Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/031368DA261611F0ADC91ABBDAE4EC9C.roa
File: 031368DA261611F0ADC91ABBDAE4EC9C.roa (raw, json)
Hash identifier: m5JykctlQyN7R8Kkd2wDVhptbYmgkkrmtpADfzdmB4Y=
Subject key identifier: 5C:C9:BC:BB:99:A4:FC:B4:A2:54:64:4C:E6:FD:7A:DA:C6:EA:15:CD
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015105
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/031368DA261611F0ADC91ABBDAE4EC9C.roa
Signing time: Wed 30 Apr 2025 22:54:04 +0000
ROA not before: Wed 30 Apr 2025 22:53:58 +0000
ROA not after: Fri 28 Apr 2028 22:53:58 +0000
asID: 17561
IP address blocks: 156.232.242.0/24 maxlen: 24
156.232.243.0/24 maxlen: 24
156.232.244.0/24 maxlen: 24
156.232.245.0/24 maxlen: 24
156.232.246.0/24 maxlen: 24
156.232.247.0/24 maxlen: 24
156.232.248.0/24 maxlen: 24
156.232.249.0/24 maxlen: 24
156.232.250.0/24 maxlen: 24
156.232.251.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86277 (0x15105)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 30 22:53:58 2025 GMT
Not After : Apr 28 22:53:58 2028 GMT
Subject: CN=6812aa0b-0bcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ea:68:a6:a7:7d:73:7f:01:36:d1:e8:3e:86:
5b:e5:26:24:1b:94:93:6a:bc:8c:57:67:e0:dc:b5:
3f:f6:c8:ce:2c:e6:71:8f:fb:17:d8:14:09:c2:78:
14:7f:a3:94:6a:93:cb:aa:8c:99:42:8b:e7:b9:a0:
23:a2:76:4b:45:d2:89:c4:f1:bc:83:47:6f:b5:2e:
33:f8:bd:ef:38:fd:e6:76:43:b5:5c:75:46:46:3c:
d2:e0:fc:3b:9a:71:30:9a:d4:09:0d:ac:23:9e:3c:
29:19:47:49:92:13:88:66:aa:2b:b3:c7:2c:11:e5:
e6:70:fe:e9:a1:e8:f8:bc:91:f8:87:b3:e0:87:ba:
76:26:57:70:79:5d:5f:91:b7:dc:cb:b0:8b:94:00:
bd:69:d8:7a:8c:e2:20:28:45:be:03:e3:67:ab:2d:
a9:62:1e:6c:45:43:9e:a2:a0:be:05:b2:b9:1b:67:
47:c0:30:ee:9f:13:80:a0:8e:fb:1e:70:ce:3e:1c:
10:e8:ec:2c:43:d3:06:03:1c:b3:99:43:55:80:22:
4e:5b:11:d1:ab:5f:6b:0f:e7:17:58:42:23:97:04:
92:18:79:2e:06:05:68:89:d2:66:52:ab:6b:0d:2d:
f1:18:f6:47:71:1e:d3:12:15:96:06:cf:5f:8f:a7:
37:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:C9:BC:BB:99:A4:FC:B4:A2:54:64:4C:E6:FD:7A:DA:C6:EA:15:CD
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/031368DA261611F0ADC91ABBDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.232.242.0-156.232.251.255
Signature Algorithm: sha256WithRSAEncryption
2c:aa:ca:77:03:73:a0:d7:29:84:4f:c2:fb:f2:30:38:56:47:
27:0a:7c:ac:1d:37:bf:6c:1e:81:1d:6c:74:71:b7:9f:48:ea:
e0:d5:9a:6d:05:7f:99:77:93:44:a9:ab:6b:d1:f0:2f:d1:bf:
0d:65:82:3f:f4:8d:26:52:b4:6b:f3:6a:d0:ff:dd:05:1d:81:
cf:e0:f5:59:3b:84:21:9c:a3:b3:77:27:40:2a:cb:17:a2:c9:
26:e2:84:e2:a4:2d:f9:75:b5:59:44:d6:5a:aa:5e:52:5d:4c:
ce:fe:c1:3b:10:b4:8d:d7:8f:4b:96:4f:89:f1:60:10:32:fb:
34:dc:27:13:cd:0c:c7:c8:dd:49:52:b8:e4:35:a5:a1:78:c2:
df:70:04:83:34:f4:6d:8b:2a:cf:e4:49:08:41:b8:41:5c:ab:
25:73:75:a5:0e:f4:9a:a7:fb:b5:b6:7a:d3:fe:46:8d:04:40:
3e:f8:bb:c1:ed:63:ef:af:d9:28:24:13:01:82:1e:c5:ee:fe:
58:1e:19:a0:e0:cb:c2:57:b2:36:f7:46:e9:f0:26:48:58:be:
25:9b:7a:7e:e1:82:12:7b:fb:29:f8:f2:fa:b8:89:07:6c:08:
7c:d9:40:5b:a4:a6:14:af:ee:06:6a:a9:d5:91:57:c8:8b:a8:
9d:5f:71:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:29:42 2025 by rpki-client