Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7F1E87503BD011F0ACEAC2C4DAE4EC9C.roa
File: 7F1E87503BD011F0ACEAC2C4DAE4EC9C.roa (raw, json)
Hash identifier: 40NCRCI2unvv6HAK4h+d3qcH/rpq3q/XhnNCNPCpM9I=
Subject key identifier: 78:F6:3E:98:E9:81:D6:53:8B:C8:BA:40:0C:7A:DD:85:85:E0:03:E0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01588F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7F1E87503BD011F0ACEAC2C4DAE4EC9C.roa
Signing time: Wed 28 May 2025 14:31:52 +0000
ROA not before: Wed 28 May 2025 14:31:47 +0000
ROA not after: Sun 08 Jun 2025 14:31:47 +0000
asID: 399077
IP address blocks: 156.240.202.0/24 maxlen: 24
156.240.203.0/24 maxlen: 24
156.240.204.0/24 maxlen: 24
156.240.205.0/24 maxlen: 24
156.240.206.0/24 maxlen: 24
156.240.207.0/24 maxlen: 24
156.240.208.0/24 maxlen: 24
156.240.209.0/24 maxlen: 24
156.240.210.0/24 maxlen: 24
156.240.211.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88207 (0x1588f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 28 14:31:47 2025 GMT
Not After : Jun 8 14:31:47 2025 GMT
Subject: CN=68371e58-34c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:f8:57:0a:ba:3b:d7:42:57:43:db:51:1b:4f:
fe:f4:e0:9c:12:2a:9a:4f:f6:59:cc:83:45:84:1b:
04:c8:f7:b1:ef:fe:8b:6c:26:be:6e:9b:a3:bf:d5:
9a:1a:2e:4d:00:d1:2a:34:ac:f0:ed:c2:a2:aa:65:
70:ef:74:60:5c:92:6c:f1:b6:35:a0:db:a5:dd:8e:
74:3f:f5:22:51:db:98:83:59:52:8b:0a:a6:74:6d:
4c:dd:ad:28:f9:be:cf:70:ea:7a:bd:31:fa:31:01:
62:32:08:8c:1b:9c:b6:b9:71:fb:42:99:6b:0e:d8:
96:b1:e0:06:e2:85:c8:e1:24:1a:f5:fc:2a:78:c2:
fa:0b:b0:2f:9e:87:03:a1:13:15:d9:6c:7d:65:d1:
71:aa:5d:45:1b:b9:a6:47:78:3d:d2:0f:a3:b2:25:
3f:19:f3:3d:d9:68:ac:47:29:c6:d0:c0:be:4a:64:
36:36:b4:61:f4:f0:2e:a4:85:c8:f1:44:25:7c:5e:
c5:60:d8:91:6a:ec:d7:3d:3f:c5:c0:bd:6b:8c:96:
36:77:98:d2:1e:3b:3c:d9:07:63:06:8c:27:df:5a:
ce:c8:b4:20:88:8f:2e:4c:5b:97:04:f9:9c:3a:b4:
e4:e3:22:6a:ef:c1:f4:74:29:d0:dc:11:37:67:ed:
a7:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:F6:3E:98:E9:81:D6:53:8B:C8:BA:40:0C:7A:DD:85:85:E0:03:E0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7F1E87503BD011F0ACEAC2C4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.240.202.0-156.240.211.255
Signature Algorithm: sha256WithRSAEncryption
41:7d:c6:7a:bd:61:db:f1:48:08:91:c7:80:7a:86:c2:3b:64:
c8:20:52:48:01:79:18:f0:68:ee:3b:ee:42:a2:05:20:d4:18:
2f:a5:9e:3c:84:a6:68:c3:eb:6f:28:3d:b1:73:3d:6b:9f:e8:
31:1b:d2:f7:11:68:7c:86:d2:b0:ed:3d:95:ff:9c:c6:ea:1c:
da:f5:d1:29:17:4a:5d:79:4c:30:65:d6:01:42:5e:f0:d8:6b:
52:9c:37:6f:18:2b:10:78:6e:ad:cb:f4:17:34:77:93:cd:86:
16:1b:cc:f6:b2:e6:bf:bc:25:49:7f:1f:e5:c3:62:bc:32:12:
62:83:b3:f0:ef:2b:2f:a9:7f:d4:b2:ef:41:c9:04:fb:19:a7:
92:32:38:5f:03:df:db:0e:48:d4:ce:5b:8b:7b:81:7d:f8:8c:
e8:92:6c:b8:fe:27:9e:f3:b7:1f:a8:98:76:ce:c1:f6:c6:13:
a3:d5:05:81:07:59:7d:31:ec:db:3d:10:1f:e5:b8:b4:a6:3a:
12:2e:f3:78:88:3d:ba:db:07:68:88:fd:8b:89:71:e0:c0:14:
f9:ab:89:14:ea:49:d1:17:03:85:68:ca:c2:48:75:05:c9:88:
9f:61:00:7c:36:7a:63:69:20:ab:e1:12:92:1c:b2:1d:56:85:
0d:8d:9f:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:37:40 2025 by rpki-client