Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5915E774380611F08410BD92DAE4EC9C.roa
File: 5915E774380611F08410BD92DAE4EC9C.roa (raw, json)
Hash identifier: QOc1jHkTPdzcqU9Fp3necg4BDUkrS+L0JcjeLnPjwWM=
Subject key identifier: 9E:D1:10:6F:F2:31:81:35:2F:D0:F8:D7:DE:AD:FA:5B:86:97:20:84
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015709
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5915E774380611F08410BD92DAE4EC9C.roa
Signing time: Fri 23 May 2025 18:47:17 +0000
ROA not before: Fri 23 May 2025 18:47:12 +0000
ROA not after: Sat 05 Jul 2025 18:47:12 +0000
asID: 8796
IP address blocks: 156.238.224.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87817 (0x15709)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 23 18:47:12 2025 GMT
Not After : Jul 5 18:47:12 2025 GMT
Subject: CN=6830c2b5-1f05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b4:88:9c:a7:93:9c:31:0b:c7:46:3d:6b:06:
98:68:b5:7a:c3:24:23:47:24:28:6c:2e:a7:9e:32:
af:bc:f7:41:a9:70:e0:e9:e3:65:74:d1:66:c5:cf:
53:ab:84:ba:7f:c4:bf:64:13:bc:7c:48:6c:f4:ca:
54:5b:21:26:54:07:f7:f5:4b:f8:a3:08:f7:10:d3:
28:01:19:3a:3c:56:07:da:9e:a2:87:40:db:33:58:
86:12:e9:34:43:11:4e:5d:28:5a:2b:2d:25:0a:1d:
9d:03:8e:08:17:5f:a2:32:fc:c2:fd:57:5c:2f:6e:
30:7d:34:23:56:be:35:4a:e2:c1:87:6b:46:86:42:
39:34:a5:d6:bc:ef:88:8f:7e:41:2f:45:73:84:e7:
7d:d0:cd:d0:8e:b3:e1:80:0c:b7:a3:f9:52:02:4d:
ea:ce:a8:0f:6c:dd:b3:6b:f0:13:db:1b:3e:9e:8c:
0b:8b:c3:4a:11:94:b0:a6:c7:b6:0e:3c:69:f9:4a:
b9:ec:4a:43:e1:ac:f9:11:38:4d:1f:cd:92:de:c7:
26:db:48:49:46:58:b0:d0:a6:47:db:49:7d:8b:8b:
71:27:e8:9a:3a:8a:eb:de:dc:4f:2f:40:d8:25:ef:
1e:72:69:41:2d:31:a1:f4:58:9b:a7:e9:f2:02:6a:
4c:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:D1:10:6F:F2:31:81:35:2F:D0:F8:D7:DE:AD:FA:5B:86:97:20:84
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5915E774380611F08410BD92DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.224.0/19
Signature Algorithm: sha256WithRSAEncryption
b9:3a:9a:47:36:b6:0c:86:ab:d2:ce:9c:f4:ba:68:9c:8d:6c:
c3:27:85:83:7d:51:13:57:c0:85:cb:8f:36:ed:2b:3b:f8:be:
76:aa:0f:f5:7e:8a:81:97:cd:b4:35:48:dd:5f:36:4b:b4:b0:
c2:9a:3c:36:36:e3:f3:f9:d8:85:14:2c:69:9d:37:90:86:38:
23:20:79:b6:30:8e:d3:5f:7a:84:1d:fa:ec:c8:b8:69:02:4c:
84:be:83:24:e7:81:9e:a8:0e:46:06:06:ce:3b:6d:6a:90:4c:
dc:b9:e3:cc:e0:75:be:12:85:d1:62:ba:d3:af:f2:f8:da:ee:
c5:47:06:af:20:a7:b1:bd:93:e5:00:cb:3e:1a:66:30:00:72:
20:ff:9e:d7:91:07:e6:00:c6:32:63:1e:8b:0e:e9:3b:e9:4c:
37:1e:a8:d2:6c:63:f7:29:a2:db:fb:99:af:d7:12:fd:29:87:
fa:39:02:bd:dd:06:90:11:60:5f:74:80:db:07:c0:c3:2d:67:
75:6a:a4:4c:c8:ab:d4:8a:2f:8e:34:00:bc:19:72:d8:c7:51:
9f:56:4c:62:db:bf:c5:a2:6e:c2:d6:f9:26:62:0b:73:51:c2:
68:79:2e:cd:93:a9:f6:14:9c:d5:d5:9b:0f:6c:92:f2:ee:03:
d3:82:f0:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 09:13:40 2025 by rpki-client