Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/84D377F6331911F08C547AD8DAE4EC9C.roa
File: 84D377F6331911F08C547AD8DAE4EC9C.roa (raw, json)
Hash identifier: UEfdLDIsMujhoXrLy3MhJLOB00PLA2nfM0/IR+CfZZQ=
Subject key identifier: E3:D7:94:AA:77:8B:F3:38:19:8D:3C:00:34:5E:E5:E5:C7:38:74:2D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01555B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/84D377F6331911F08C547AD8DAE4EC9C.roa
Signing time: Sat 17 May 2025 12:21:55 +0000
ROA not before: Sat 17 May 2025 12:21:50 +0000
ROA not after: Sun 08 Jun 2025 12:21:50 +0000
asID: 62084
IP address blocks: 156.247.20.0/24 maxlen: 24
156.247.21.0/24 maxlen: 24
156.247.22.0/24 maxlen: 24
156.247.23.0/24 maxlen: 24
156.254.96.0/24 maxlen: 24
156.254.97.0/24 maxlen: 24
156.254.98.0/24 maxlen: 24
156.254.99.0/24 maxlen: 24
156.254.100.0/24 maxlen: 24
156.254.101.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87387 (0x1555b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 17 12:21:50 2025 GMT
Not After : Jun 8 12:21:50 2025 GMT
Subject: CN=68287f63-4ba4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:bb:ce:9b:6a:5b:0d:f0:45:8a:ff:eb:94:39:
a2:bd:9f:c2:ec:a4:76:ba:2f:86:df:b9:55:2e:3a:
2e:ab:1e:eb:8f:e4:ac:35:68:96:05:1b:f4:68:f2:
b3:64:50:6c:e0:6e:0d:e9:b9:42:49:a4:91:f5:05:
9a:e8:79:1c:ab:67:5d:31:ff:72:0e:63:1c:bf:28:
8c:ae:86:f2:08:ef:f0:59:aa:f0:53:89:10:e7:30:
c5:8e:1f:36:d0:64:d8:4e:49:13:20:cc:2c:46:03:
57:ba:e0:19:a0:b0:df:be:d6:76:cc:83:33:13:2e:
95:39:c9:8e:26:92:bf:84:11:3b:ed:35:2b:ad:c3:
9e:17:97:22:91:bb:b5:d2:37:fb:a4:2d:6b:35:a4:
46:ae:63:81:d5:ab:ac:f6:3c:35:b3:bb:e3:27:c0:
ed:59:82:96:ad:ac:66:78:a0:13:31:c7:a6:70:e2:
ac:58:f6:4a:7e:c0:6d:92:53:e1:e3:2a:af:25:23:
9a:f7:c7:69:66:a5:65:bb:c4:ed:f8:57:6c:ae:fb:
81:f8:37:f4:12:c9:3a:82:c9:7d:f7:cb:dc:6e:c6:
a4:02:c8:9b:c2:77:16:b8:fd:d6:e5:36:8e:0d:87:
27:a6:c8:0f:f0:29:e7:37:53:52:77:4b:f9:b7:fb:
5c:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:D7:94:AA:77:8B:F3:38:19:8D:3C:00:34:5E:E5:E5:C7:38:74:2D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/84D377F6331911F08C547AD8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.20.0/22
156.254.96.0-156.254.101.255
Signature Algorithm: sha256WithRSAEncryption
43:0b:f1:42:59:1a:9a:59:9b:b3:ce:d4:6c:aa:45:0f:62:59:
7f:15:30:3d:c6:7f:65:23:0b:7b:2b:c7:73:a1:95:38:6b:0e:
b9:dc:82:b5:f1:c2:c8:1e:ab:c6:ea:df:b9:8e:36:1a:b5:c8:
52:19:75:a9:1a:20:0a:c2:a1:de:5b:0b:80:b4:c8:35:af:2f:
02:a5:ea:0e:18:a8:89:ca:ac:2b:68:1a:a2:96:74:2d:1b:06:
ef:2a:89:e8:44:eb:87:69:e0:09:82:89:d0:63:85:6b:4b:bf:
6c:1b:68:00:51:25:6f:88:d4:e7:0f:97:9c:2f:d6:55:11:d9:
8f:ca:57:a3:4a:ea:90:ca:d9:18:cc:e9:71:f3:d7:e8:33:d1:
e9:92:9a:a7:1f:71:c8:61:5a:93:b2:a7:4e:93:46:d5:02:7f:
83:97:ff:e8:0a:8e:ec:9a:8b:53:b6:00:59:40:1d:c8:d4:e8:
af:29:33:e9:ca:0c:73:c4:6e:64:1e:e8:4d:d1:62:01:b9:25:
21:42:50:7b:d4:12:c5:24:09:55:0a:27:f4:05:a3:81:70:78:
c5:12:c3:ad:40:69:d1:20:e5:64:71:27:ae:4e:8c:d2:8c:08:
7b:84:62:d1:db:b6:ac:dd:d5:eb:6c:17:59:3c:e3:90:42:d7:
1a:61:8e:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:33:05 2025 by rpki-client