Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BF11321EF5A711EF9C90747C762E951A.roa
File: BF11321EF5A711EF9C90747C762E951A.roa (raw, json)
Hash identifier: QZvzXYTSiVyY8ghfSJuElltbl926EGR/E2OmALqSOQ8=
Subject key identifier: 42:96:D5:F8:5D:85:BB:F8:98:FD:86:36:28:34:35:62:4F:33:87:CF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 013C54
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BF11321EF5A711EF9C90747C762E951A.roa
Signing time: Fri 28 Feb 2025 07:43:48 +0000
ROA not before: Fri 28 Feb 2025 07:43:45 +0000
ROA not after: Thu 19 Feb 2026 07:43:45 +0000
asID: 984
IP address blocks: 156.239.92.0/24 maxlen: 24
156.239.93.0/24 maxlen: 24
156.239.94.0/24 maxlen: 24
156.239.95.0/24 maxlen: 24
156.239.96.0/24 maxlen: 24
156.239.97.0/24 maxlen: 24
156.239.98.0/24 maxlen: 24
156.239.99.0/24 maxlen: 24
156.239.100.0/24 maxlen: 24
156.239.101.0/24 maxlen: 24
156.239.102.0/24 maxlen: 24
156.239.103.0/24 maxlen: 24
156.239.104.0/24 maxlen: 24
156.239.105.0/24 maxlen: 24
156.239.106.0/24 maxlen: 24
156.239.107.0/24 maxlen: 24
156.239.108.0/24 maxlen: 24
156.239.109.0/24 maxlen: 24
156.239.110.0/24 maxlen: 24
156.239.111.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 07 Apr 2025 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80980 (0x13c54)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR
Validity
Not Before: Feb 28 07:43:45 2025 GMT
Not After : Feb 19 07:43:45 2026 GMT
Subject: CN=67c16934-ca53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e6:32:c5:9f:19:af:40:27:ff:ea:3d:08:97:
08:95:7c:a8:30:8e:85:6a:d6:16:8d:2c:35:7d:92:
14:67:0a:f6:74:40:76:cd:99:b6:36:df:e4:e8:e4:
13:d0:83:7e:fb:28:40:ee:23:c1:f0:eb:da:81:58:
88:20:b9:32:0f:26:9d:e5:cc:de:93:ea:f0:c9:e0:
9a:d3:37:83:5c:c5:79:c7:c3:0b:38:4d:46:c7:25:
97:13:46:e6:50:d8:be:d8:bc:53:41:f9:c8:09:b7:
dd:20:cc:c9:66:3d:86:e0:c6:a9:06:5c:70:23:55:
6a:f9:73:0f:a5:a6:ec:e4:90:d4:85:9c:35:c3:fd:
8c:78:ef:8c:4d:00:f2:58:75:03:f3:4a:92:32:ab:
30:62:f0:81:c5:e0:71:35:f2:ef:ff:3f:92:0f:92:
d2:89:a8:cf:54:1c:e4:3f:02:21:14:32:98:d1:34:
54:87:03:ef:a3:73:25:31:3a:d3:c2:0d:e1:8e:f4:
94:f6:d6:11:5f:a9:ea:e9:ae:bf:f4:4c:4a:ef:2c:
ed:d2:59:d3:62:f8:30:96:59:e2:a3:0b:e9:82:08:
9d:67:cb:ea:9c:46:c9:ee:eb:4a:fe:0c:54:ce:67:
10:a2:dc:cc:3c:dd:cf:c0:b4:c0:55:c1:f4:53:ac:
0b:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:96:D5:F8:5D:85:BB:F8:98:FD:86:36:28:34:35:62:4F:33:87:CF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BF11321EF5A711EF9C90747C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.239.92.0-156.239.111.255
Signature Algorithm: sha256WithRSAEncryption
49:e2:ab:62:42:17:9c:0e:cb:e5:8a:c7:f8:e1:0c:af:38:0e:
2f:15:d5:f2:ed:5b:3d:58:34:7d:d1:a9:32:ce:b8:4b:56:88:
11:3d:09:13:58:0a:2b:56:b4:f2:08:af:ac:35:e1:90:04:d6:
a1:c7:c1:0b:de:b7:61:49:f5:3a:bf:67:86:6e:5c:6f:8c:ce:
c5:83:41:92:8a:26:11:4e:5c:74:7b:2f:a2:f1:75:d3:16:2d:
68:98:4f:2c:3f:95:f6:56:71:94:f8:b9:82:93:77:11:e3:2f:
3a:35:ec:f8:d2:5d:a6:7f:9e:f9:50:e0:b8:53:7c:87:15:8b:
1c:5d:89:db:89:8f:3f:8e:b8:c3:e1:42:35:14:9d:c2:7b:12:
cf:bd:45:ef:7f:7a:56:5b:42:aa:fe:94:67:cd:69:37:06:36:
b0:c1:2f:0a:f7:c0:37:a6:ab:2b:ee:32:02:85:f7:4f:2e:1b:
94:8e:53:56:80:34:ce:19:07:1b:00:c2:0c:38:17:48:f1:f5:
e2:e3:2d:b1:b3:f0:5b:0b:b3:ec:d6:a1:4c:5a:36:c8:e3:12:
aa:fb:76:07:03:82:3e:71:09:a7:64:4c:12:a4:93:e9:a3:12:
96:51:d0:f0:2d:06:6b:22:ed:01:aa:78:9b:28:0f:6a:4c:18:
23:a1:5e:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:17:11 2025 by rpki-client