Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/002E92362CC211F0834DDEEADAE4EC9C.roa
File: 002E92362CC211F0834DDEEADAE4EC9C.roa (raw, json)
Hash identifier: 2ind0VFFBvBAZeO8jwkxMVtJ996/qP8Dwnr1Npp9DCU=
Subject key identifier: 17:40:20:AC:8C:0B:16:9B:E1:DA:BB:9A:D4:54:DA:02:BF:B1:21:81
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015319
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/002E92362CC211F0834DDEEADAE4EC9C.roa
Signing time: Fri 09 May 2025 10:40:19 +0000
ROA not before: Fri 09 May 2025 10:40:13 +0000
ROA not after: Sun 08 Jun 2025 10:40:13 +0000
asID: 206283
IP address blocks: 156.238.85.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86809 (0x15319)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 9 10:40:13 2025 GMT
Not After : Jun 8 10:40:13 2025 GMT
Subject: CN=681ddb93-d016
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:bd:3c:05:02:a7:72:05:ec:96:7a:2a:78:62:
50:a9:a9:e3:bc:71:ef:6a:01:d1:4b:59:05:a9:26:
99:cc:15:6e:a4:52:98:f9:5e:58:90:b2:fb:fb:6b:
60:a1:af:87:e7:c3:9e:cb:a2:c2:d4:c1:5c:c4:c9:
12:be:20:19:05:43:2e:2b:52:92:1e:cb:43:e3:43:
bf:1f:11:54:15:c0:39:a2:f6:63:2d:77:b0:80:bb:
c6:41:ac:27:50:bc:aa:fa:54:ff:91:ba:5d:d4:26:
4a:e7:30:ab:0a:09:a7:66:36:b0:e2:82:b7:49:97:
41:cb:51:5e:77:e3:f2:cf:82:dc:0d:f8:d9:f6:5f:
b7:9c:b5:58:8d:fd:04:11:f8:3d:45:e5:31:bb:4e:
e2:f8:58:b6:49:6a:9b:f4:71:c9:69:4e:48:6f:38:
80:28:24:a1:8c:26:bf:9f:18:31:dd:ae:00:8e:b3:
9e:e6:10:d6:e6:aa:45:2e:83:e7:25:6b:75:8b:ff:
b8:22:2c:71:2f:80:da:d2:97:e2:79:8d:73:9b:ee:
c1:5b:63:12:02:12:9f:48:11:f7:ec:c2:61:bd:ec:
d4:68:b9:e0:54:db:c2:f5:8c:53:d1:49:ff:9d:dc:
0b:fd:e7:dc:7f:82:f5:6f:f6:31:5b:be:eb:c7:c9:
0c:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:40:20:AC:8C:0B:16:9B:E1:DA:BB:9A:D4:54:DA:02:BF:B1:21:81
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/002E92362CC211F0834DDEEADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.85.0/24
Signature Algorithm: sha256WithRSAEncryption
09:d2:e8:85:5f:be:ad:6b:4e:cc:38:1d:c2:9b:44:0a:30:b8:
b8:c5:24:cd:e2:3a:e3:0c:a3:2d:6d:91:51:fc:e8:d2:47:ea:
88:d3:63:60:99:7d:f6:5a:5d:34:36:23:c9:9a:18:c0:26:61:
6f:6e:67:2d:20:f6:9d:b7:ca:ce:2b:3d:8e:a9:c7:44:3a:c2:
04:13:1f:cc:5a:90:fe:a4:10:4a:73:f3:7d:c3:bd:c1:7c:04:
32:11:00:5e:e2:58:24:7a:bc:83:47:b9:ef:a8:a4:27:00:42:
56:28:44:57:e0:ad:f7:1c:ce:7b:c9:ba:da:72:16:35:2f:00:
07:26:02:57:57:d8:36:9a:42:86:36:15:10:0f:8b:3b:e4:f2:
bf:41:fc:02:e9:98:e1:43:01:2c:05:78:be:be:fd:c2:91:48:
89:2b:14:47:7b:07:be:ad:29:f0:57:d9:49:c8:d9:98:55:e7:
0b:31:f4:cf:b1:5f:f4:a1:d5:f4:08:ef:47:79:d4:71:f8:82:
94:6d:1e:2d:e8:d1:5c:3a:27:24:2b:1e:45:2f:60:9a:1e:1d:
06:11:26:6e:f8:53:c0:1c:59:3f:80:d0:12:f4:63:74:3a:6a:
e6:50:94:39:c7:c4:07:12:60:ec:97:87:18:bb:c1:06:03:3c:
db:1e:e0:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:29:22 2025 by rpki-client