Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AB6BBE64300811F0985145D0DAE4EC9C.roa
File: AB6BBE64300811F0985145D0DAE4EC9C.roa (raw, json)
Hash identifier: YhZKFB8Bnpb3UF/nCNIYAAWLszdkhMD2MaCLNVbyg2w=
Subject key identifier: 65:AD:57:9D:F1:2B:8C:9A:F7:CF:0A:D7:7D:5A:05:AA:8B:BE:51:80
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01540A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AB6BBE64300811F0985145D0DAE4EC9C.roa
Signing time: Tue 13 May 2025 14:43:45 +0000
ROA not before: Tue 13 May 2025 14:43:40 +0000
ROA not after: Fri 04 Jul 2025 14:43:40 +0000
asID: 138415
IP address blocks: 156.234.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87050 (0x1540a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 13 14:43:40 2025 GMT
Not After : Jul 4 14:43:40 2025 GMT
Subject: CN=68235aa0-28e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:dd:f8:64:fe:b5:5d:82:eb:44:fc:12:21:38:
f1:87:52:de:c8:33:74:0d:8a:7a:94:74:15:6a:a2:
37:65:af:75:e3:28:91:e0:0e:a2:ea:cb:7a:bb:74:
c8:cc:1c:d3:8b:b9:07:13:17:8c:35:24:a2:d8:03:
51:80:fc:79:54:dd:82:dc:e3:de:6d:62:5e:94:90:
b9:ed:8c:51:95:72:8c:32:f3:01:59:41:84:e1:da:
4e:91:63:b2:10:17:9a:7d:4a:db:67:c7:af:61:ca:
a5:ca:2a:a2:10:73:64:d0:cc:1f:5f:42:ff:d5:5a:
77:c2:5a:5b:2d:81:22:3c:6f:9d:a4:ff:c5:e5:9d:
5f:9d:7c:86:8a:f3:86:9e:2d:4f:66:12:f2:37:b4:
eb:1f:81:7d:68:65:50:e2:30:31:9f:8e:86:f8:b8:
52:47:f9:cc:5b:e8:73:43:51:0c:59:ba:9a:fc:15:
9c:56:a4:e5:31:46:e4:da:e9:62:e6:12:aa:94:8b:
f7:a3:50:2b:7d:9a:2e:32:bc:4b:5a:89:48:79:95:
50:30:61:d1:07:a9:2d:0f:6d:e0:c4:32:dc:8b:cb:
92:52:2f:70:89:91:0b:13:92:24:84:f7:2c:90:df:
16:8c:32:fe:de:8a:fb:b6:f5:2f:1f:2b:f4:2a:cb:
fa:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:AD:57:9D:F1:2B:8C:9A:F7:CF:0A:D7:7D:5A:05:AA:8B:BE:51:80
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AB6BBE64300811F0985145D0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.234.0.0/16
Signature Algorithm: sha256WithRSAEncryption
ae:47:91:95:e0:c5:93:03:8a:11:62:19:c2:f9:a5:54:df:08:
a4:b0:8c:a2:f8:88:a2:61:e7:72:73:52:55:90:0b:86:d0:59:
9f:67:fe:0f:3d:7b:05:c8:27:b9:52:c3:72:a3:2c:8b:7a:05:
e0:d1:9d:c2:b6:49:c5:c6:d4:cc:18:15:39:21:7a:1d:d7:f1:
ce:b5:11:6c:90:f2:e8:74:04:b7:22:d3:24:eb:5e:47:3e:37:
ce:8c:ad:b2:25:00:55:60:60:b4:43:22:34:1a:4f:c5:5d:ee:
5c:5c:a7:9f:fc:af:5b:52:d6:1c:fa:94:90:b6:46:49:ca:40:
36:63:1d:2e:c9:25:d1:45:db:1c:aa:86:1e:fd:b5:3a:8a:7e:
dc:05:89:fc:df:ba:26:ee:69:d2:dd:32:c3:ac:0c:9c:d8:86:
3b:26:a6:6e:1d:92:fb:a9:eb:98:0c:dc:59:a6:ea:d5:22:74:
af:87:ee:68:99:ae:fd:82:2a:9b:2d:96:81:e0:09:7c:03:2b:
fc:f4:59:9d:de:71:2b:6a:cd:03:41:b1:c7:95:dc:54:ed:1b:
56:57:cc:2c:03:1a:c1:b4:5a:68:c4:6f:b4:05:35:50:63:c4:
10:28:8e:7b:1f:21:c6:84:8e:24:89:3f:4c:80:b1:a2:a4:e9:
57:52:0b:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:31:44 2025 by rpki-client