Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/92BF19E03E2411F099464DE6DAE4EC9C.roa
File: 92BF19E03E2411F099464DE6DAE4EC9C.roa (raw, json)
Hash identifier: TrJNCt8+85Y/AhD6rdDfw5BTZBdqiBtv1nRBxCtxUZU=
Subject key identifier: C9:5B:61:00:C8:0D:42:70:32:96:93:83:58:46:AE:02:A5:C5:DB:A1
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015920
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/92BF19E03E2411F099464DE6DAE4EC9C.roa
Signing time: Sat 31 May 2025 13:38:45 +0000
ROA not before: Sat 31 May 2025 13:38:40 +0000
ROA not after: Thu 10 Jul 2025 13:38:40 +0000
asID: 40779
IP address blocks: 156.233.224.0/20 maxlen: 24
156.238.224.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88352 (0x15920)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 31 13:38:40 2025 GMT
Not After : Jul 10 13:38:40 2025 GMT
Subject: CN=683b0665-7aca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:6c:08:ce:fe:3e:6d:fa:24:16:c1:18:73:e1:
46:6a:72:7a:80:ef:f3:20:57:ef:04:a0:af:bf:68:
70:83:6e:9d:8b:40:32:8a:d5:31:3a:5c:a2:ce:ef:
71:50:2e:bb:48:7b:16:ea:b8:1d:03:d6:a4:0e:10:
9a:48:2f:a7:6d:e6:33:d6:92:66:11:e0:91:4d:10:
dc:cd:f3:6a:0b:74:85:9e:15:da:30:70:2f:8a:53:
75:bb:d7:c1:7c:b6:94:3d:c0:01:6f:ce:c9:12:af:
b6:00:81:93:be:84:d4:7e:1f:15:7a:70:7f:7f:7b:
2f:8f:ae:e1:8e:d7:e2:fc:17:ab:76:73:ea:67:e4:
1d:09:8c:3d:ec:4b:37:ca:9f:0a:4e:c3:0c:42:49:
ee:8e:90:2e:a1:ad:4b:0c:f8:6e:26:a9:f4:2b:5b:
ba:11:24:29:9e:3a:3c:3b:44:8e:db:fb:f3:1e:00:
0e:6e:a7:de:47:66:cd:9b:ff:ed:3b:74:96:a0:b9:
57:4c:c0:b5:e9:ee:ca:27:9f:ca:2c:80:e5:47:da:
e2:51:dc:ef:69:ff:d8:d9:69:46:7d:9f:8e:83:73:
12:a2:fa:27:61:a1:a2:d2:54:89:07:ed:84:15:9e:
8b:14:59:3b:dc:00:90:d7:4b:6b:ba:ff:e3:e8:7d:
c3:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:5B:61:00:C8:0D:42:70:32:96:93:83:58:46:AE:02:A5:C5:DB:A1
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/92BF19E03E2411F099464DE6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.224.0/20
156.238.224.0/19
Signature Algorithm: sha256WithRSAEncryption
98:07:c1:5c:15:a5:57:56:60:c3:82:16:d3:c0:55:8f:61:4c:
c7:48:27:f4:a8:52:95:a8:7f:ee:08:d0:1c:6b:a1:fb:39:1d:
75:30:46:73:65:68:c8:5e:d1:28:48:78:07:96:64:dc:d0:c9:
83:16:3e:2d:e8:68:d7:fa:af:78:65:e6:2b:33:f7:25:c4:95:
d6:83:53:27:30:f4:6b:37:59:ca:85:ee:f0:96:f0:c9:f9:dd:
f8:d5:b9:47:82:63:44:83:7f:1c:a6:e0:c3:a0:7a:21:a0:cf:
88:9e:93:ea:98:23:5c:09:4b:17:90:9d:8d:fa:46:0a:a0:95:
57:4b:6a:fd:9b:88:bf:56:f6:29:75:9c:04:c5:bd:b5:19:5b:
f9:3c:33:64:6f:34:de:1f:e7:2f:8f:8b:31:e2:35:8e:1c:76:
8a:5f:69:37:31:d1:99:2f:93:81:34:a0:37:d0:04:1f:04:48:
d0:77:c7:4a:9b:b4:bd:92:35:e1:3b:a1:82:89:45:f8:24:db:
75:cd:74:5d:88:86:4f:84:12:48:68:00:93:5a:90:fc:c3:2b:
62:af:f1:5d:38:3a:78:4e:05:d2:e2:38:69:64:cb:98:65:0c:
cf:83:96:d4:da:1e:03:e3:91:fa:86:d2:ea:5d:7e:3d:6c:0f:
c6:f5:d0:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 09:33:02 2025 by rpki-client