Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2432DCC8380711F08DB71997DAE4EC9C.roa
File: 2432DCC8380711F08DB71997DAE4EC9C.roa (raw, json)
Hash identifier: bIUVmkABSHFwEhaNA3BcqYtgJTyCNqf8bDgaccaoQhA=
Subject key identifier: C0:10:57:B7:EC:4C:C8:9F:83:9F:C7:6F:C9:2E:9D:73:A1:61:66:71
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01570B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2432DCC8380711F08DB71997DAE4EC9C.roa
Signing time: Fri 23 May 2025 18:52:58 +0000
ROA not before: Fri 23 May 2025 18:52:52 +0000
ROA not after: Sat 05 Jul 2025 18:52:52 +0000
asID: 395886
IP address blocks: 156.238.224.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 06 Jun 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87819 (0x1570b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 23 18:52:52 2025 GMT
Not After : Jul 5 18:52:52 2025 GMT
Subject: CN=6830c409-6683
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:4a:3b:74:32:6b:0a:17:a0:02:d9:84:98:2b:
3d:3f:08:df:ed:23:78:74:42:60:1e:b7:c3:93:3e:
aa:e3:4e:4f:c3:57:23:16:9f:f6:73:f6:93:ae:58:
f0:5e:a9:b5:79:27:b3:de:fe:c6:13:21:28:81:63:
e2:53:87:c5:43:bd:8b:bf:8c:33:0b:27:cf:15:72:
59:6e:cc:f2:5e:ac:e5:de:ed:8c:72:26:a6:72:ce:
f1:42:23:0c:47:50:d3:ed:97:d8:97:81:21:b2:af:
0e:05:82:33:8a:c2:91:bd:4b:bf:6a:cf:b8:2f:0c:
39:43:12:95:69:ba:c3:f7:5a:c0:ac:c1:c8:87:35:
d7:14:09:4f:d8:c0:5d:a2:ab:ea:c3:e7:fd:de:f6:
fd:53:d0:5e:e9:74:b5:17:53:18:eb:a0:94:2c:af:
98:0a:21:a5:57:63:2c:78:27:13:cd:31:cb:58:55:
cc:f7:0d:b6:b9:d6:49:0a:e8:fd:b5:ee:35:3b:ca:
b3:2f:3a:59:7a:0d:8f:a6:70:73:2a:72:5e:a9:cd:
b6:ae:c6:82:16:97:59:10:ae:b8:4d:49:11:29:c2:
5c:8f:ac:a1:ee:bd:9c:e8:ba:e9:ef:33:64:c6:e3:
a1:c0:fe:bf:74:d4:2a:f5:97:2f:5c:ae:a8:4c:c6:
ef:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:10:57:B7:EC:4C:C8:9F:83:9F:C7:6F:C9:2E:9D:73:A1:61:66:71
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2432DCC8380711F08DB71997DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.224.0/19
Signature Algorithm: sha256WithRSAEncryption
49:9c:a6:9b:67:a5:93:ae:0f:70:4c:28:70:78:45:2c:ae:6a:
e6:fa:86:ed:47:32:2b:f4:ff:c2:a3:fa:8c:52:92:c4:f7:d7:
90:be:db:4a:63:93:4f:b8:02:49:79:94:4d:e1:5a:a3:b1:17:
5b:25:54:fb:a3:9d:80:3d:c9:47:63:12:4b:e7:c2:88:9c:e3:
f7:55:72:7a:e9:7d:62:99:d4:b1:e7:f2:1e:ef:37:10:4b:d3:
d6:7e:89:7f:f8:ec:08:35:11:18:51:0e:a0:53:d6:98:59:f9:
a4:b9:ff:b5:56:fa:50:a5:cf:5e:c2:4a:0b:a9:ed:75:38:13:
55:b9:97:d2:df:bd:15:14:27:17:1a:9b:19:1d:5a:1e:f4:e2:
f2:ce:5d:4e:79:98:2e:99:a0:c3:c6:d1:91:d3:8c:cd:7f:59:
63:65:8f:ac:11:53:8e:e9:d7:8f:31:2b:70:34:06:6f:43:51:
ef:eb:11:12:9e:4c:e0:49:7a:5e:ba:72:63:3a:2b:7b:11:64:
d4:d5:d5:8d:80:76:d2:ea:79:fd:1e:49:9f:45:99:76:6b:35:
3c:fc:58:83:15:86:41:54:d0:4f:8e:85:7f:24:e4:ca:c6:01:
63:ad:3b:c9:ca:d0:eb:94:ad:66:29:42:a9:b3:ca:dc:f9:03:
27:9d:2f:5e
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAVcLMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNTIzMTg1MjUyWhcNMjUwNzA1MTg1MjUyWjAYMRYw
FAYDVQQDEw02ODMwYzQwOS02NjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA1Eo7dDJrChegAtmEmCs9Pwjf7SN4dEJgHrfDkz6q405Pw1cjFp/2c/aT
rljwXqm1eSez3v7GEyEogWPiU4fFQ72Lv4wzCyfPFXJZbszyXqzl3u2Mciamcs7x
QiMMR1DT7ZfYl4Ehsq8OBYIzisKRvUu/as+4Lww5QxKVabrD91rArMHIhzXXFAlP
2MBdoqvqw+f93vb9U9Be6XS1F1MY66CULK+YCiGlV2MseCcTzTHLWFXM9w22udZJ
Cuj9te41O8qzLzpZeg2PpnBzKnJeqc22rsaCFpdZEK64TUkRKcJcj6yh7r2c6Lrp
7zNkxuOhwP6/dNQq9ZcvXK6oTMbvmwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFMAQ
V7fsTMifg5/Hb8kunXOhYWZxMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8yNDMyRENDODM4MDcxMUYwOERCNzE5OTdEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFnO7gMA0GCSqGSIb3DQEBCwUA
A4IBAQBJnKabZ6WTrg9wTChweEUsrmrm+obtRzIr9P/Co/qMUpLE99eQvttKY5NP
uAJJeZRN4VqjsRdbJVT7o52APclHYxJL58KInOP3VXJ66X1imdSx5/Ie7zcQS9PW
fol/+OwINREYUQ6gU9aYWfmkuf+1VvpQpc9ewkoLqe11OBNVuZfS370VFCcXGpsZ
HVoe9OLyzl1OeZgumaDDxtGR04zNf1ljZY+sEVOO6dePMStwNAZvQ1Hv6xESnkzg
SXpeunJjOit7EWTU1dWNgHbS6nn9HkmfRZl2azU8/FiDFYZBVNBPjoV/JOTKxgFj
rTvJytDrlK1mKUKps8rc+QMnnS9e
-----END CERTIFICATE-----
Generated at Thu Jun 5 01:58:52 2025 by rpki-client