Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1CC5915E300711F092C638C7DAE4EC9C.roa
File: 1CC5915E300711F092C638C7DAE4EC9C.roa (raw, json)
Hash identifier: c1XC76Wd4HwpkAcWkibVnzCBq60D1CSA++i0ArgN0SY=
Subject key identifier: 37:2C:DB:06:1D:5F:62:F6:31:01:CE:C1:E2:D0:D5:9D:B2:AF:6F:8E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015406
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1CC5915E300711F092C638C7DAE4EC9C.roa
Signing time: Tue 13 May 2025 14:32:36 +0000
ROA not before: Tue 13 May 2025 14:32:31 +0000
ROA not after: Fri 04 Jul 2025 14:32:31 +0000
asID: 134823
IP address blocks: 156.234.228.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87046 (0x15406)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 13 14:32:31 2025 GMT
Not After : Jul 4 14:32:31 2025 GMT
Subject: CN=68235804-a0a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:7e:90:0a:16:75:6f:64:a5:16:44:df:38:84:
c6:6a:bd:34:39:41:3c:9c:b1:6e:a6:03:f6:44:ce:
c8:0f:7e:e8:26:ac:49:7e:35:f5:2d:c3:99:7c:2e:
93:89:31:10:29:cd:e4:0c:8c:7b:a5:a3:ee:b1:21:
b6:4b:c7:05:6a:95:6f:e2:a2:7c:b7:48:ee:a3:2c:
f6:f3:b7:0e:a6:21:bb:58:ba:39:33:dd:31:c2:af:
1c:39:a5:a0:3c:7b:a6:28:d0:54:d5:1a:8a:84:97:
16:7e:3f:99:2d:7e:60:d3:d9:a8:a0:70:8c:f1:a0:
a3:7d:93:ce:ab:55:25:81:ae:79:4b:f8:8f:a2:41:
d9:82:ed:a7:fd:f7:f9:59:90:09:a0:74:37:b9:4c:
74:eb:c9:c3:09:e6:39:d2:47:60:11:c5:9e:3b:49:
eb:b2:53:81:c6:ef:14:77:fd:a9:9b:19:73:5a:c5:
b6:44:02:87:8d:6e:ce:95:fb:b9:e8:00:b3:45:2a:
8e:20:be:04:14:4d:4d:37:2c:db:f9:72:48:99:41:
51:75:56:2c:cf:eb:6a:52:82:9d:a4:cc:2c:01:0f:
63:d5:2c:43:cc:1d:0a:20:6c:c3:39:9b:7c:5d:4e:
3d:35:e0:52:d5:b6:f9:79:e5:32:5b:ec:ea:59:d1:
af:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:2C:DB:06:1D:5F:62:F6:31:01:CE:C1:E2:D0:D5:9D:B2:AF:6F:8E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1CC5915E300711F092C638C7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.234.228.0/22
Signature Algorithm: sha256WithRSAEncryption
35:fa:7d:71:f1:11:33:e5:c4:b0:f5:21:68:9a:5c:0e:77:13:
29:d0:74:e4:92:dc:00:20:92:e0:47:95:c0:9a:2a:99:a8:39:
6c:94:49:78:b7:de:f6:d3:4e:89:e9:5f:ba:6f:ee:67:82:60:
32:ba:9f:a8:e4:c9:10:5f:1a:5e:15:d9:aa:2e:82:a6:78:41:
9e:3b:91:81:b1:25:41:b3:bd:04:77:0b:3c:97:29:fc:af:3c:
9f:c7:75:bd:3c:12:3f:a5:65:55:1b:5f:58:a4:a7:3d:1a:bd:
02:d3:20:dc:ee:55:1b:50:ae:97:a8:e8:b4:ec:bd:05:a1:c3:
69:50:40:c0:47:4a:eb:16:36:fc:91:39:9f:9f:a3:32:2e:e2:
f3:18:5c:ab:9a:b7:c6:e9:be:ac:54:27:b7:78:9c:3c:14:bf:
f6:9e:ae:43:65:9e:88:70:93:09:bf:c9:30:9f:60:8e:86:09:
3c:51:42:46:0b:09:90:36:26:46:b0:2c:96:dc:de:db:b7:f6:
0e:94:28:09:f4:d3:f2:53:3a:4f:23:e0:66:d0:55:7d:21:4c:
b6:c8:e7:d9:05:e2:6f:11:54:96:d0:cf:58:53:68:6b:35:09:
3a:fd:59:74:7d:04:39:78:a4:d3:81:e5:3a:79:c8:45:75:a9:
1b:04:ef:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:45:26 2025 by rpki-client