Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3D656B703C7B11F0A4CE839DDAE4EC9C.roa
File: 3D656B703C7B11F0A4CE839DDAE4EC9C.roa (raw, json)
Hash identifier: rz4SZZj4XtkF4fI4gq6R1Kr44ncvJ125xDQl678GKPc=
Subject key identifier: A0:9B:62:09:52:FD:E2:63:A0:8A:9A:F7:E9:FF:5A:3F:08:28:F0:31
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0158B6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3D656B703C7B11F0A4CE839DDAE4EC9C.roa
Signing time: Thu 29 May 2025 10:54:06 +0000
ROA not before: Thu 29 May 2025 10:54:01 +0000
ROA not after: Sat 05 Jul 2025 10:54:01 +0000
asID: 264750
IP address blocks: 156.248.192.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88246 (0x158b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 29 10:54:01 2025 GMT
Not After : Jul 5 10:54:01 2025 GMT
Subject: CN=68383cce-3fa1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d8:09:1b:55:78:4b:8f:eb:2f:37:c8:fa:93:
8d:a8:c1:7d:22:e9:cf:56:1c:18:b9:1c:7b:72:a2:
50:a7:61:94:2e:7f:17:93:5a:f0:2d:38:aa:71:6d:
71:88:5c:0b:0d:d5:b2:f6:7c:81:02:a0:50:de:ae:
05:62:ce:74:c9:e8:3a:e4:a2:71:02:45:20:63:26:
1f:e8:d2:f6:60:ba:59:62:92:e7:9f:9e:2d:7b:5e:
d7:ba:24:1e:b3:7d:3c:75:77:04:ba:39:c4:26:e8:
23:fc:85:24:fc:67:21:0d:5f:29:b7:21:48:fb:34:
e9:15:9d:5c:fd:76:70:e8:d8:63:23:c0:f9:4d:b3:
d6:e2:ee:3c:62:02:19:08:78:8a:b0:63:ca:34:54:
06:4f:48:db:5a:b7:bc:14:1a:e2:d0:c0:71:16:5b:
0d:96:9a:03:f8:04:bd:38:92:69:d9:50:c3:9d:ae:
4d:e4:b4:b9:18:ca:1e:e4:49:f4:57:3a:8a:7d:c5:
66:b8:79:fb:e5:e4:df:66:f9:d8:56:83:eb:4c:01:
e4:97:4f:bc:58:6a:1a:aa:47:87:d2:50:23:23:d3:
84:33:9a:81:39:5c:0f:82:d0:05:89:68:6a:df:97:
1a:cd:08:2c:b9:fa:33:3a:56:b4:bc:36:07:1d:d4:
c7:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:9B:62:09:52:FD:E2:63:A0:8A:9A:F7:E9:FF:5A:3F:08:28:F0:31
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3D656B703C7B11F0A4CE839DDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.248.192.0/18
Signature Algorithm: sha256WithRSAEncryption
99:f9:24:74:39:57:3f:52:02:69:f1:ac:72:5c:e7:21:5c:21:
75:13:93:b9:4e:68:ea:bc:a7:93:6b:52:7e:1f:67:c4:06:df:
26:c1:e4:9d:43:7c:e6:1e:13:8d:27:39:69:be:b3:6c:ea:44:
0d:7a:7f:cb:6a:5d:b8:b8:5c:26:09:1e:ae:50:9d:d3:c2:58:
f2:ed:4a:37:df:29:a3:9d:52:cc:23:1a:ec:74:36:f4:73:d8:
ba:c4:99:35:b5:3c:dc:b2:20:5c:46:74:d9:3c:b0:7d:8a:95:
be:aa:9c:16:86:19:5d:48:9a:20:e7:e4:7f:f8:3e:c0:ba:58:
31:c8:7e:97:34:d8:b6:02:a2:7b:89:d9:cc:2c:36:58:2c:9a:
0b:5a:0f:76:76:f5:e3:52:ec:40:1d:b6:c6:64:a3:53:72:12:
80:68:51:34:eb:8b:81:85:62:84:08:6a:42:2d:a7:f4:95:ea:
e1:b5:15:b5:5b:ab:4e:5d:ed:74:f6:25:d7:da:96:00:18:c8:
75:bb:e0:b5:b5:04:dd:ed:8a:a1:6a:76:de:01:24:6a:bf:fa:
08:70:be:de:03:5f:04:e1:e4:61:98:7c:d6:81:5d:a1:cc:b3:
4b:a3:25:9b:d3:d0:e7:9a:d3:96:aa:83:a4:54:42:05:50:3e:
4f:06:33:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:33:34 2025 by rpki-client