Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A1021268599B11F0BCCF8BAADAE4EC9C.roa
File: A1021268599B11F0BCCF8BAADAE4EC9C.roa (raw, json)
Hash identifier: LedoiGtGae3ewhSijsrwTyLTHwNPDhdPHFyRK9my8iE=
Subject key identifier: 54:B4:61:9D:DE:7F:8D:64:E1:F3:51:3B:E1:8F:A4:59:36:3F:F5:58
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0161A3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A1021268599B11F0BCCF8BAADAE4EC9C.roa
Signing time: Sat 05 Jul 2025 12:29:01 +0000
ROA not before: Sat 05 Jul 2025 12:28:56 +0000
ROA not after: Sat 16 Aug 2025 12:28:56 +0000
asID: 61112
IP address blocks: 156.224.76.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90531 (0x161a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 5 12:28:56 2025 GMT
Not After : Aug 16 12:28:56 2025 GMT
Subject: CN=68691a8d-15e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:5b:56:4d:ca:c7:0c:82:79:09:48:08:06:2a:
8f:54:ff:bf:34:06:af:ca:a4:58:0c:26:c9:27:5f:
e7:87:64:2d:28:b3:f7:12:79:92:50:66:cc:78:06:
1b:bf:ec:29:87:23:97:a0:00:7a:e1:57:e3:31:d7:
e3:dc:96:e5:73:3b:f1:33:dd:87:97:cd:55:9d:69:
e5:0d:7b:17:00:21:86:43:cf:79:63:40:f0:33:3b:
63:22:e3:27:96:29:e9:24:f1:a7:11:ab:aa:13:ca:
15:13:8c:9a:1d:4d:4f:1c:75:62:63:52:cd:76:55:
30:9b:c2:6b:b4:a5:31:1b:8c:09:51:16:70:57:94:
20:6c:55:53:1f:d0:00:5b:f6:aa:51:85:11:a3:d9:
8f:ef:3b:31:fb:79:ec:ef:41:2d:53:dd:f1:ef:7c:
c3:65:cf:66:94:19:a2:53:76:f6:af:7c:33:62:78:
80:41:3c:25:ee:93:0f:61:ca:03:c2:53:33:25:67:
4b:33:b6:10:b7:c2:6c:d0:20:4f:f7:22:73:d4:5f:
16:f0:91:0a:63:ad:b3:75:5a:9b:df:9e:7c:8f:b1:
92:75:75:6a:43:15:20:ba:f5:1e:14:aa:5f:dd:a9:
65:93:64:15:33:45:4d:a3:a2:00:8c:24:54:aa:94:
a6:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:B4:61:9D:DE:7F:8D:64:E1:F3:51:3B:E1:8F:A4:59:36:3F:F5:58
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A1021268599B11F0BCCF8BAADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.224.76.0/22
Signature Algorithm: sha256WithRSAEncryption
2b:ef:cb:15:72:3f:26:22:f1:79:95:bd:4f:5e:2f:e5:0d:a8:
d6:14:55:bb:b8:ed:87:6e:2a:a7:f5:bc:1d:8b:8a:34:10:29:
cd:62:65:a2:e9:87:c7:ba:5d:89:56:13:ad:bb:cd:1c:16:94:
e8:8e:80:75:b2:a9:1d:49:9e:86:9e:4b:61:72:0c:82:16:da:
96:ac:39:20:9e:a6:91:33:00:18:82:6d:2f:a3:09:c6:48:02:
5d:36:8b:6d:81:01:9f:ee:39:f5:12:82:9f:52:b0:43:67:eb:
78:34:8b:62:c9:b4:c3:95:33:f8:e0:11:f7:50:6c:24:70:fa:
00:0a:e0:38:55:db:2d:2a:0f:03:25:ed:e4:fd:23:2f:ff:46:
f7:b5:76:be:6f:e3:d1:3c:32:57:68:04:8d:7f:81:d3:d0:67:
c7:03:74:85:6d:1f:8a:a8:e6:cd:58:6a:2d:ec:d6:9c:e0:4d:
88:ad:6f:07:94:30:0a:0f:39:e0:ed:40:a2:a9:56:d5:33:84:
68:70:60:61:8d:f4:75:4e:dd:52:b2:c4:62:0e:14:fd:78:47:
07:67:70:d9:16:9e:b5:dd:2c:7e:33:94:4d:87:6b:59:b5:16:
cd:4b:e0:f9:7e:09:91:8e:a4:ee:a3:77:96:96:4a:c4:5e:b4:
89:10:73:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 18:23:32 2025 by rpki-client