Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/880DDFFC3A3E11F09FBAE58BDAE4EC9C.roa
File: 880DDFFC3A3E11F09FBAE58BDAE4EC9C.roa (raw, json)
Hash identifier: SCbO18MInTwBYRXpNqeyjjpc6dAm8ifomza7XvjnATI=
Subject key identifier: 93:46:59:FA:EB:6E:91:E8:7C:03:77:E3:EF:E4:0A:38:BD:BC:07:27
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0157A4
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/880DDFFC3A3E11F09FBAE58BDAE4EC9C.roa
Signing time: Mon 26 May 2025 14:34:30 +0000
ROA not before: Mon 26 May 2025 14:34:25 +0000
ROA not after: Wed 03 Jun 2026 14:34:25 +0000
asID: 17561
IP address blocks: 156.228.224.0/21 maxlen: 24
156.228.234.0/23 maxlen: 24
156.228.236.0/22 maxlen: 24
156.228.240.0/21 maxlen: 24
156.228.248.0/23 maxlen: 24
156.228.252.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 06 Jun 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87972 (0x157a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 26 14:34:25 2025 GMT
Not After : Jun 3 14:34:25 2026 GMT
Subject: CN=68347bf6-7b6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:02:1f:ca:03:30:2b:6e:16:4f:21:66:f7:71:
df:48:3c:39:46:fa:64:21:a8:1d:3a:7e:e0:b2:83:
b9:8d:47:71:d5:75:7e:09:27:81:38:e5:05:d5:15:
f5:9e:ff:db:e9:15:3a:dd:fa:b5:b4:80:93:c1:85:
04:0d:db:18:d6:bd:8f:8b:b7:76:0b:fc:25:1a:60:
b4:a3:66:f9:bd:eb:44:7a:82:28:7c:bf:33:54:f6:
c0:33:55:0c:a9:81:33:73:3f:25:7d:99:6b:97:06:
c9:4f:6d:1a:64:aa:73:6e:43:78:87:3a:a6:0c:ae:
19:bf:45:eb:e6:95:81:39:80:0b:b3:9d:eb:e9:a7:
bc:9e:cb:78:52:48:4b:65:bd:11:fe:6b:1e:5c:79:
48:5d:bc:14:0e:e1:2a:c7:44:0e:2c:e4:11:d9:06:
fb:ac:b8:0e:50:40:e2:32:2e:1d:54:7f:58:a3:9a:
7b:c0:5b:23:55:42:e3:82:82:d5:20:3d:b8:5a:71:
b6:8e:67:c3:0d:74:4b:67:e6:24:56:d5:66:cf:ae:
88:dd:8e:3e:48:bb:f0:01:53:c1:15:50:9b:fd:22:
ee:a5:40:24:ec:dd:82:e2:6a:cf:62:3e:c0:5b:36:
59:95:b1:d4:17:ef:b9:c3:d5:76:45:b5:eb:c9:80:
ef:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:46:59:FA:EB:6E:91:E8:7C:03:77:E3:EF:E4:0A:38:BD:BC:07:27
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/880DDFFC3A3E11F09FBAE58BDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.228.224.0/21
156.228.234.0-156.228.249.255
156.228.252.0/22
Signature Algorithm: sha256WithRSAEncryption
86:3e:50:52:5c:c1:f1:bf:4b:52:b5:df:f3:18:dd:50:89:61:
47:6e:72:87:b1:82:a1:93:c2:33:19:45:54:29:5c:86:e2:b8:
a1:fc:9d:3f:3f:a7:5b:95:9f:e7:31:9b:81:6b:bb:3c:08:27:
d6:10:9b:c6:b6:4f:c9:ed:99:ca:a2:bd:9b:bc:03:7e:f6:75:
a1:26:c7:1c:83:a7:cb:8a:f9:4b:85:55:76:e6:e3:8f:95:26:
01:62:19:d3:6a:36:06:70:d4:2b:ea:89:83:05:68:3f:74:9f:
22:0b:cd:37:99:ea:b2:5e:34:9c:fb:93:28:0e:be:dc:8b:a0:
cf:7e:70:df:44:e8:ad:0d:40:9e:f4:f1:0b:0a:82:7c:23:c1:
4a:fa:51:a6:cc:de:e3:69:40:ab:e6:51:b2:a9:0a:23:34:2e:
c2:be:62:7d:e7:f9:fa:f4:89:b3:49:75:e9:ea:75:c2:3d:15:
a7:52:4e:79:38:62:cf:e8:cc:ee:ff:d7:a8:8e:f3:48:50:68:
80:70:aa:90:3b:c6:81:1c:80:7c:ca:9c:2f:3d:ed:a2:36:ab:
fa:15:95:88:66:44:66:3b:28:a5:0d:d1:54:60:f0:e8:30:70:
e1:71:ec:42:24:02:e2:de:bf:c1:be:8a:06:d7:04:34:2f:3a:
63:0b:0d:af
-----BEGIN CERTIFICATE-----
MIIFlTCCBH2gAwIBAgIDAVekMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNTI2MTQzNDI1WhcNMjYwNjAzMTQzNDI1WjAYMRYw
FAYDVQQDEw02ODM0N2JmNi03YjZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA1gIfygMwK24WTyFm93HfSDw5RvpkIagdOn7gsoO5jUdx1XV+CSeBOOUF
1RX1nv/b6RU63fq1tICTwYUEDdsY1r2Pi7d2C/wlGmC0o2b5vetEeoIofL8zVPbA
M1UMqYEzcz8lfZlrlwbJT20aZKpzbkN4hzqmDK4Zv0Xr5pWBOYALs53r6ae8nst4
UkhLZb0R/mseXHlIXbwUDuEqx0QOLOQR2Qb7rLgOUEDiMi4dVH9Yo5p7wFsjVULj
goLVID24WnG2jmfDDXRLZ+YkVtVmz66I3Y4+SLvwAVPBFVCb/SLupUAk7N2C4mrP
Yj7AWzZZlbHUF++5w9V2RbXryYDvjwIDAQABo4ICtjCCArIwHQYDVR0OBBYEFJNG
WfrrbpHofAN34+/kCji9vAcnMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC84ODBEREZGQzNBM0UxMUYwOUZCQUU1OEJEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAATAaAwQDnOTgMAwDBAGc5OoDBAGc5PgD
BAKc5PwwDQYJKoZIhvcNAQELBQADggEBAIY+UFJcwfG/S1K13/MY3VCJYUducoex
gqGTwjMZRVQpXIbiuKH8nT8/p1uVn+cxm4FruzwIJ9YQm8a2T8ntmcqivZu8A372
daEmxxyDp8uK+UuFVXbm44+VJgFiGdNqNgZw1CvqiYMFaD90nyILzTeZ6rJeNJz7
kygOvtyLoM9+cN9E6K0NQJ708QsKgnwjwUr6UabM3uNpQKvmUbKpCiM0LsK+Yn3n
+fr0ibNJdenqdcI9FadSTnk4Ys/ozO7/16iO80hQaIBwqpA7xoEcgHzKnC897aI2
q/oVlYhmRGY7KKUN0VRg8OgwcOFx7EIkAuLev8G+igbXBDQvOmMLDa8=
-----END CERTIFICATE-----
Generated at Thu Jun 5 01:42:01 2025 by rpki-client