Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DB99FFE63BC611F08EF57E87DAE4EC9C.roa
File: DB99FFE63BC611F08EF57E87DAE4EC9C.roa (raw, json)
Hash identifier: njqPDbGw14MXD1hQ1sx3OuD4NbHQoDl6SkXaOgZv83s=
Subject key identifier: 58:DD:A8:84:9F:F3:0F:F2:34:96:72:CD:33:2C:BD:15:2D:15:0D:2E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015874
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DB99FFE63BC611F08EF57E87DAE4EC9C.roa
Signing time: Wed 28 May 2025 13:22:53 +0000
ROA not before: Wed 28 May 2025 13:22:48 +0000
ROA not after: Sun 08 Jun 2025 13:22:48 +0000
asID: 399077
IP address blocks: 156.251.47.0/24 maxlen: 24
156.251.50.0/24 maxlen: 24
156.251.51.0/24 maxlen: 24
156.251.52.0/24 maxlen: 24
156.251.53.0/24 maxlen: 24
156.251.54.0/24 maxlen: 24
156.251.55.0/24 maxlen: 24
156.251.56.0/24 maxlen: 24
156.251.57.0/24 maxlen: 24
156.251.58.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88180 (0x15874)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 28 13:22:48 2025 GMT
Not After : Jun 8 13:22:48 2025 GMT
Subject: CN=68370e2c-37d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:76:d6:d4:45:42:f0:68:fa:25:84:26:24:73:
69:da:4e:fe:70:d1:d5:b5:29:80:d4:da:99:b1:c9:
7b:63:8f:be:66:42:f6:83:7a:f3:8c:ac:f5:4f:1b:
64:52:73:8b:ca:95:80:e9:71:ec:26:09:eb:ee:1e:
a2:f5:89:3d:e8:13:59:b3:08:b1:23:5d:0c:cb:7b:
cb:a9:0a:7d:83:95:9c:e2:3f:a1:e8:2f:35:aa:51:
b2:32:3e:96:5d:26:48:c6:c4:f2:c0:4a:9c:2a:00:
ba:3e:77:09:3c:17:64:c6:5d:80:ca:5b:34:3e:de:
b4:de:42:71:f5:8c:a8:b0:50:e9:d7:21:99:4e:60:
aa:6a:35:ce:9a:db:f7:66:20:b6:60:09:7c:35:84:
29:53:ab:01:7f:92:98:1e:fe:b1:bf:7e:6f:7e:d9:
56:a7:29:42:23:a6:e9:e7:41:04:a3:fc:a4:a4:ff:
30:c6:1a:7c:c3:a3:f9:86:dd:f1:bf:85:75:07:f4:
e0:bd:5f:f1:e0:87:c8:80:c3:c1:5a:68:6a:41:f1:
02:8a:a5:0a:d2:e5:53:9d:8a:59:86:2d:42:cf:c2:
c9:d6:a5:7c:ba:6b:c1:eb:88:c4:53:a6:af:71:3b:
67:5b:c6:42:f1:7b:2f:62:78:52:9b:3a:84:50:27:
61:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:DD:A8:84:9F:F3:0F:F2:34:96:72:CD:33:2C:BD:15:2D:15:0D:2E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DB99FFE63BC611F08EF57E87DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.251.47.0/24
156.251.50.0-156.251.58.255
Signature Algorithm: sha256WithRSAEncryption
02:fc:11:73:b9:07:a8:68:de:b4:a6:4f:03:dd:3a:09:52:c3:
52:35:be:bc:55:16:66:1e:1f:aa:77:cc:21:a2:9e:8c:4d:4e:
30:ad:48:d1:24:09:e9:53:f2:4e:dc:e5:f7:75:28:75:b4:cb:
52:84:73:6a:18:dd:8c:ed:d5:51:01:0e:da:f6:59:e1:00:5c:
16:65:b9:0f:ea:e4:58:f9:77:17:57:f4:7d:50:2f:fe:4e:a2:
a2:4b:12:22:6c:4a:3c:8d:fa:92:c5:41:9d:33:6f:6a:18:19:
dc:34:f5:64:66:42:5c:f3:6a:0f:ec:d4:06:e7:4f:eb:be:66:
a6:39:79:94:7f:b7:fb:c7:db:7a:cd:3e:e5:94:fb:57:49:d6:
93:04:af:18:ac:b1:98:b7:56:db:98:ec:a9:05:3a:57:da:80:
9c:b1:7f:a8:8e:d6:5b:8a:83:28:c1:03:f2:07:50:08:31:1b:
58:06:15:61:84:61:1a:5c:af:7a:81:46:55:1a:82:ec:75:62:
e8:d4:90:4e:b0:f6:0c:10:a0:cb:14:9d:8d:25:4a:aa:e3:0a:
d6:ee:db:35:b7:99:3a:82:aa:17:76:c9:2e:e1:ec:1c:40:d4:
f1:2f:95:4d:a8:aa:68:4d:7c:c4:33:ad:f5:39:33:a3:8f:df:
c8:a5:6d:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:26:55 2025 by rpki-client