Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0E3FB43E261111F09564AC9ADAE4EC9C.roa
File: 0E3FB43E261111F09564AC9ADAE4EC9C.roa (raw, json)
Hash identifier: uT53M1DcQDDjihLowhlPseZClubFhyuSchihKG4ROCM=
Subject key identifier: 0C:65:06:3C:1D:C9:89:3B:AA:B3:AF:12:E2:95:53:02:4A:37:C8:2A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0150FB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0E3FB43E261111F09564AC9ADAE4EC9C.roa
Signing time: Wed 30 Apr 2025 22:18:35 +0000
ROA not before: Wed 30 Apr 2025 22:18:28 +0000
ROA not after: Fri 28 Apr 2028 22:18:28 +0000
asID: 17561
IP address blocks: 156.232.192.0/24 maxlen: 24
156.232.193.0/24 maxlen: 24
156.232.194.0/24 maxlen: 24
156.232.195.0/24 maxlen: 24
156.232.196.0/24 maxlen: 24
156.232.197.0/24 maxlen: 24
156.232.198.0/24 maxlen: 24
156.232.199.0/24 maxlen: 24
156.232.200.0/24 maxlen: 24
156.232.201.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86267 (0x150fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 30 22:18:28 2025 GMT
Not After : Apr 28 22:18:28 2028 GMT
Subject: CN=6812a1bb-def6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:d8:06:8b:b7:2a:06:59:d5:6c:ee:d6:ed:92:
70:9e:c4:aa:2f:71:42:07:07:23:fe:e1:81:59:58:
15:bd:15:6a:0e:f5:10:f0:b3:5f:8d:52:a4:8f:7c:
e7:16:1d:47:59:24:d0:33:64:40:3b:24:32:ad:6a:
01:07:46:ee:d0:8a:90:e2:31:5b:87:20:09:42:50:
b7:d0:f3:17:c2:98:0f:3c:23:a2:bc:63:5b:ec:bd:
53:32:6f:bc:d0:b5:0e:88:ff:07:ed:34:e1:78:c4:
6d:45:3d:70:14:d5:08:6d:51:6e:b4:3e:31:73:1c:
d1:1b:e4:54:d1:49:34:1f:bc:0a:af:19:55:56:00:
f0:c3:b6:ce:d0:85:ab:9d:cd:d6:1b:c1:fa:9c:05:
24:0b:eb:7a:45:9f:de:13:78:56:34:d6:6a:2c:26:
d5:35:b0:c6:ba:c1:76:19:b7:6e:24:06:55:50:96:
1a:64:47:d9:bc:52:2d:0d:99:76:8d:11:ea:7b:cd:
7c:d5:9d:90:bb:a0:6f:97:54:f2:10:64:f4:44:f1:
7d:24:b1:43:d6:16:09:32:fd:8b:ef:22:51:de:c1:
58:d0:36:93:55:d9:72:72:68:cc:14:47:96:31:df:
34:fb:4b:2a:4a:43:64:58:48:cc:24:7e:46:4e:dc:
c0:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:65:06:3C:1D:C9:89:3B:AA:B3:AF:12:E2:95:53:02:4A:37:C8:2A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0E3FB43E261111F09564AC9ADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.232.192.0-156.232.201.255
Signature Algorithm: sha256WithRSAEncryption
88:4f:00:86:92:89:4d:b1:17:36:4c:93:bf:33:5f:bb:1e:4c:
01:01:43:99:f8:e3:a8:e3:f5:f8:1a:35:be:96:07:08:d5:da:
21:38:04:8e:76:f3:3c:8d:56:41:05:98:36:be:93:cd:02:e2:
e8:59:d3:6a:91:b6:57:c4:52:f5:fb:6e:46:d1:9f:2b:56:8c:
fd:d5:3d:66:24:1a:0d:bf:8f:b0:05:ea:c4:23:ba:65:fd:7b:
ca:53:9d:ae:ec:bc:1d:d8:eb:82:1a:b5:dd:1e:9a:53:0e:b0:
d8:f0:8f:82:33:12:57:be:70:12:62:a8:66:ff:69:08:3f:88:
4b:1c:6e:f7:a9:68:35:13:f7:3d:73:6a:25:57:48:3f:ee:d0:
32:54:f3:d9:09:0d:30:fb:ef:bf:95:62:96:c4:48:ac:0f:89:
69:58:a8:ad:2b:34:5e:53:93:cf:5e:04:e3:9f:b1:b4:fc:5f:
77:9e:78:bf:11:bd:56:1e:5a:35:4c:8d:c4:73:fc:74:b4:c5:
eb:bc:c4:de:92:84:b9:24:0c:df:8a:f3:ff:fb:04:45:10:21:
a4:56:11:08:95:12:48:59:28:25:f1:34:1d:8c:ff:ba:14:9c:
fe:63:d9:67:d4:f8:45:74:ca:66:1b:95:87:b2:95:b5:f8:b1:
f9:93:4f:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:24:04 2025 by rpki-client