Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/50A6B50635F311F082EA80E7DAE4EC9C.roa
File: 50A6B50635F311F082EA80E7DAE4EC9C.roa (raw, json)
Hash identifier: S9Ap1mhC2nD8Spu9hWPLeaQt6ImPpckVt+jXFk050bc=
Subject key identifier: 45:4C:20:A1:6E:27:96:B4:18:6A:7F:A8:10:5B:56:2C:33:90:25:D3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015663
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/50A6B50635F311F082EA80E7DAE4EC9C.roa
Signing time: Wed 21 May 2025 03:26:00 +0000
ROA not before: Wed 21 May 2025 03:25:55 +0000
ROA not after: Tue 10 Jun 2025 03:25:55 +0000
asID: 57043
IP address blocks: 156.253.46.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87651 (0x15663)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 21 03:25:55 2025 GMT
Not After : Jun 10 03:25:55 2025 GMT
Subject: CN=682d47c8-0541
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:57:4c:c5:10:5c:bb:91:36:55:51:69:e8:e7:
1b:63:e2:3c:e0:4a:37:15:c0:45:31:50:8a:01:9a:
ff:7e:ef:c2:7e:52:ea:26:ec:9e:f9:7d:4d:0e:a4:
0a:ea:11:54:87:cb:49:cf:7b:30:1a:7d:f9:c3:62:
eb:82:53:4a:0b:bc:8f:1f:96:4c:60:85:b2:92:bc:
31:d6:a3:d7:f4:f4:2b:71:48:af:6c:2f:1c:b0:42:
92:31:b3:c2:9b:30:0f:d1:93:0b:d6:93:5b:e2:c2:
f2:ab:f5:03:92:bd:8e:81:dd:d7:f4:b7:48:b1:a1:
ea:30:f5:1c:24:09:e9:f6:e8:06:00:92:dc:03:cc:
aa:6f:de:f1:fd:85:dd:83:7f:e4:33:71:b6:7f:03:
cb:6b:a5:7c:c4:9b:32:09:3f:19:8a:9e:67:6b:a5:
c0:56:28:15:67:9e:e0:32:19:5c:c5:77:65:e2:e4:
b2:ca:c0:c3:d6:85:3b:5a:bd:b3:ab:fd:5d:f3:c1:
49:1d:12:79:69:08:e4:fd:50:ba:ce:17:ed:cd:83:
8b:78:71:c2:d1:ef:7a:3d:fb:e3:75:24:7a:d7:06:
f4:fc:95:d9:6d:7b:61:74:04:47:9c:2d:d3:69:f1:
5c:95:d0:83:66:15:c8:54:11:f0:9e:77:d0:6b:62:
00:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:4C:20:A1:6E:27:96:B4:18:6A:7F:A8:10:5B:56:2C:33:90:25:D3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/50A6B50635F311F082EA80E7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.253.46.0/24
Signature Algorithm: sha256WithRSAEncryption
91:b3:37:b1:61:02:b4:bf:56:ac:08:46:2b:cd:6a:71:17:84:
7f:25:45:2e:48:e2:d8:bc:2a:14:17:8b:87:ab:26:b7:61:b0:
f2:87:38:59:40:bc:4e:48:51:a8:cf:db:bc:55:98:55:7a:fe:
ad:7e:7e:13:d8:bd:ef:f9:1c:02:ee:c8:83:62:93:fd:e4:14:
c9:d1:f9:a9:68:a1:c5:2e:2f:96:66:ca:e1:86:96:e5:09:e5:
36:bd:b4:52:f1:78:e7:77:ce:4c:6a:60:93:b5:cc:3c:c3:c6:
48:e7:1e:5e:b9:56:10:b9:91:e2:a6:2e:01:31:c0:bd:da:c5:
b2:7a:8b:ed:a9:ea:93:e8:ff:67:52:5d:bf:02:80:98:aa:71:
60:57:27:11:fa:23:ec:43:f2:b8:dd:8f:a7:53:04:63:8b:c8:
ca:11:bf:cd:42:60:85:92:b9:e7:74:f4:ac:4f:20:e0:15:20:
67:45:76:57:65:94:2d:c6:da:e9:a5:8e:66:3b:00:27:5a:14:
8b:46:49:09:7f:75:f6:99:b2:66:7d:dc:54:19:d8:c6:31:2b:
48:dd:c5:25:f8:85:79:42:f0:5c:e2:d2:61:db:3b:fc:b3:a1:
6e:4e:d1:96:7e:65:6f:37:38:17:99:ca:fe:67:be:40:4f:e3:
9a:51:3c:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:41:45 2025 by rpki-client