Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C9D64782575B11F0989F5F7FDAE4EC9C.roa
File: C9D64782575B11F0989F5F7FDAE4EC9C.roa (raw, json)
Hash identifier: si75nGj26JVHiHn3Yn93NbcJQy7CwlvS/e0JwZbe3xs=
Subject key identifier: CE:A4:D8:04:D1:D8:B7:31:8E:AE:36:6A:72:1A:0E:2C:C2:C7:3E:15
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016036
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C9D64782575B11F0989F5F7FDAE4EC9C.roa
Signing time: Wed 02 Jul 2025 15:46:59 +0000
ROA not before: Wed 02 Jul 2025 15:46:55 +0000
ROA not after: Wed 13 Aug 2025 15:46:55 +0000
asID: 36137
IP address blocks: 156.227.160.0/20 maxlen: 24
156.227.176.0/20 maxlen: 24
156.252.96.0/19 maxlen: 24
156.252.144.0/20 maxlen: 24
156.252.160.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90166 (0x16036)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 2 15:46:55 2025 GMT
Not After : Aug 13 15:46:55 2025 GMT
Subject: CN=68655473-f2b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:33:37:9d:66:21:76:19:95:2d:33:cc:3f:ab:
9b:20:fe:0b:ec:52:ef:dc:b0:8e:25:e7:61:11:04:
36:69:71:5f:e2:42:4c:15:7d:a8:0c:eb:34:0e:eb:
72:b7:e9:35:76:d2:de:2c:79:f4:55:b8:ae:3b:6c:
c9:f6:2f:29:1b:67:b0:8c:29:92:c3:d8:84:39:ff:
29:31:f5:17:c6:7e:00:b4:0b:76:e8:0f:59:94:93:
2a:4e:9c:a9:f7:a5:8a:c8:cf:80:63:e9:60:90:25:
3e:da:b0:0e:af:e3:84:91:39:fb:2f:fa:70:b5:7f:
2a:18:76:85:19:b9:e8:8a:76:db:15:ac:b9:e7:94:
e0:d1:08:22:6a:d1:49:cd:a9:ab:ae:a5:fb:55:ca:
5e:47:1e:da:33:4d:0a:57:38:ca:bd:f4:19:00:ed:
0e:fa:2a:be:c4:80:cd:bd:28:c5:35:98:c2:67:5d:
c5:0a:f1:45:5e:86:10:73:f0:d6:77:3c:f6:20:29:
24:89:53:23:5c:64:bd:f2:53:4f:f4:25:2c:3b:a6:
0e:30:08:35:61:cd:c8:07:d7:ee:85:b5:2d:5d:1a:
61:f7:7e:a4:5e:db:2b:1c:26:c2:60:31:ed:b9:5a:
3f:b7:96:f5:ff:16:af:bd:f9:9d:aa:81:54:fd:b6:
6d:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:A4:D8:04:D1:D8:B7:31:8E:AE:36:6A:72:1A:0E:2C:C2:C7:3E:15
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C9D64782575B11F0989F5F7FDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.160.0/19
156.252.96.0/19
156.252.144.0-156.252.175.255
Signature Algorithm: sha256WithRSAEncryption
af:d0:07:6b:5c:9b:6e:43:d8:e2:7e:85:ef:cb:28:93:64:c4:
a8:49:f2:cc:b9:e5:bd:c4:95:5f:4c:7a:66:97:e5:4b:f7:e3:
aa:d2:9b:07:b9:6c:34:3f:af:72:84:76:30:a1:cc:d7:01:97:
4c:c4:ca:2a:23:96:d6:92:6d:dd:fb:7e:57:a8:71:77:24:4b:
cc:88:eb:d8:2a:ed:1a:e4:83:20:52:0c:d9:d0:27:23:26:54:
06:fa:5a:a1:86:fa:80:1d:f3:89:68:a0:28:c7:2f:7b:4e:53:
ca:ad:a3:2f:ca:8c:c8:aa:e1:9c:a2:00:8f:9f:91:25:d7:a3:
47:3b:9a:20:9e:66:a0:8a:d4:82:c8:c0:87:71:b2:4c:74:fc:
6a:03:c7:f7:9f:13:53:1b:2b:22:d0:1b:2d:d3:81:14:5b:d7:
e8:6d:a4:e1:05:3f:21:be:1e:30:fa:e1:eb:ce:a9:81:08:2c:
c4:5b:ac:46:24:b8:e5:1c:36:ea:d4:3f:ad:34:37:30:b9:98:
32:f2:c4:93:25:7f:f1:cd:7e:31:a4:4f:3a:cb:35:15:d8:5b:
a6:5a:1e:5c:03:21:fe:4f:bd:2f:ef:e3:68:b3:71:be:2f:66:
e8:26:97:cd:f6:c8:a0:13:66:9f:90:e5:d1:2d:d7:92:28:99:
40:b0:ef:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 13:36:01 2025 by rpki-client