Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/566A20FE244B11F097BD50C2DAE4EC9C.roa
File: 566A20FE244B11F097BD50C2DAE4EC9C.roa (raw, json)
Hash identifier: 7+F/wAVsHvQrN7Mjo6QJ6hOLI8FrXOz0oVpynUiCWqA=
Subject key identifier: 4E:E0:D2:28:B3:D1:7F:74:CE:A3:E0:C0:1E:08:FA:85:55:38:97:68
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014FB9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/566A20FE244B11F097BD50C2DAE4EC9C.roa
Signing time: Mon 28 Apr 2025 16:10:44 +0000
ROA not before: Mon 28 Apr 2025 16:10:40 +0000
ROA not after: Wed 04 Jun 2025 16:10:40 +0000
asID: 264750
IP address blocks: 156.248.192.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Jun 2025 16:10:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85945 (0x14fb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 28 16:10:40 2025 GMT
Not After : Jun 4 16:10:40 2025 GMT
Subject: CN=680fa884-cc1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:13:8c:f1:59:87:24:f7:ce:ed:5f:2f:11:1a:
38:8d:80:80:d3:57:06:3a:99:71:95:5d:09:28:91:
a1:66:a7:c8:1c:e4:6d:48:a7:70:70:09:7b:a1:fe:
f1:ff:22:97:27:e8:66:54:06:fb:2e:9e:bd:ed:c9:
5d:dc:c7:76:6f:05:57:76:b8:b7:0f:18:4f:4c:fe:
31:48:9f:e5:8b:2d:53:af:a0:22:b8:ef:34:ac:d6:
f9:c3:10:71:b8:75:c0:84:9d:05:82:27:3c:c6:2f:
3e:f0:c9:6b:fe:57:ae:42:73:88:92:fb:34:69:c1:
59:d0:b3:f7:a8:40:44:ae:20:42:47:b1:2f:22:1c:
ff:eb:26:fd:1d:d1:1e:9b:6c:b7:fa:ba:df:6f:0c:
e8:1c:69:86:5a:1c:e8:94:ef:b7:12:4a:07:5e:ba:
9b:3f:c2:52:7d:0f:08:5a:9c:2c:cb:be:19:c7:fe:
fd:5f:e8:1d:a1:2b:d8:91:52:bf:8a:94:1d:e5:ad:
83:4b:34:2b:fd:e7:d9:c0:86:de:9a:6c:92:af:6a:
48:94:f4:b0:68:0d:2f:8e:28:93:da:15:20:63:ad:
a5:32:49:ea:0b:fb:e0:c7:18:f9:31:46:e6:8e:55:
67:38:00:67:55:2f:2e:82:e3:dd:1a:c4:7e:ef:30:
f0:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:E0:D2:28:B3:D1:7F:74:CE:A3:E0:C0:1E:08:FA:85:55:38:97:68
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/566A20FE244B11F097BD50C2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.248.192.0/18
Signature Algorithm: sha256WithRSAEncryption
37:85:ff:13:42:be:69:54:46:e0:03:a5:f2:31:ca:9a:4f:0d:
3c:43:29:cc:33:c4:28:a3:9f:e6:a9:00:ca:ba:63:a5:d1:dd:
c2:2c:20:06:25:55:09:81:1a:89:a5:af:c4:93:16:05:62:7a:
d5:3b:c0:10:ed:30:27:3d:49:b1:ca:9c:b9:e9:ed:b9:4a:08:
0a:c2:5d:b9:8b:cc:11:7f:b2:6d:fb:4c:36:bc:0b:4d:7c:69:
88:04:8a:e9:67:d5:58:df:64:68:68:43:88:15:89:2f:c3:0d:
53:85:0c:bc:a3:a5:84:00:99:2a:70:72:5a:99:df:79:1f:c5:
00:f0:bb:fb:08:17:f3:fd:03:6e:46:a9:69:46:4b:4b:d3:2b:
5e:30:f5:32:9a:49:01:bc:b8:35:e4:29:db:cc:a5:49:c2:f5:
6d:48:fe:e0:ce:01:d7:b9:64:b2:b8:79:bd:79:e5:5f:97:c8:
5d:b2:e0:ed:ed:ee:cf:89:48:6a:2e:e7:6b:f5:ee:56:7a:2e:
d9:01:68:45:77:eb:df:68:cf:d1:d7:26:b0:fa:86:25:dc:45:
2e:0f:52:90:32:51:04:1e:87:ca:9a:63:d9:b0:d9:6b:3a:3e:
50:a4:08:90:62:e7:f1:34:25:4f:76:6e:1a:0f:01:a9:c2:95:
bf:55:9a:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:31:28 2025 by rpki-client