Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BA9DE28CFF3311EFB9E02150762E951A.roa
File: BA9DE28CFF3311EFB9E02150762E951A.roa (raw, json)
Hash identifier: uigWTIHuZWF8/qpf2rxSKOgHPJqxh+qh/JsnMOIIgjw=
Subject key identifier: 50:BA:E0:24:C8:E6:99:03:DD:62:9E:DC:E1:F8:0F:07:16:6A:BA:41
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014557
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BA9DE28CFF3311EFB9E02150762E951A.roa
Signing time: Wed 12 Mar 2025 11:18:31 +0000
ROA not before: Wed 12 Mar 2025 11:18:27 +0000
ROA not after: Sat 26 Apr 2025 11:18:27 +0000
asID: 140869
IP address blocks: 156.225.80.0/24 maxlen: 24
156.225.81.0/24 maxlen: 24
156.225.82.0/24 maxlen: 24
156.225.83.0/24 maxlen: 24
156.225.84.0/24 maxlen: 24
156.225.85.0/24 maxlen: 24
156.225.86.0/24 maxlen: 24
156.225.87.0/24 maxlen: 24
156.225.88.0/24 maxlen: 24
156.225.89.0/24 maxlen: 24
156.225.90.0/24 maxlen: 24
156.225.91.0/24 maxlen: 24
156.225.92.0/24 maxlen: 24
156.225.93.0/24 maxlen: 24
156.225.94.0/24 maxlen: 24
156.225.95.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83287 (0x14557)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Mar 12 11:18:27 2025 GMT
Not After : Apr 26 11:18:27 2025 GMT
Subject: CN=67d16d87-1c1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:08:ec:4c:58:9d:d3:74:20:49:b0:13:09:cc:
a8:1e:39:32:14:21:18:a3:d9:c7:43:8f:5b:50:9e:
1a:76:63:70:11:2b:12:be:69:d5:4f:24:c0:02:7a:
28:23:3f:aa:c1:cd:38:2b:8b:9e:d5:90:aa:be:a6:
51:d4:97:b9:33:b8:a5:f8:e8:e8:dc:cd:45:f4:b8:
21:69:77:d6:82:5b:bd:18:de:8f:87:8e:60:22:0c:
bb:77:7f:58:ef:b3:cb:08:9b:c0:c7:48:e2:36:85:
29:52:8f:08:e2:69:a5:63:d2:34:57:c5:b3:b8:42:
77:43:bb:b1:85:d0:3c:87:a5:36:4f:9a:98:b2:e2:
35:e1:05:20:15:bf:8e:d5:e2:9d:7a:d6:f1:84:66:
11:74:d7:46:33:19:3e:e7:3c:86:1e:50:64:ac:de:
ec:05:66:3f:38:7c:f1:27:c9:24:6f:ac:7a:f9:d2:
63:dc:55:2e:3e:fb:cb:f2:b3:bb:05:7c:8d:86:e0:
3d:47:fc:7f:81:73:e5:b7:05:df:01:96:9c:68:d6:
c2:3a:67:3a:10:c4:df:42:4c:14:c6:35:08:f3:32:
8e:6e:ed:66:67:ee:88:03:94:95:3d:8b:73:99:bd:
0f:6f:34:be:d4:e9:31:b3:ad:22:c8:9a:2b:f6:70:
77:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:BA:E0:24:C8:E6:99:03:DD:62:9E:DC:E1:F8:0F:07:16:6A:BA:41
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BA9DE28CFF3311EFB9E02150762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.80.0/20
Signature Algorithm: sha256WithRSAEncryption
5c:d1:6a:79:a2:a6:9d:f8:ea:71:04:17:49:55:7f:f3:81:51:
b7:ad:26:3c:f1:51:45:1f:3d:22:e5:af:d7:86:67:7d:f2:52:
c0:14:d6:e0:69:86:d8:4b:5f:f6:bf:6f:2d:a0:9c:08:33:43:
f1:94:6c:b8:12:17:64:11:1f:87:72:c3:2a:58:06:8b:23:da:
cd:ee:36:07:a8:1e:d8:9c:20:c3:1c:3a:7e:00:78:97:6b:93:
5b:af:21:dc:e8:bb:21:5d:4b:06:7d:d5:ae:75:73:d4:a8:8d:
c8:d2:8e:b0:ea:ff:da:03:d6:b1:9a:a8:86:90:41:b5:a5:58:
d8:38:42:a0:05:37:be:29:31:be:32:95:78:cf:15:bc:9e:21:
30:dd:d7:59:d8:08:e1:55:d8:df:2b:af:38:f1:5b:af:d7:28:
42:94:0d:ab:18:51:1e:7a:4f:29:85:95:6e:c1:96:61:7b:8a:
a9:ca:a5:e4:78:8b:7b:7c:d1:e3:d5:4c:12:ca:08:fb:4e:2b:
4e:47:34:48:fc:5f:ac:18:67:5d:82:81:57:a2:31:21:70:60:
76:04:cb:af:c6:8e:de:5e:ef:20:e2:6a:5b:83:2a:39:c3:08:
6e:3a:b6:22:04:a5:86:6e:b2:5b:86:d0:70:9b:1a:50:64:17:
58:c6:53:b2
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAUVXMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwMzEyMTExODI3WhcNMjUwNDI2MTExODI3WjAYMRYw
FAYDVQQDEw02N2QxNmQ4Ny0xYzFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxQjsTFid03QgSbATCcyoHjkyFCEYo9nHQ49bUJ4admNwESsSvmnVTyTA
AnooIz+qwc04K4ue1ZCqvqZR1Je5M7il+Ojo3M1F9LghaXfWglu9GN6Ph45gIgy7
d39Y77PLCJvAx0jiNoUpUo8I4mmlY9I0V8WzuEJ3Q7uxhdA8h6U2T5qYsuI14QUg
Fb+O1eKdetbxhGYRdNdGMxk+5zyGHlBkrN7sBWY/OHzxJ8kkb6x6+dJj3FUuPvvL
8rO7BXyNhuA9R/x/gXPltwXfAZacaNbCOmc6EMTfQkwUxjUI8zKObu1mZ+6IA5SV
PYtzmb0PbzS+1Okxs60iyJor9nB31wIDAQABo4ICojCCAp4wHQYDVR0OBBYEFFC6
4CTI5pkD3WKe3OH4DwcWarpBMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9CQTlERTI4Q0ZGMzMxMUVGQjlFMDIxNTA3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEnOFQMA0GCSqGSIb3DQEBCwUA
A4IBAQBc0Wp5oqad+OpxBBdJVX/zgVG3rSY88VFFHz0i5a/Xhmd98lLAFNbgaYbY
S1/2v28toJwIM0PxlGy4EhdkER+HcsMqWAaLI9rN7jYHqB7YnCDDHDp+AHiXa5Nb
ryHc6LshXUsGfdWudXPUqI3I0o6w6v/aA9axmqiGkEG1pVjYOEKgBTe+KTG+MpV4
zxW8niEw3ddZ2AjhVdjfK6848Vuv1yhClA2rGFEeek8phZVuwZZhe4qpyqXkeIt7
fNHj1UwSygj7TitORzRI/F+sGGddgoFXojEhcGB2BMuvxo7eXu8g4mpbgyo5wwhu
OrYiBKWGbrJbhtBwmxpQZBdYxlOy
-----END CERTIFICATE-----
Generated at Sat Apr 5 09:19:04 2025 by rpki-client