Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/545F4726328311F0BD5908E5DAE4EC9C.roa
File: 545F4726328311F0BD5908E5DAE4EC9C.roa (raw, json)
Hash identifier: Rqe0U6MWUWBEqT6QhreGUypwhhjwy7Pd+UL/5JlNrBE=
Subject key identifier: 6E:95:80:15:E1:D8:95:67:CB:55:4C:47:65:33:2D:58:A4:D6:03:59
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0154F5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/545F4726328311F0BD5908E5DAE4EC9C.roa
Signing time: Fri 16 May 2025 18:26:49 +0000
ROA not before: Fri 16 May 2025 18:26:44 +0000
ROA not after: Thu 19 Jun 2025 18:26:44 +0000
asID: 57043
IP address blocks: 156.253.7.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87285 (0x154f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 16 18:26:44 2025 GMT
Not After : Jun 19 18:26:44 2025 GMT
Subject: CN=68278369-50ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:94:c8:eb:29:fc:32:3d:b6:a0:15:72:9e:98:
36:b4:3d:81:32:98:40:3c:f4:6c:94:70:34:e8:52:
49:5b:78:0d:4a:16:99:8d:30:71:e7:3d:12:5d:b2:
24:5f:1b:79:46:95:06:57:8f:ee:7f:66:67:4b:fe:
2d:36:cc:f6:c1:09:1b:fc:f5:18:bf:4f:dd:46:ca:
0e:00:b0:89:b8:59:6a:c3:0f:78:8b:18:85:50:a2:
e8:fd:6b:8f:e5:ec:b3:38:dd:03:e5:2a:51:38:c9:
87:ad:f1:70:14:bc:81:d8:aa:c0:ea:98:10:84:57:
90:eb:fa:ac:91:cf:90:f3:c3:86:c1:54:17:4a:41:
2f:01:b7:f1:ae:74:92:c0:5d:a3:0b:f4:de:74:6a:
ae:91:eb:e8:fc:62:c2:8d:b7:24:5d:14:b4:14:5d:
f7:9e:db:d5:87:e5:37:90:df:c2:b6:31:6a:b0:45:
77:b4:be:d4:dd:10:a0:07:bc:5d:4b:ab:50:69:a2:
ab:b1:9d:07:09:97:37:09:2d:f2:65:1e:b8:28:a5:
7e:73:2e:2a:ec:a8:22:ca:7f:9d:5a:70:3b:c4:1c:
05:ff:1b:9b:a8:2b:f5:de:d4:c8:8d:2c:a5:84:d7:
03:03:7a:cb:c3:c4:0a:3d:90:93:4c:b5:2f:f6:bb:
a5:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:95:80:15:E1:D8:95:67:CB:55:4C:47:65:33:2D:58:A4:D6:03:59
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/545F4726328311F0BD5908E5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.253.7.0/24
Signature Algorithm: sha256WithRSAEncryption
32:56:c5:ef:e5:d3:dc:72:6c:d1:ed:ec:97:28:96:71:cf:a2:
f3:5c:8b:de:39:1f:b2:64:23:dc:8a:f2:35:ce:8c:5f:92:a6:
21:72:11:1f:a5:1d:f0:d2:e4:4c:98:17:5d:df:fa:14:79:e0:
f7:5d:fc:ca:c6:17:7c:c3:6f:82:ad:7d:2c:5d:49:e1:f4:03:
2f:16:9f:74:c0:e5:02:dc:1e:b3:ee:17:23:65:c8:cd:62:e7:
4b:46:42:4b:e0:d3:9f:d2:1c:ad:1a:45:0e:c9:fc:25:c4:1c:
c3:89:70:11:5b:55:1f:8f:82:7e:74:ff:f5:27:20:50:98:45:
5b:b0:aa:84:cc:78:26:80:68:23:8e:74:8d:8a:68:c1:2a:d8:
32:b2:72:5a:fd:1f:7f:dd:86:59:91:47:1b:1f:be:1b:70:29:
22:d6:05:70:07:92:27:4c:bc:1a:2b:95:5e:7a:95:60:7d:5f:
1c:09:74:03:8d:91:4e:65:8d:7d:e7:2a:bc:9d:32:15:7c:40:
2b:a6:4f:b7:bf:a3:3b:86:33:22:6d:8a:c5:b6:76:02:72:24:
0c:fc:27:51:e3:1d:9a:07:a8:fc:03:f1:52:71:09:91:7f:f4:
69:e9:ec:67:18:2b:3b:a0:03:b5:54:84:0b:cb:09:3c:0b:82:
c6:a5:01:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:51:13 2025 by rpki-client