Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A69FDC262A3111F09A430CC6DAE4EC9C.roa
File: A69FDC262A3111F09A430CC6DAE4EC9C.roa (raw, json)
Hash identifier: aDAa1ZjHLGg6Nb1qdQX6mWeQAImwQdX9OdsbmxrLcGQ=
Subject key identifier: 53:5C:15:C6:EC:1F:46:56:E3:09:DC:7D:60:13:07:5A:42:4F:E3:1D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015225
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A69FDC262A3111F09A430CC6DAE4EC9C.roa
Signing time: Tue 06 May 2025 04:21:59 +0000
ROA not before: Tue 06 May 2025 04:21:54 +0000
ROA not after: Fri 06 Jun 2025 04:21:54 +0000
asID: 398823
IP address blocks: 156.245.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86565 (0x15225)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 6 04:21:54 2025 GMT
Not After : Jun 6 04:21:54 2025 GMT
Subject: CN=68198e67-e1b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:bd:a0:32:96:bf:3c:5f:31:ef:c3:00:72:86:
06:a0:4e:65:83:00:9b:45:96:37:eb:ca:69:59:fe:
c3:a2:a0:d0:7e:e4:ec:6f:6d:10:29:68:e3:bc:1f:
3e:15:cd:09:43:4c:26:34:14:0e:a3:32:b1:57:96:
af:92:4c:06:4f:be:21:ef:c3:c8:55:f1:5c:02:bd:
23:42:ed:a8:8b:c2:5f:71:51:ac:1e:1f:48:0e:88:
ae:6d:18:fd:ed:b2:fd:eb:d8:b6:f9:55:ad:d2:8d:
77:0b:60:30:4a:c3:67:c3:98:08:4c:81:f1:ca:80:
de:15:12:95:a1:9b:a6:03:a4:e7:07:36:5f:32:ee:
3e:ff:71:d8:e3:78:04:9d:7b:a2:5e:6e:83:4d:07:
54:58:67:72:53:24:c1:46:ce:48:37:69:9b:c8:21:
47:88:c5:b4:7f:e0:6b:4d:04:88:9e:71:ae:05:a4:
72:17:e7:5e:66:67:cb:d6:5e:f8:43:61:02:09:e3:
8e:1a:19:f5:b5:2f:54:ae:aa:7c:21:e4:5f:cd:5a:
fc:14:90:8e:61:8b:8e:39:c1:d3:68:f3:cb:ab:0e:
c9:a1:42:d8:03:fb:31:dd:1b:45:56:14:a3:6e:7c:
80:41:2b:a2:17:13:99:67:86:7e:b3:1a:ae:8b:1c:
c4:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:5C:15:C6:EC:1F:46:56:E3:09:DC:7D:60:13:07:5A:42:4F:E3:1D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A69FDC262A3111F09A430CC6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.64.0/18
Signature Algorithm: sha256WithRSAEncryption
b1:0d:f7:33:22:ef:4b:25:cd:12:c0:7e:3f:6e:8d:49:7d:36:
58:6f:13:0c:e9:e9:c2:6d:85:de:07:dd:39:99:7e:88:60:9c:
cd:c4:39:42:08:46:07:21:33:07:e7:ce:c5:0a:c7:b4:b3:1f:
94:9b:59:ab:dc:37:6c:5e:e1:59:5b:17:d1:ba:ff:09:eb:f5:
3e:ce:b8:76:11:ff:4b:fa:38:80:14:9e:29:02:f7:b4:08:97:
ef:d1:15:57:f0:a5:d0:a2:79:ea:d3:f6:a7:fe:25:0c:0c:e0:
89:fe:7e:38:84:60:6c:db:d1:39:23:f4:90:6e:83:f2:88:65:
31:dd:d9:17:26:38:d4:bf:3d:6d:a5:37:ed:0b:c8:87:55:62:
ec:51:64:97:74:95:66:4e:eb:ed:75:45:29:ff:29:00:52:ef:
2d:ec:66:98:00:a4:e8:38:0e:8f:d1:21:74:5e:2c:ba:b3:72:
00:6f:5c:8a:28:ac:5b:0f:db:72:66:17:4f:61:9e:06:02:ee:
48:a8:ed:42:ae:b7:82:87:11:b9:4b:86:f1:e7:39:3d:ea:d6:
74:b6:e2:0b:ef:61:16:23:8b:7d:4f:b9:21:29:ea:c0:4f:6a:
70:20:c1:44:db:f3:68:a2:b4:71:dc:78:8c:64:f9:40:da:f9:
0a:e1:5c:0f
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAVIlMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNTA2MDQyMTU0WhcNMjUwNjA2MDQyMTU0WjAYMRYw
FAYDVQQDEw02ODE5OGU2Ny1lMWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAuL2gMpa/PF8x78MAcoYGoE5lgwCbRZY368ppWf7DoqDQfuTsb20QKWjj
vB8+Fc0JQ0wmNBQOozKxV5avkkwGT74h78PIVfFcAr0jQu2oi8JfcVGsHh9IDoiu
bRj97bL969i2+VWt0o13C2AwSsNnw5gITIHxyoDeFRKVoZumA6TnBzZfMu4+/3HY
43gEnXuiXm6DTQdUWGdyUyTBRs5IN2mbyCFHiMW0f+BrTQSInnGuBaRyF+deZmfL
1l74Q2ECCeOOGhn1tS9Urqp8IeRfzVr8FJCOYYuOOcHTaPPLqw7JoULYA/sx3RtF
VhSjbnyAQSuiFxOZZ4Z+sxquixzEpwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFFNc
FcbsH0ZW4wncfWATB1pCT+MdMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9BNjlGREMyNjJBMzExMUYwOUE0MzBDQzZEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGnPVAMA0GCSqGSIb3DQEBCwUA
A4IBAQCxDfczIu9LJc0SwH4/bo1JfTZYbxMM6enCbYXeB905mX6IYJzNxDlCCEYH
ITMH587FCse0sx+Um1mr3DdsXuFZWxfRuv8J6/U+zrh2Ef9L+jiAFJ4pAve0CJfv
0RVX8KXQonnq0/an/iUMDOCJ/n44hGBs29E5I/SQboPyiGUx3dkXJjjUvz1tpTft
C8iHVWLsUWSXdJVmTuvtdUUp/ykAUu8t7GaYAKToOA6P0SF0Xiy6s3IAb1yKKKxb
D9tyZhdPYZ4GAu5IqO1CrreChxG5S4bx5zk96tZ0tuIL72EWI4t9T7khKerAT2pw
IMFE2/NoorRx3HiMZPlA2vkK4VwP
-----END CERTIFICATE-----
Generated at Tue Jun 3 08:32:18 2025 by rpki-client