Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/ABEAF91C3BCB11F0B4C30CA6DAE4EC9C.roa
File: ABEAF91C3BCB11F0B4C30CA6DAE4EC9C.roa (raw, json)
Hash identifier: JJYildC8nnSpbz1QYauKzQuezCrQL/UMlQmHsd6cAt4=
Subject key identifier: CD:74:FC:C0:07:1A:F7:99:EC:A8:84:42:BA:E2:55:37:30:DD:2D:96
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015885
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/ABEAF91C3BCB11F0B4C30CA6DAE4EC9C.roa
Signing time: Wed 28 May 2025 13:57:20 +0000
ROA not before: Wed 28 May 2025 13:57:15 +0000
ROA not after: Sun 08 Jun 2025 13:57:15 +0000
asID: 399077
IP address blocks: 156.240.253.0/24 maxlen: 24
156.240.254.0/24 maxlen: 24
156.240.255.0/24 maxlen: 24
156.251.1.0/24 maxlen: 24
156.251.2.0/24 maxlen: 24
156.251.3.0/24 maxlen: 24
156.251.4.0/24 maxlen: 24
156.251.6.0/24 maxlen: 24
156.251.7.0/24 maxlen: 24
156.251.8.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88197 (0x15885)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 28 13:57:15 2025 GMT
Not After : Jun 8 13:57:15 2025 GMT
Subject: CN=68371640-a142
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:83:ca:43:bc:20:50:2d:78:7f:10:49:64:33:
0f:ac:1f:c7:0b:1a:34:06:3d:ed:75:fc:06:b1:5a:
87:54:ba:55:1e:de:3c:fb:43:ee:2d:66:17:b7:cb:
ef:0a:0d:e5:54:70:21:25:bc:4e:ca:a6:e0:17:47:
bf:a7:9c:5d:cd:b6:c5:18:ba:6c:4e:ee:80:35:b9:
bd:91:6c:f9:e0:4b:83:51:f6:4a:13:64:9d:95:5e:
ad:f2:69:45:96:05:3c:d6:1e:c0:61:7c:7f:1f:ac:
c1:52:8f:69:58:4c:20:74:b8:d4:dd:0d:55:bc:22:
db:4a:db:b6:82:17:83:88:1d:00:28:93:2a:da:02:
cc:59:3b:6d:9f:d7:3f:b3:08:23:7c:91:ab:00:f9:
f3:7d:2f:e0:66:d0:27:91:3e:ad:86:5f:54:a4:33:
d6:0a:df:36:86:46:b9:bf:3f:f7:cd:76:20:96:49:
c7:d9:39:af:3b:d6:a6:36:c9:fd:bc:67:a1:84:44:
48:c8:13:24:63:f2:1e:36:97:f5:d4:31:44:29:e1:
66:f7:e7:cd:54:3e:cb:cf:b4:f0:c2:a5:15:59:b5:
8e:ea:26:86:c2:c3:3c:29:d1:53:74:27:e6:20:14:
fc:4a:5e:2f:dc:a5:5f:f9:30:4b:1f:96:6e:f2:f2:
54:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:74:FC:C0:07:1A:F7:99:EC:A8:84:42:BA:E2:55:37:30:DD:2D:96
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/ABEAF91C3BCB11F0B4C30CA6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.240.253.0-156.240.255.255
156.251.1.0-156.251.4.255
156.251.6.0-156.251.8.255
Signature Algorithm: sha256WithRSAEncryption
51:95:6b:25:81:71:08:d7:fb:a0:bb:a0:af:1d:2a:af:ef:83:
31:6e:30:1a:75:8a:5f:6e:1b:57:af:e3:a5:fa:a3:8f:62:6b:
7a:80:c3:64:c0:cc:fb:f5:eb:84:52:ac:2f:8e:6f:18:8c:4f:
c6:a3:c6:db:b7:d5:ad:11:47:23:9e:13:4b:9c:8c:4e:45:7b:
82:e4:e3:1c:6e:3e:f7:fb:6e:0d:be:e7:63:a7:a4:91:41:fa:
3f:c6:19:36:b9:4c:d1:f2:62:e7:1c:dc:15:a9:ca:80:9c:b0:
37:54:bc:a6:83:8f:aa:df:4e:78:21:c5:ce:df:98:0d:34:8a:
7e:82:45:65:f6:34:5d:be:18:ec:09:2f:40:5e:64:df:e6:b8:
61:54:36:74:9b:61:2f:68:92:e6:77:7c:8f:58:98:94:71:57:
6e:32:20:fc:b7:a5:84:94:e3:cb:ea:bd:eb:9c:02:1d:5a:8d:
f5:91:10:30:6d:a2:9b:59:13:a3:73:8d:d9:e5:6a:d2:1e:93:
0c:ce:4f:3e:d0:db:ad:6b:1a:f4:a2:17:9f:5e:5f:42:55:62:
91:86:76:a6:da:50:b5:bc:7a:f6:7e:63:81:8a:08:cb:69:2f:
d0:f6:fc:97:3b:61:91:e5:e4:93:ab:23:6b:af:c0:99:9c:75:
db:62:bb:1c
-----BEGIN CERTIFICATE-----
MIIFpDCCBIygAwIBAgIDAViFMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNTI4MTM1NzE1WhcNMjUwNjA4MTM1NzE1WjAYMRYw
FAYDVQQDEw02ODM3MTY0MC1hMTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAuoPKQ7wgUC14fxBJZDMPrB/HCxo0Bj3tdfwGsVqHVLpVHt48+0PuLWYX
t8vvCg3lVHAhJbxOyqbgF0e/p5xdzbbFGLpsTu6ANbm9kWz54EuDUfZKE2SdlV6t
8mlFlgU81h7AYXx/H6zBUo9pWEwgdLjU3Q1VvCLbStu2gheDiB0AKJMq2gLMWTtt
n9c/swgjfJGrAPnzfS/gZtAnkT6thl9UpDPWCt82hka5vz/3zXYglknH2TmvO9am
Nsn9vGehhERIyBMkY/IeNpf11DFEKeFm9+fNVD7Lz7TwwqUVWbWO6iaGwsM8KdFT
dCfmIBT8Sl4v3KVf+TBLH5Zu8vJUsQIDAQABo4ICxTCCAsEwHQYDVR0OBBYEFM10
/MAHGveZ7KiEQrriVTcw3S2WMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9BQkVBRjkxQzNCQ0IxMUYwQjRDMzBDQTZEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MEIGCCsGAQUFBwEHAQH/BDMwMTAvBAIAATApMAsDBACc8P0DAwCc8DAMAwQAnPsB
AwQAnPsEMAwDBAGc+wYDBACc+wgwDQYJKoZIhvcNAQELBQADggEBAFGVayWBcQjX
+6C7oK8dKq/vgzFuMBp1il9uG1ev46X6o49ia3qAw2TAzPv164RSrC+ObxiMT8aj
xtu31a0RRyOeE0ucjE5Fe4Lk4xxuPvf7bg2+52OnpJFB+j/GGTa5TNHyYucc3BWp
yoCcsDdUvKaDj6rfTnghxc7fmA00in6CRWX2NF2+GOwJL0BeZN/muGFUNnSbYS9o
kuZ3fI9YmJRxV24yIPy3pYSU48vqveucAh1ajfWREDBtoptZE6NzjdnlatIekwzO
Tz7Q261rGvSiF59eX0JVYpGGdqbaULW8evZ+Y4GKCMtpL9D2/Jc7YZHl5JOrI2uv
wJmcddtiuxw=
-----END CERTIFICATE-----
Generated at Tue Jun 3 08:41:52 2025 by rpki-client