Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/57A1C2F8243F11F09B1557F0DAE4EC9C.roa
File: 57A1C2F8243F11F09B1557F0DAE4EC9C.roa (raw, json)
Hash identifier: tfigc2xDDD7j+TiEZmpXqq2olzpnEKm9AIJLUuU+KZY=
Subject key identifier: 8A:B2:65:6E:39:66:64:6A:7B:52:23:3C:DD:B5:7F:79:B3:35:EA:C9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014F78
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/57A1C2F8243F11F09B1557F0DAE4EC9C.roa
Signing time: Mon 28 Apr 2025 14:44:52 +0000
ROA not before: Mon 28 Apr 2025 14:44:48 +0000
ROA not after: Sun 26 Apr 2026 14:44:48 +0000
asID: 984
IP address blocks: 156.238.45.0/24 maxlen: 24
156.238.46.0/24 maxlen: 24
156.238.47.0/24 maxlen: 24
156.238.126.0/24 maxlen: 24
156.239.17.0/24 maxlen: 24
156.239.19.0/24 maxlen: 24
156.239.143.0/24 maxlen: 24
156.239.154.0/24 maxlen: 24
156.249.4.0/24 maxlen: 24
156.249.5.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85880 (0x14f78)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 28 14:44:48 2025 GMT
Not After : Apr 26 14:44:48 2026 GMT
Subject: CN=680f9464-eeae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:4b:6e:eb:de:6d:7f:7a:58:88:ae:25:db:f6:
d2:45:ad:57:72:b9:41:ad:5d:22:7d:bc:0a:71:30:
66:4b:ef:6f:65:ec:a1:52:d4:cd:c4:e0:dc:0c:e7:
cc:fa:ab:bb:b4:c0:db:48:cc:76:2e:4d:e5:ef:c0:
fa:4c:d5:b3:3c:81:54:e7:ac:0c:23:7c:06:cd:5f:
1c:a8:5a:58:f8:0f:78:bd:4b:c5:fc:84:b8:b3:61:
ac:53:de:66:e3:03:a9:13:11:48:ce:98:1e:aa:c5:
f7:ad:78:21:96:5a:dd:28:0e:6d:28:78:42:3e:08:
5a:e0:0e:72:23:1b:fa:a1:08:e8:4e:3e:94:1e:4d:
ab:dc:05:b8:4e:51:ea:a4:c3:e6:dc:b0:f6:ff:ff:
83:50:e9:bc:af:f0:4a:40:6e:0f:9c:66:f8:f8:6e:
56:d2:ee:67:5f:81:e0:fb:c8:dc:ac:08:8a:06:4b:
4b:45:48:bc:e6:cf:4c:ea:ce:a1:57:dd:e4:3f:4c:
b6:59:ca:a3:49:8e:1c:97:3a:20:43:f7:53:d9:a3:
8b:3d:c4:9d:15:2c:ac:61:64:a6:bd:49:e4:c7:4f:
43:37:be:c2:20:c9:c1:dc:d4:a2:d2:04:ae:e0:97:
c4:4b:89:f9:1d:6d:d2:71:86:f2:30:5a:ec:e5:91:
77:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:B2:65:6E:39:66:64:6A:7B:52:23:3C:DD:B5:7F:79:B3:35:EA:C9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/57A1C2F8243F11F09B1557F0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.45.0-156.238.47.255
156.238.126.0/24
156.239.17.0/24
156.239.19.0/24
156.239.143.0/24
156.239.154.0/24
156.249.4.0/23
Signature Algorithm: sha256WithRSAEncryption
a6:46:4f:17:77:e7:f1:af:fe:8f:4b:94:b6:81:00:04:49:c5:
e5:14:f3:f2:20:df:e2:50:5b:65:6d:f6:fa:e5:49:41:b8:c5:
c4:11:27:e8:a9:66:7b:c3:d0:67:50:95:9a:a8:51:8b:83:53:
8c:4b:41:40:b8:2d:30:da:af:c7:ac:a4:2a:eb:da:9f:3e:05:
5b:fa:39:0d:ca:72:6c:9d:a8:f5:cb:96:55:6a:e7:9b:e0:c9:
8d:99:a1:37:f9:bb:cc:14:0b:1a:06:24:46:71:31:be:4e:28:
dd:58:a6:dd:46:42:b1:b1:c8:3e:9f:63:80:a4:43:61:50:ef:
f3:42:54:fa:60:26:b7:66:db:f2:13:74:2e:d6:ce:8f:dd:00:
2d:d9:61:3f:f4:58:6d:65:54:8c:24:fa:26:da:dc:41:ee:9a:
38:3b:c3:4d:b9:61:95:31:6d:14:0b:12:10:c6:e3:80:dc:41:
62:29:62:8e:be:99:53:1c:ad:7e:89:ae:07:4e:00:8b:83:dc:
ec:9f:14:80:11:9f:8e:5c:4e:f7:84:a5:98:43:da:d1:f1:3f:
c2:71:5e:2c:2f:bd:8f:44:7e:67:02:78:92:c4:fa:3b:91:04:
b4:6c:1f:bf:e4:35:e8:01:a2:b8:d6:e4:cf:ce:0d:ce:9d:90:
8c:22:3e:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:27:14 2025 by rpki-client