a8:d6:ab:56:9c:e6:35:ed:d1:e7:af:41:41:2f:7c:
d7:b9:82:de:cc:d5:c9:57:45:ba:26:b1:d9:6f:97:
12:e8:3e:28:7a:9f:bf:f1:3e:c6:0d:48:53:26:e6:
55:6b:6c:4d:25:98:77:22:71:d8:76:53:eb:d1:21:
b5:76:df:e9:fc:b0:e8:e9:ba:32:46:0b:c2:0c:b6:
05:f8:00:60:2c:ca:60:84:38:b8:aa:14:7a:c1:55:
ca:1b:bd:d2:f7:2a:09:e4:4d:bc:11:53:a9:bb:71:
f2:03:e4:dd:e0:a5:5f:ce:6b:42:30:78:fd:8a:2e:
4b:35:4e:cb:61:38:e1:de:f0:bd:73:f7:05:d3:1d:
83:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:49:0A:0F:D9:3E:87:69:1F:00:BE:8E:3A:08:D1:21:D5:2D:66:1C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9C8EEFD85D5D11F0A6FF6BACDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.230.11.0/24
Signature Algorithm: sha256WithRSAEncryption
30:59:ef:d8:ad:0e:29:df:55:41:5b:8a:d8:da:97:9f:b8:43:
82:7d:96:70:11:fb:3d:c0:e3:14:a3:ca:1c:13:a1:ea:bb:2a:
f3:e3:b5:a4:77:ed:0f:58:a6:71:05:5b:5b:b2:ac:6d:04:f7:
b3:df:58:26:0d:01:e0:f1:57:ec:63:00:91:04:3b:4b:ce:5b:
92:25:46:ac:78:c0:dc:7c:3e:5c:d2:b9:47:f5:7a:72:44:63:
76:cd:b4:da:88:c7:2a:1a:5c:3f:f8:3a:c7:b5:92:17:ba:75:
0c:e1:93:e0:e2:02:83:99:a3:ba:94:a0:ec:b0:3c:12:52:b2:
75:c6:21:69:42:93:94:da:49:80:47:ae:6e:1f:40:a4:43:b5:
e5:4f:87:d2:89:80:3a:d2:67:53:7f:59:1d:01:90:2a:47:1f:
26:c0:af:8b:0a:2b:2d:ed:5b:fa:2c:78:a5:46:40:52:15:3d:
0f:f3:ae:c4:4a:b1:ab:34:f6:a4:5d:0d:1c:dd:cc:66:f1:97:
92:4e:87:fe:a9:da:9e:a3:41:40:2c:ff:83:90:48:43:40:e0:
4d:b2:6b:ff:aa:47:57:3b:7d:01:d1:1d:b6:25:41:99:7c:f2:
89:a8:8d:56:78:27:26:44:be:8e:de:50:22:6a:49:70:4e:80:
9b:0f:2c:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 21 02:19:04 2025 by rpki-client