Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/592BA9C23BC311F08767A2EEDAE4EC9C.roa
File: 592BA9C23BC311F08767A2EEDAE4EC9C.roa (raw, json)
Hash identifier: QEsQrRMHD8V+DYaFuO51UWn/ruoY483zus/jpW/ztTM=
Subject key identifier: 58:1A:C2:5C:41:13:E2:7D:DC:E5:FF:2E:A5:7A:26:45:FD:3D:A7:23
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01586C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/592BA9C23BC311F08767A2EEDAE4EC9C.roa
Signing time: Wed 28 May 2025 12:57:45 +0000
ROA not before: Wed 28 May 2025 12:57:41 +0000
ROA not after: Sat 07 Jun 2025 12:57:41 +0000
asID: 269984
IP address blocks: 156.255.128.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88172 (0x1586c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 28 12:57:41 2025 GMT
Not After : Jun 7 12:57:41 2025 GMT
Subject: CN=68370849-a19b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:65:fd:5b:11:59:39:70:e2:3a:d8:89:a7:c7:
a4:d0:62:a5:d6:1c:d0:25:87:f7:59:49:7b:11:c7:
56:10:08:57:50:99:c4:a7:55:87:73:35:b1:98:18:
ab:a7:5e:09:8d:ba:85:19:a9:12:4d:88:d9:d1:1a:
04:79:74:a6:af:c4:ad:04:8a:d4:1e:e8:17:63:1c:
dc:e6:af:84:b7:aa:3e:84:cb:21:29:0a:c9:71:a3:
d7:be:43:65:72:4b:3d:28:d8:18:ff:e0:03:63:84:
c2:94:1d:36:50:40:11:86:4c:9d:af:09:f9:8a:ff:
c8:47:01:bb:a8:aa:08:0d:66:19:9b:3e:86:db:dd:
36:91:33:f3:cd:4e:c2:09:be:84:6b:9e:9c:79:fd:
b5:9a:83:c9:0a:ad:da:b3:da:95:a7:59:33:52:17:
15:15:8b:27:24:c2:38:f6:94:44:24:c8:e8:00:95:
e2:d9:3f:ab:8e:48:41:5b:93:f8:7a:b8:e1:d8:c1:
68:aa:bf:6f:4a:d4:8a:21:09:2d:d2:9c:46:e0:23:
75:0a:39:ba:89:08:2c:01:7b:9f:92:09:e4:7c:1c:
a5:d2:40:12:2c:b6:96:f8:d7:a7:5b:6b:44:32:4d:
fe:6f:c1:40:c4:71:11:32:9c:56:63:14:c8:ef:dc:
0c:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:1A:C2:5C:41:13:E2:7D:DC:E5:FF:2E:A5:7A:26:45:FD:3D:A7:23
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/592BA9C23BC311F08767A2EEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.255.128.0/21
Signature Algorithm: sha256WithRSAEncryption
47:23:b4:47:2a:fc:50:2f:e7:a0:cc:d0:3d:20:2b:52:aa:49:
0b:e7:88:46:34:c6:ad:d0:d4:f8:eb:23:30:94:62:65:da:51:
1e:cb:31:df:77:d6:54:d2:39:ee:6b:6e:ae:a1:36:45:9b:a9:
dd:04:3b:b1:00:cd:f3:5f:b7:c6:7e:7c:69:9f:25:c7:ba:14:
86:67:d1:98:4f:1c:a5:1c:be:27:ac:fd:ce:f4:e5:23:8b:29:
43:a0:4f:4b:95:e6:38:3d:e9:11:08:91:f6:5a:36:18:5d:74:
85:23:2a:90:77:12:eb:3c:a3:04:7a:70:29:0d:90:a5:0e:72:
b6:f4:a7:3f:fc:a1:55:50:af:6e:e5:81:c9:17:8c:97:42:18:
8d:89:64:88:2a:05:cb:f7:25:68:e0:71:8d:dc:a7:d5:a0:26:
7b:19:5d:6e:fe:a0:b6:92:0f:5b:72:af:8f:5b:e3:60:6c:a4:
0c:cf:79:4d:37:25:84:47:93:43:3c:60:d0:81:53:4a:f5:9e:
83:55:7d:6c:ed:21:c2:6b:89:b0:2e:4d:0f:c7:b5:07:e8:45:
d0:57:10:7d:ab:f5:5f:d8:77:d2:44:51:fa:ee:8b:28:88:38:
ad:16:32:39:16:8e:50:45:d8:44:cf:17:49:83:ec:26:26:5f:
f6:d4:fa:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:27:18 2025 by rpki-client