Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A315E5063E1C11F0A8890AB6DAE4EC9C.roa
File: A315E5063E1C11F0A8890AB6DAE4EC9C.roa (raw, json)
Hash identifier: dfbg3AOkVH/a/ZULBWb0O3v+m0E6EEwEPgfhRTdGqXg=
Subject key identifier: 5F:70:F1:90:21:8D:31:3F:EE:B0:1A:86:A8:B6:51:71:11:0A:13:5D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015902
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A315E5063E1C11F0A8890AB6DAE4EC9C.roa
Signing time: Sat 31 May 2025 12:41:57 +0000
ROA not before: Sat 31 May 2025 12:41:52 +0000
ROA not after: Mon 08 Jun 2026 12:41:52 +0000
asID: 133115
IP address blocks: 156.245.7.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88322 (0x15902)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 31 12:41:52 2025 GMT
Not After : Jun 8 12:41:52 2026 GMT
Subject: CN=683af915-278c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:2f:5f:1a:f3:96:c8:b0:07:75:fe:a1:04:d5:
b2:92:b0:64:ad:83:62:ad:d9:df:96:69:cb:72:13:
ae:3c:a3:f8:ce:0b:3d:dc:60:1f:cb:08:34:73:aa:
e5:96:90:40:07:59:cf:14:4c:ca:74:b4:63:4b:54:
e9:6f:43:18:fb:e7:8f:56:2a:2a:97:6b:af:3f:81:
52:cb:c1:bd:a3:f4:83:c7:10:8b:ec:73:1c:46:06:
f6:15:d0:21:5b:2b:ed:7f:aa:15:19:17:b1:dd:e7:
60:1b:dd:60:a5:e8:cc:91:89:53:47:da:4b:82:8f:
5c:31:61:4c:1d:97:f2:64:db:a6:bd:64:99:e7:a2:
35:0c:b6:f6:3d:22:d7:fd:dd:c0:07:3d:4d:78:1e:
d9:25:61:85:c0:80:ad:87:2b:2b:e2:0a:32:1e:ed:
23:03:5b:9c:49:07:b8:f4:8e:2c:bc:9a:17:e5:af:
27:be:f3:04:4e:50:c0:ff:30:1c:77:93:94:e7:6f:
95:10:f5:3b:6c:4b:40:28:2a:84:65:be:e0:af:8c:
c8:00:77:7a:80:35:21:1e:6c:f2:4f:ec:4a:3c:31:
e0:07:d6:e2:fc:88:90:b3:6b:1e:bf:b5:41:74:1a:
20:33:f5:e1:ad:3d:83:3f:76:30:e8:b1:ab:d3:85:
2d:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:70:F1:90:21:8D:31:3F:EE:B0:1A:86:A8:B6:51:71:11:0A:13:5D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A315E5063E1C11F0A8890AB6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.7.0/24
Signature Algorithm: sha256WithRSAEncryption
91:1c:a3:da:cd:9c:53:23:41:72:e9:1a:49:3c:a6:5b:ac:fd:
30:a2:43:c3:67:c6:0a:70:29:1a:92:01:7a:52:8e:64:9e:a9:
70:41:94:8f:58:76:c0:06:4d:c1:b7:e0:63:d5:ef:f4:5d:4e:
8b:fa:22:b1:1d:90:76:05:56:80:3a:1f:64:1a:81:af:91:d9:
ae:13:30:de:2e:20:ab:2a:e5:e7:76:6c:db:cf:05:71:53:38:
f9:3e:34:62:53:1d:3f:86:07:ef:23:af:09:8d:09:fd:95:78:
1a:ce:82:d6:1f:bb:4e:41:91:95:3c:0c:6f:19:ed:4b:18:e3:
7a:3b:1d:b8:87:50:cb:4b:0e:8e:7d:79:ae:b8:f3:f8:70:5b:
e9:ca:a7:44:0d:08:4c:88:91:ff:36:35:56:6e:e3:dc:fa:ba:
3f:e6:fb:bf:74:32:a2:82:a4:9f:0a:de:3c:25:d8:ec:53:77:
e6:87:96:a0:1a:77:9d:d2:12:51:4c:3d:eb:84:b2:18:cc:5f:
3b:4d:9f:3b:cc:99:bd:19:26:e2:51:30:3c:cf:80:ac:79:d1:
a4:3e:cf:0f:5f:cd:fb:c3:b1:e1:db:3c:8f:8b:c1:4f:9e:e5:
c8:d3:64:7e:fc:f9:78:96:1d:b4:36:68:aa:64:fa:0f:6a:48:
2b:fb:9a:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 09:22:27 2025 by rpki-client