Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B49FA6A83BCA11F09F5EC49FDAE4EC9C.roa
File: B49FA6A83BCA11F09F5EC49FDAE4EC9C.roa (raw, json)
Hash identifier: wtF95Gj8N0a1ZrR++btYD3oahbrMYeNy8Z7494kStfw=
Subject key identifier: 51:5F:F6:CD:AC:AE:2A:A0:DD:87:8D:A6:F5:6F:E0:33:29:B7:CB:55
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015883
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B49FA6A83BCA11F09F5EC49FDAE4EC9C.roa
Signing time: Wed 28 May 2025 13:50:25 +0000
ROA not before: Wed 28 May 2025 13:50:20 +0000
ROA not after: Sun 08 Jun 2025 13:50:20 +0000
asID: 399077
IP address blocks: 156.251.9.0/24 maxlen: 24
156.251.11.0/24 maxlen: 24
156.251.12.0/24 maxlen: 24
156.251.13.0/24 maxlen: 24
156.251.14.0/24 maxlen: 24
156.251.15.0/24 maxlen: 24
156.251.16.0/24 maxlen: 24
156.251.17.0/24 maxlen: 24
156.251.18.0/24 maxlen: 24
156.251.19.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88195 (0x15883)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 28 13:50:20 2025 GMT
Not After : Jun 8 13:50:20 2025 GMT
Subject: CN=683714a1-f23f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:bf:6a:52:ee:07:c9:e9:62:fb:c5:72:c7:36:
e1:a6:f7:95:15:22:6d:34:a9:bf:46:f0:92:58:b1:
30:4a:12:f0:06:dc:51:d4:6e:8a:0a:c1:be:17:a7:
46:d9:fa:49:5b:d9:ab:a2:19:14:cc:f5:9c:ee:24:
6e:13:53:7b:de:24:58:a6:8c:27:24:1a:05:17:f6:
7d:e2:36:47:20:f8:f4:59:78:cf:86:52:06:8b:3f:
4f:a1:93:bc:c9:16:c5:51:25:e0:08:97:c2:03:19:
7a:08:8e:6b:3b:cc:46:4c:06:5f:63:a7:7c:34:fc:
d2:68:3f:1c:84:52:bb:f9:cb:cf:78:0c:1a:ce:4f:
35:5e:c9:b8:9d:85:e0:03:7d:70:d8:a9:ec:80:55:
98:40:79:f9:98:6c:5d:7a:15:88:25:f4:e6:d8:fc:
8d:08:90:fa:b2:45:1f:85:0e:11:80:4e:93:37:55:
0c:b4:12:94:9e:f4:82:3d:16:de:c9:81:97:d5:d9:
88:70:10:31:08:9c:a5:e8:ac:f1:79:dd:25:6a:3a:
f0:a6:53:4c:24:1e:c6:9f:90:64:45:fb:27:ec:c4:
c8:a1:db:12:a1:2b:08:03:d0:b7:6a:3a:3c:3f:4f:
86:42:ad:f7:01:5b:a6:47:3d:03:6b:69:a4:f0:b9:
8e:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:5F:F6:CD:AC:AE:2A:A0:DD:87:8D:A6:F5:6F:E0:33:29:B7:CB:55
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B49FA6A83BCA11F09F5EC49FDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.251.9.0/24
156.251.11.0-156.251.19.255
Signature Algorithm: sha256WithRSAEncryption
48:9b:60:e7:2e:c0:b2:d7:86:4f:fc:f2:4e:04:31:05:32:62:
5e:e5:9d:ea:65:25:d2:1f:93:78:be:72:df:e9:c2:fc:27:e9:
0b:62:02:35:b7:2e:6f:69:73:d3:6c:11:d0:45:43:de:ee:7f:
a5:1e:82:39:09:ac:71:3d:3a:6d:5e:3b:53:f0:26:6b:1b:37:
30:19:2a:a8:19:77:b8:a1:fe:86:d9:ae:07:1c:b8:9b:ef:39:
be:28:f5:22:34:d5:18:fe:21:e8:50:e8:b2:c0:87:a2:a5:7e:
e9:fa:bc:48:93:90:27:b7:c4:f0:00:2d:97:82:99:fc:42:ae:
9c:11:c8:f8:d6:4f:c3:05:6a:91:dd:6d:de:28:b9:40:4a:99:
83:d1:65:f8:ca:7a:46:42:6c:80:51:a7:c9:de:97:93:81:d7:
c9:48:ee:56:3e:1d:3b:0a:a5:71:bd:42:d1:37:96:3a:c9:4a:
ce:17:02:7b:11:d3:29:48:c5:0c:97:7e:54:33:79:bf:a1:47:
d9:f4:47:7b:a7:ff:70:6e:6d:5f:13:15:ef:33:17:e6:da:a1:
a8:58:c3:54:60:ca:1f:0c:cb:c7:bf:ae:d4:d1:6e:1c:b1:e5:
b0:1b:73:26:e6:df:a9:16:9a:01:b7:d6:b0:84:94:0b:3a:35:
ce:b8:cd:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:30:32 2025 by rpki-client