Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B6ACC2DA413011F0AC9CBCB9DAE4EC9C.roa
File: B6ACC2DA413011F0AC9CBCB9DAE4EC9C.roa (raw, json)
Hash identifier: 3hhX6edITXDMeKQ3XGEnKdZjgWwnj1kr1N++SQPZUFg=
Subject key identifier: A6:87:EE:7B:00:CD:77:A4:5E:33:CF:40:3A:53:E4:48:96:9B:E1:75
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0159B6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B6ACC2DA413011F0AC9CBCB9DAE4EC9C.roa
Signing time: Wed 04 Jun 2025 10:43:13 +0000
ROA not before: Wed 04 Jun 2025 10:43:08 +0000
ROA not after: Wed 09 Jul 2025 10:43:08 +0000
asID: 200373
IP address blocks: 156.242.32.0/20 maxlen: 24
156.242.51.0/24 maxlen: 24
156.248.80.0/21 maxlen: 24
156.249.56.0/21 maxlen: 24
156.249.124.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 08 Jun 2025 00:26:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88502 (0x159b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 4 10:43:08 2025 GMT
Not After : Jul 9 10:43:08 2025 GMT
Subject: CN=68402341-517a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:fc:a1:7e:85:f5:ea:dd:cf:87:9e:8c:fb:b7:
69:27:40:03:58:d2:70:26:5c:38:b8:4a:b4:7a:28:
10:c9:9c:cc:72:ae:a6:e6:51:f3:93:f0:6f:ad:1f:
ed:42:bd:a1:4b:2b:6e:d5:11:6b:87:e6:a4:3f:a1:
0b:ce:ce:ea:03:94:1b:d0:8f:05:b4:ae:e1:fd:27:
be:30:f1:0b:21:a2:ff:2a:68:48:15:db:55:7e:a5:
c1:9c:67:02:ad:5c:a7:53:c2:da:47:a8:e0:a7:44:
3e:ca:ac:3b:90:32:01:c9:cf:f9:98:bf:94:3a:96:
ab:a8:2a:85:b5:33:c8:b5:3d:4c:94:5b:52:7b:57:
2c:e7:89:6a:fa:42:71:34:35:b8:72:c8:16:eb:da:
0b:4d:a6:14:e8:85:97:ec:4c:81:8b:1d:bc:21:4b:
98:05:9b:ae:53:e5:8e:bd:ce:fa:29:4b:0a:22:7c:
b5:af:11:ed:aa:de:c4:cf:50:16:63:24:c0:5a:c2:
71:38:0f:cb:75:db:95:b7:f9:79:d2:fb:fe:37:ec:
c0:7d:0d:ec:9b:11:d2:ca:10:5f:71:83:20:90:2b:
b5:61:a2:b3:9c:8e:3c:d8:45:6f:97:f7:3e:8e:a6:
16:83:fb:50:91:9e:84:57:f4:a7:ea:b4:3e:a7:70:
f1:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:87:EE:7B:00:CD:77:A4:5E:33:CF:40:3A:53:E4:48:96:9B:E1:75
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B6ACC2DA413011F0AC9CBCB9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.242.32.0/20
156.242.51.0/24
156.248.80.0/21
156.249.56.0/21
156.249.124.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:9b:38:59:11:46:63:a9:a8:3e:19:f6:7c:ed:c5:73:f6:e5:
8d:2f:6d:87:34:4a:53:b4:04:d7:bb:83:9a:69:41:49:b4:a1:
a5:ff:f5:4c:0d:ef:05:b8:aa:87:56:d2:3a:6e:9c:18:2d:10:
5e:0a:48:bc:02:70:a3:a0:27:6a:03:2b:f5:94:e3:08:49:60:
04:66:ab:35:cb:69:c4:0a:59:b2:01:59:f5:e2:6a:40:63:c0:
d9:09:32:f4:87:dd:91:7f:4d:f6:7e:86:a4:a3:09:ed:e5:fb:
94:28:09:61:4c:fc:aa:0d:be:64:95:bb:fd:e8:77:54:90:41:
31:c0:33:68:6a:86:72:6e:a1:f7:c5:91:20:f3:ba:c6:97:cf:
8e:b6:bc:13:e4:f0:43:48:3f:3e:5c:71:23:9d:db:f0:41:f1:
60:52:4c:ab:d3:dc:dd:d5:cb:d4:e0:73:54:e0:f1:bf:53:d6:
7f:5a:84:b6:0d:c9:c4:ef:01:ec:af:6f:d7:ec:48:f8:af:80:
76:1d:74:bf:08:f1:b6:e2:60:e9:eb:f4:60:90:c1:31:af:b8:
05:fc:eb:22:3b:db:26:22:5f:c3:82:0c:f4:7c:6e:3a:34:e5:
12:9a:05:70:6a:39:68:82:d7:dd:1c:23:ec:9d:1a:44:e7:6f:
18:94:7a:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 13:54:22 2025 by rpki-client