Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C77126DE62EF11F0BB3179CBDAE4EC9C.roa
File: C77126DE62EF11F0BB3179CBDAE4EC9C.roa (raw, json)
Hash identifier: 4x79pm1BjL9So9/jTJUz/pBLMG4mgcWe5EvRzghhlb4=
Subject key identifier: 8C:DD:D1:60:7C:04:62:72:60:17:42:44:67:7D:E5:D2:AE:5A:76:74
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0165CC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C77126DE62EF11F0BB3179CBDAE4EC9C.roa
Signing time: Thu 17 Jul 2025 09:24:03 +0000
ROA not before: Thu 17 Jul 2025 09:23:59 +0000
ROA not after: Fri 22 Aug 2025 09:23:59 +0000
asID: 395886
IP address blocks: 156.225.16.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91596 (0x165cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 17 09:23:59 2025 GMT
Not After : Aug 22 09:23:59 2025 GMT
Subject: CN=6878c133-2f39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:18:00:b1:79:5e:8b:a6:12:5f:96:31:81:06:
fa:cc:bb:16:c9:77:ff:f6:d5:6e:6f:69:96:5c:c2:
63:6d:a2:01:59:1e:37:3b:ba:27:a6:50:0b:38:ec:
a4:d9:ff:47:be:73:bf:ed:97:6d:43:ea:cb:8d:a2:
45:82:25:d7:9d:c0:db:5a:2e:fe:d3:30:01:7d:9a:
a0:34:23:db:9c:45:f6:2d:bd:98:44:50:c9:9a:30:
e0:1b:a8:99:bd:33:0b:e3:46:47:7c:35:01:b4:76:
62:17:ad:d7:0f:c7:59:47:d4:72:fe:26:b1:e1:18:
72:02:34:76:1b:fe:e9:1b:52:6e:22:cb:7b:0b:c6:
2f:d7:cd:3b:c5:be:d2:f9:3d:21:2c:9b:fd:f0:8d:
e1:6f:e3:cb:3f:a6:08:ae:c4:66:e9:81:6c:2b:71:
97:b2:f9:7c:46:6e:44:a7:19:2c:5f:50:d6:e0:35:
3e:ee:07:79:e3:35:b4:e7:90:c5:ff:f2:cd:20:97:
67:5d:88:c2:2e:71:49:8f:b5:aa:13:73:e2:4b:3f:
3e:4b:9b:ae:bf:4a:13:ba:4e:7d:29:fb:46:d9:39:
0c:0b:09:66:71:73:64:86:48:02:cc:2d:2d:57:22:
55:0c:dd:4c:91:3a:f9:ba:ab:4a:b9:72:5d:ab:31:
13:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:DD:D1:60:7C:04:62:72:60:17:42:44:67:7D:E5:D2:AE:5A:76:74
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C77126DE62EF11F0BB3179CBDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.16.0/20
Signature Algorithm: sha256WithRSAEncryption
7a:ec:9f:aa:8c:84:ff:91:5c:e2:73:f5:e1:fd:96:a4:67:3b:
e6:b8:0c:1d:8f:93:c9:98:e7:58:7b:9f:16:71:1e:7b:2c:80:
14:1d:45:ad:07:23:e5:b0:e8:9a:6d:96:d0:2c:98:71:11:6c:
4e:99:bf:ea:b2:c5:77:d9:15:4c:ed:e0:20:50:95:e8:46:1a:
bf:d6:58:9d:4e:aa:42:6a:f6:ff:c2:72:a9:65:a0:09:ae:75:
8b:36:5a:0f:2a:49:ad:1b:70:80:35:01:ae:41:65:a6:15:c2:
5f:7c:52:59:1a:82:95:c6:78:b7:c5:22:7d:18:50:0e:f4:24:
12:52:a8:dc:9e:2a:3d:3e:19:82:da:d1:14:02:c5:58:4f:2a:
97:c4:de:2e:2f:2f:46:2c:6f:3e:ad:a3:93:d3:21:73:2f:d4:
f9:3f:a7:88:25:5e:07:05:44:1c:30:69:f8:1d:ca:d5:68:d1:
17:cf:10:c0:c6:cc:cd:6b:46:06:d7:f4:4c:bb:06:06:2b:2e:
07:76:f4:7b:7f:37:62:54:c4:53:fa:b4:8d:ed:18:80:70:f7:
0a:ab:42:26:6e:f2:b7:40:48:c0:ca:42:fa:72:7e:4c:78:d0:
1a:52:56:0e:a3:2b:ea:13:4e:e0:44:45:dd:d7:99:44:91:85:
c0:b2:6c:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 13:51:13 2025 by rpki-client