Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D1E11CE03BC711F09389D68DDAE4EC9C.roa
File: D1E11CE03BC711F09389D68DDAE4EC9C.roa (raw, json)
Hash identifier: 6CglU3rIy0JD/MG5VAWi45d9h9Elqg254TlqAzSXQpE=
Subject key identifier: 3E:AC:9E:0C:56:0C:56:6B:ED:F0:13:DD:E1:5B:1B:4D:52:EE:62:54
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015879
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D1E11CE03BC711F09389D68DDAE4EC9C.roa
Signing time: Wed 28 May 2025 13:29:46 +0000
ROA not before: Wed 28 May 2025 13:29:41 +0000
ROA not after: Sun 08 Jun 2025 13:29:41 +0000
asID: 399077
IP address blocks: 156.240.192.0/24 maxlen: 24
156.240.193.0/24 maxlen: 24
156.240.194.0/24 maxlen: 24
156.240.244.0/24 maxlen: 24
156.251.41.0/24 maxlen: 24
156.251.42.0/24 maxlen: 24
156.251.43.0/24 maxlen: 24
156.251.44.0/24 maxlen: 24
156.251.45.0/24 maxlen: 24
156.251.46.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 06 Jun 2025 12:49:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88185 (0x15879)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 28 13:29:41 2025 GMT
Not After : Jun 8 13:29:41 2025 GMT
Subject: CN=68370fca-4432
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:94:27:df:59:e3:a6:f5:57:98:d9:dd:77:0d:
4a:af:ef:d1:46:d9:90:d9:ff:eb:28:94:0e:b3:94:
74:05:da:8d:dd:da:68:ba:57:fb:fb:73:19:69:76:
13:ff:d2:68:53:df:6b:f1:c8:30:b3:a6:ac:ea:24:
0a:f5:cd:3b:c1:0e:b9:97:a7:de:c6:96:f8:58:52:
fb:bc:1f:86:55:3f:ab:c3:c0:1a:30:d0:7a:d0:b1:
2a:ae:be:1e:70:f7:8f:96:f3:48:5a:e8:eb:b6:ea:
94:d6:85:94:9d:4f:28:3d:43:66:5f:64:d8:ab:81:
3f:60:a0:6a:29:8e:36:71:05:75:e1:af:4d:6c:de:
1b:ed:70:ab:1a:ab:41:2a:55:df:80:88:09:a3:12:
6b:f8:96:e9:79:0e:53:6b:69:e5:ca:7a:bd:05:b0:
65:72:e9:d7:70:9a:cd:51:27:1d:c7:34:f2:4a:84:
ba:a4:ad:b9:9b:9a:83:ef:b1:aa:e8:bf:4f:10:af:
ad:cf:82:e2:2d:76:f8:4a:3b:b9:57:50:b1:d9:ad:
93:2b:99:81:4c:ad:0f:1e:03:32:b4:bf:fc:cd:c2:
98:e5:23:6f:f2:bc:36:dc:aa:e1:3e:28:f4:2e:92:
b3:15:54:7f:af:80:b2:c8:ad:24:c2:74:38:50:f7:
49:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:AC:9E:0C:56:0C:56:6B:ED:F0:13:DD:E1:5B:1B:4D:52:EE:62:54
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D1E11CE03BC711F09389D68DDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.240.192.0-156.240.194.255
156.240.244.0/24
156.251.41.0-156.251.46.255
Signature Algorithm: sha256WithRSAEncryption
94:48:63:31:3d:ce:92:60:37:62:a1:76:5a:4b:f7:0f:85:ef:
b7:c4:c7:08:1c:63:3c:e8:41:65:ca:26:d6:e9:16:3e:3b:f5:
a1:2f:69:19:78:d1:65:40:04:8b:99:e2:79:bc:5a:5e:b7:80:
08:d8:02:a0:e4:0c:15:24:5a:97:87:bb:ef:7b:23:9d:87:78:
90:51:62:3e:6d:f2:d8:25:e2:53:70:43:20:0a:0f:53:10:20:
3e:f8:0b:fc:8f:ba:01:49:d4:65:3a:de:7e:d4:55:e0:7e:93:
c3:f8:49:bf:ce:ec:9b:fa:f8:09:f1:6c:78:15:78:52:ff:2d:
28:a5:21:f8:ba:65:c0:e9:27:61:17:6e:0b:f8:ae:8f:7b:a1:
3a:db:07:ed:ab:85:16:d3:62:31:ee:bc:ca:cd:b8:c8:07:24:
d2:d1:d6:42:16:fe:1d:29:63:ec:4c:f7:0b:d9:97:7c:ca:aa:
b0:54:6e:6a:9e:14:d2:97:c6:7f:03:33:97:d2:c9:91:8a:40:
7b:c8:9a:70:c8:ce:bf:4e:9b:c4:70:43:e5:1d:c4:f3:6c:14:
2f:2a:b1:ac:4c:3a:ca:bb:63:41:c3:63:fe:fa:23:57:d5:c6:
0e:87:6b:0d:36:fb:e7:6c:ef:0e:b8:73:d4:3c:25:be:e7:9d:
67:b7:d2:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 02:07:47 2025 by rpki-client