Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DEBACD2A624711F0B9193FF4DAE4EC9C.roa
File: DEBACD2A624711F0B9193FF4DAE4EC9C.roa (raw, json)
Hash identifier: +2+bQJnenEMAuf9Knq4hw2h1cMOs6vWQ6cKmg5+fluQ=
Subject key identifier: 03:EA:00:F0:AA:AB:D2:EE:2F:EA:7F:6F:F6:CC:0A:E7:A2:37:22:A3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016595
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DEBACD2A624711F0B9193FF4DAE4EC9C.roa
Signing time: Wed 16 Jul 2025 13:22:07 +0000
ROA not before: Wed 16 Jul 2025 13:21:59 +0000
ROA not after: Fri 25 Jul 2025 13:21:59 +0000
asID: 399989
IP address blocks: 156.238.176.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91541 (0x16595)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 16 13:21:59 2025 GMT
Not After : Jul 25 13:21:59 2025 GMT
Subject: CN=6877a77f-dd3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f6:1d:d9:dc:b7:f6:e6:2f:5b:f6:8e:8d:60:
d2:8f:b7:d3:34:4f:95:75:63:f7:46:17:7c:5b:ba:
3c:b3:44:f1:f2:ea:1c:62:4b:dd:63:66:9a:d0:5e:
1f:7d:5b:29:f5:b4:8c:b2:10:ef:b6:4e:fa:7c:ac:
35:f0:48:ed:5c:76:3c:da:75:62:c4:3f:07:48:2a:
dd:4e:c3:0c:75:c7:e4:07:e5:6f:6d:25:33:f9:b2:
15:f6:3d:a1:2d:54:68:d9:ac:16:95:68:ec:7d:2b:
7c:92:cc:47:fb:85:e0:61:e6:7a:d9:1b:5a:ab:d4:
9e:64:88:36:77:94:0b:bc:f3:92:3a:85:68:ad:7e:
e1:2b:f1:cd:a5:02:d1:c2:d4:75:c9:b7:a2:22:b0:
af:04:cd:5e:69:f1:5c:ea:c1:26:41:7c:d0:c1:13:
c5:aa:4c:c2:09:a9:11:8a:a0:27:6d:75:0e:58:9b:
92:6a:2b:c8:ee:cb:e3:a5:78:37:85:73:bf:b1:e1:
f7:d3:cd:81:84:8d:4d:52:94:b1:f5:03:86:99:1c:
7e:09:65:dd:12:36:91:41:61:7f:2d:85:63:89:ef:
7e:aa:cd:45:4b:13:f0:7d:30:8a:35:cf:69:a5:2a:
6c:df:d4:3f:06:2e:60:21:fe:30:08:91:65:de:3c:
6c:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:EA:00:F0:AA:AB:D2:EE:2F:EA:7F:6F:F6:CC:0A:E7:A2:37:22:A3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DEBACD2A624711F0B9193FF4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.176.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:de:a1:ac:95:72:13:4c:e3:0c:32:9a:5b:b8:49:bb:96:35:
48:45:32:98:a8:2d:d9:a6:93:6b:e4:43:d6:7d:63:6c:8e:e0:
87:e6:99:ef:e8:52:b9:94:23:1f:0a:c6:5e:17:85:26:c4:8c:
f9:22:10:6b:7c:ac:90:e0:73:ba:d5:f8:eb:8e:93:b0:2e:ae:
ed:92:07:65:58:ff:ce:97:bd:1f:83:00:67:a2:87:d7:e3:25:
22:28:de:96:0f:20:c7:ba:4c:c0:01:0b:d5:6d:a5:20:03:31:
05:44:da:13:81:4c:77:82:77:ca:67:2e:9d:65:5e:19:4a:95:
f0:3a:3f:fe:6f:e9:a1:5c:97:b2:cf:8c:ad:47:4c:70:15:3f:
d2:67:7c:8c:11:77:71:3b:38:9a:b1:01:ce:df:92:1d:76:e7:
f5:92:36:2e:cc:51:0b:b8:07:61:bd:fb:f5:0b:36:00:3a:69:
9f:76:9f:79:42:7f:7c:05:cb:24:e1:8e:c3:07:c5:d9:8f:30:
1b:92:0d:fd:bf:42:d2:35:b1:da:e6:46:51:10:d2:f3:d4:f5:
ac:7b:71:af:7f:b4:79:66:bb:2b:30:e5:2c:ed:c3:15:53:12:
26:8a:45:5f:b8:b2:7a:eb:d1:47:81:d7:8d:6b:33:d0:9e:a0:
ae:8d:30:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 13:51:07 2025 by rpki-client