Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/01797A52412B11F08F02A896DAE4EC9C.roa
File: 01797A52412B11F08F02A896DAE4EC9C.roa (raw, json)
Hash identifier: 0PP0MuwSAx24g1wzaUOv/JpWnBy+GArSDlRw8KtZZ68=
Subject key identifier: F0:76:69:53:EF:7C:41:04:B6:CA:52:B9:94:B5:6E:7E:62:2B:41:FA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0159A8
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/01797A52412B11F08F02A896DAE4EC9C.roa
Signing time: Wed 04 Jun 2025 10:02:22 +0000
ROA not before: Wed 04 Jun 2025 10:02:17 +0000
ROA not after: Tue 08 Jul 2025 10:02:17 +0000
asID: 200373
IP address blocks: 156.228.0.0/24 maxlen: 24
156.228.76.0/24 maxlen: 24
156.228.77.0/24 maxlen: 24
156.228.78.0/24 maxlen: 24
156.228.79.0/24 maxlen: 24
156.228.80.0/24 maxlen: 24
156.228.81.0/24 maxlen: 24
156.228.82.0/24 maxlen: 24
156.228.83.0/24 maxlen: 24
156.228.84.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 08 Jun 2025 00:26:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88488 (0x159a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 4 10:02:17 2025 GMT
Not After : Jul 8 10:02:17 2025 GMT
Subject: CN=684019ad-f69c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:a7:cf:7c:f7:08:11:94:6c:c5:b3:fc:3c:f4:
09:d0:b9:a9:92:45:4c:63:d6:9e:45:4f:5a:94:e4:
e0:88:c6:15:ec:c2:bf:81:84:7d:31:53:bb:89:34:
fb:a3:26:67:7c:33:45:89:dc:ac:bf:3d:4a:7c:07:
9f:83:63:da:93:23:01:36:70:fa:0a:67:4f:59:4a:
b3:75:2c:c2:5b:c9:f5:f5:5a:7d:62:14:07:5f:d4:
18:3d:33:9c:b0:65:d6:5d:37:70:bc:40:c4:e0:93:
39:ca:80:ff:4b:f6:87:46:de:f7:35:1f:79:49:09:
c0:42:9b:31:44:74:6b:cf:62:98:13:02:70:d4:2e:
7b:a9:c5:30:9e:37:e3:e9:7b:da:dc:1a:05:c6:b4:
08:f3:f4:ed:3e:8f:b6:f4:21:e1:d1:7e:a3:99:0b:
94:a4:9f:68:f4:40:8d:92:e0:f9:94:a3:87:af:2f:
6d:60:bb:08:61:57:0e:a3:9a:db:89:d8:4e:7b:39:
aa:11:2d:18:23:55:4b:a5:af:41:ae:78:2f:f4:a5:
02:6a:26:32:de:51:25:d0:88:c8:04:a3:72:7e:0e:
ce:64:d5:76:49:86:83:5b:92:07:ef:0d:86:1f:17:
dd:8f:29:8b:34:51:19:4f:c2:7b:05:78:b0:b9:e9:
9e:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:76:69:53:EF:7C:41:04:B6:CA:52:B9:94:B5:6E:7E:62:2B:41:FA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/01797A52412B11F08F02A896DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.228.0.0/24
156.228.76.0-156.228.84.255
Signature Algorithm: sha256WithRSAEncryption
3a:b0:45:43:43:a1:33:81:3b:c6:46:ad:3d:03:03:5b:00:4f:
df:68:37:69:46:16:21:4e:8e:19:6f:0e:ff:5a:f1:44:fc:d7:
9e:38:42:89:b6:2a:a1:1f:30:a9:3a:7e:75:f0:30:18:b0:5f:
2d:09:51:6e:73:51:76:8f:ef:47:1d:f6:f2:d7:f2:d3:e3:f9:
66:f8:04:81:3e:8a:48:82:de:db:7c:59:18:d1:80:c0:69:a0:
dd:5d:93:d5:ec:ad:06:01:ec:3c:c1:4d:73:f7:d6:f6:93:95:
40:2c:ef:ca:ea:e6:b5:30:18:0e:94:e3:b6:8c:5a:83:75:54:
36:8b:90:64:f7:c1:75:12:6f:02:cc:58:73:1b:4f:f4:4c:be:
17:e6:9c:72:f8:67:10:8d:86:c6:25:82:85:8f:63:94:da:f6:
9d:87:a1:c9:df:12:97:72:5f:b2:28:12:9f:4e:e1:f9:be:3d:
67:d9:05:90:a1:87:20:25:99:00:1f:f1:2e:0f:fb:27:3e:d4:
d5:f5:66:8d:4b:65:c8:d7:9f:04:d5:d3:06:1f:b9:fb:29:a1:
3d:99:f5:30:5f:5e:06:e0:5a:f7:83:4c:9c:23:11:d8:b5:db:
71:3f:f9:16:4e:e4:2d:96:99:f5:15:7b:2b:b4:b1:05:0b:76:
85:9f:82:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 13:49:08 2025 by rpki-client