Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6F544C183BA511F0AEA898AFDAE4EC9C.roa
File: 6F544C183BA511F0AEA898AFDAE4EC9C.roa (raw, json)
Hash identifier: VJTLdpsZo9BebwO37CGiOZW32ESzb5cCZv+7+18FSf4=
Subject key identifier: C4:0A:B3:C6:37:57:B7:53:0B:AB:9A:48:B9:74:36:1A:66:59:9A:F7
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015827
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6F544C183BA511F0AEA898AFDAE4EC9C.roa
Signing time: Wed 28 May 2025 09:23:38 +0000
ROA not before: Wed 28 May 2025 09:23:33 +0000
ROA not after: Wed 02 Jul 2025 09:23:33 +0000
asID: 214016
IP address blocks: 156.225.42.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88103 (0x15827)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 28 09:23:33 2025 GMT
Not After : Jul 2 09:23:33 2025 GMT
Subject: CN=6836d619-9362
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:24:27:e3:9a:51:4f:d5:ea:b0:65:0a:5d:e0:
eb:c5:98:67:d8:62:e1:f6:f5:31:92:7c:4f:d7:c4:
31:f6:87:8a:a7:f7:d1:d0:50:48:07:6a:90:2e:81:
fb:e5:63:6c:00:2a:51:95:fc:a8:b0:01:1c:95:af:
2a:9e:97:59:a1:d1:c0:66:20:bc:ab:a6:aa:10:83:
c0:2c:d4:ba:0d:03:2a:6a:a5:56:a9:51:26:67:fa:
4d:4f:ef:b3:77:cd:fc:61:58:6a:b3:ca:77:4b:ea:
bf:d8:79:d0:3e:59:a9:e6:10:4d:f5:db:46:b5:c9:
e9:e7:68:3b:42:7e:57:13:8c:1b:6e:19:2e:57:94:
71:2c:d4:91:ab:68:8a:2f:5b:38:7f:4a:cd:ba:79:
0b:de:af:bb:17:36:26:10:3a:06:39:5b:c3:43:7c:
4f:4e:ef:7b:3d:fd:4d:f0:58:88:9d:30:ed:e7:52:
1a:99:0f:97:9d:0f:9e:db:40:dc:8f:dc:7d:0c:d8:
39:1e:08:96:86:a2:02:12:e5:86:99:a6:08:a4:e3:
1a:00:36:72:05:7e:50:c1:ed:8f:4d:57:9d:4b:82:
54:72:6a:7c:d8:f2:ff:37:8e:20:ed:82:43:0a:bc:
e8:41:24:71:07:77:d6:0d:fa:cb:1f:ec:95:9c:e9:
0f:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:0A:B3:C6:37:57:B7:53:0B:AB:9A:48:B9:74:36:1A:66:59:9A:F7
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6F544C183BA511F0AEA898AFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.42.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:b6:b5:cb:cc:91:aa:3b:77:8b:53:7f:1e:be:c0:f1:89:3b:
47:11:a6:dc:aa:ba:19:0e:6f:71:f9:6c:be:3c:5a:c9:87:10:
19:17:0e:ac:48:4d:56:0d:b3:1f:db:a5:bc:c2:ae:33:a8:38:
a7:49:39:85:c1:88:98:ac:21:ab:65:0a:54:47:b7:6a:58:f2:
c1:cd:67:37:4e:d2:4d:cd:dd:36:bd:61:9a:24:66:25:4f:20:
ad:b9:8f:da:de:e9:4a:0d:19:c6:2a:78:2c:6a:32:50:3f:c0:
55:c0:ae:ea:d8:94:57:2d:dd:d4:c4:84:cc:c2:47:60:84:4f:
ef:22:0e:f1:a8:e3:97:3d:eb:79:85:10:26:8c:47:ed:c0:da:
a2:e4:d9:aa:a5:13:24:ff:a2:4d:ca:9e:f6:de:7c:1e:66:42:
3d:9b:a7:d0:89:d4:ff:21:8e:9e:b6:38:fb:dc:b1:7d:09:61:
a7:41:6c:16:5f:44:c7:98:ca:a0:d2:94:6e:fc:b9:d5:a7:a0:
98:dc:42:6b:2b:8d:5e:2e:7b:d1:98:da:d9:88:d2:cb:ee:cd:
22:39:84:d7:24:d9:f7:5b:8b:f2:8d:ad:c5:2b:35:a4:a4:72:
44:ae:0b:77:48:14:90:87:4b:da:a5:a9:77:6f:ac:ad:75:8a:
ce:a6:52:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:22:03 2025 by rpki-client