Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/03FA505E412A11F09F870E90DAE4EC9C.roa
File: 03FA505E412A11F09F870E90DAE4EC9C.roa (raw, json)
Hash identifier: fINhqSwQDVdujxzw6VVWYRg6p9URwkf54zCXSIVLSLA=
Subject key identifier: CF:23:8E:D8:81:8A:7B:16:A0:2C:DA:92:4E:1A:53:9D:80:56:07:02
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0159A3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/03FA505E412A11F09F870E90DAE4EC9C.roa
Signing time: Wed 04 Jun 2025 09:55:16 +0000
ROA not before: Wed 04 Jun 2025 09:55:11 +0000
ROA not after: Tue 08 Jul 2025 09:55:11 +0000
asID: 200373
IP address blocks: 156.228.178.0/24 maxlen: 24
156.228.179.0/24 maxlen: 24
156.228.180.0/24 maxlen: 24
156.228.181.0/24 maxlen: 24
156.228.182.0/24 maxlen: 24
156.228.183.0/24 maxlen: 24
156.228.184.0/24 maxlen: 24
156.228.185.0/24 maxlen: 24
156.228.189.0/24 maxlen: 24
156.228.190.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 08 Jun 2025 00:26:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88483 (0x159a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 4 09:55:11 2025 GMT
Not After : Jul 8 09:55:11 2025 GMT
Subject: CN=68401804-307e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:1c:75:89:d5:06:f4:0c:8b:6c:4f:1f:fa:fa:
21:7c:c7:37:28:20:d8:ef:4d:c2:1b:5a:af:ca:3a:
59:5b:4a:d3:68:6b:10:53:66:fd:a7:2e:fb:38:33:
a8:d0:b6:94:dd:e8:33:93:f8:3c:74:13:c1:df:7c:
98:42:62:47:84:be:89:ba:99:e0:b6:3d:0b:54:eb:
bf:dd:b5:c7:43:aa:4a:c2:42:11:8f:dc:3b:22:e8:
63:ac:4b:a0:a8:df:91:14:d5:e0:d9:dc:95:85:4b:
70:51:db:27:5c:58:95:c5:91:14:35:c0:42:16:34:
15:0d:70:a7:01:11:73:27:bd:35:03:c1:7d:87:b1:
0e:cc:a7:c0:55:6d:97:d9:cf:e1:de:4b:8f:9b:48:
1e:b2:c8:59:83:7d:74:fd:9c:e0:2d:45:fd:ad:79:
c3:a1:2c:ab:e3:97:e1:a5:a6:fb:99:4e:45:9a:35:
61:fa:ff:ce:75:c1:2e:d7:93:9f:d6:f9:9a:35:78:
7f:b2:09:f3:98:51:e9:6b:60:99:f6:c1:8e:4b:d7:
6e:64:fb:41:99:80:da:e8:d7:b6:5a:54:23:a5:8e:
61:a8:8a:43:3c:e1:55:f6:8d:75:9e:bc:09:3f:b1:
29:77:4a:5e:6d:0c:08:fb:33:72:81:51:38:4e:cd:
44:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:23:8E:D8:81:8A:7B:16:A0:2C:DA:92:4E:1A:53:9D:80:56:07:02
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/03FA505E412A11F09F870E90DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.228.178.0-156.228.185.255
156.228.189.0-156.228.190.255
Signature Algorithm: sha256WithRSAEncryption
5b:60:07:a3:14:0f:48:cb:76:c0:eb:cf:d3:0d:c5:ee:25:2b:
72:9e:bd:4f:bc:f5:cc:f0:eb:08:c5:aa:00:0d:b2:8c:2c:7b:
16:61:72:9f:06:44:47:98:44:bd:ef:9f:49:32:03:d0:61:e2:
da:ef:29:8d:dd:2f:26:f8:43:39:c9:85:9e:82:7f:c0:8b:a9:
57:ba:15:1e:7f:7d:0b:76:5d:0b:78:65:9b:b0:5a:7b:bc:ad:
66:62:49:eb:16:3f:4a:70:e6:70:ad:7e:a6:e9:9e:b5:03:24:
fe:98:20:c3:ad:df:fc:ec:ae:de:28:a6:84:c6:9c:4b:31:0f:
9e:3f:47:f0:9e:e2:c9:15:49:51:6c:71:4a:19:e6:9e:c8:68:
c9:bc:ed:41:c6:73:ac:5d:64:47:46:b8:d2:aa:b5:38:d7:46:
ad:a8:6c:40:d7:67:44:fd:4d:65:df:84:fd:a8:88:d0:8f:3a:
59:4a:5c:e2:2e:49:a2:ea:69:60:c5:7a:23:b0:c9:c3:bc:eb:
54:65:92:86:84:3b:2f:e0:8e:76:64:f5:7a:13:9a:08:ea:6e:
5a:63:3e:58:4c:ec:e8:eb:82:8c:20:9f:16:5a:e8:97:00:ce:
ce:07:fb:14:4e:0e:2b:9c:2f:2f:03:c0:51:eb:d8:7f:32:7d:
4e:2e:2a:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 14:20:20 2025 by rpki-client