Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E520BE703BC511F0B46A4581DAE4EC9C.roa
File: E520BE703BC511F0B46A4581DAE4EC9C.roa (raw, json)
Hash identifier: Z2cSocF45Cwkn6tUm6beArlD76D81MdtbmP1o+dODDA=
Subject key identifier: C6:D5:E3:6E:28:20:23:11:79:5A:82:34:B6:69:8E:DE:C4:17:09:9B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015870
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E520BE703BC511F0B46A4581DAE4EC9C.roa
Signing time: Wed 28 May 2025 13:15:59 +0000
ROA not before: Wed 28 May 2025 13:15:54 +0000
ROA not after: Sun 08 Jun 2025 13:15:54 +0000
asID: 399077
IP address blocks: 156.251.0.0/24 maxlen: 24
156.251.5.0/24 maxlen: 24
156.251.10.0/24 maxlen: 24
156.251.27.0/24 maxlen: 24
156.251.48.0/23 maxlen: 24
156.251.59.0/24 maxlen: 24
156.251.60.0/24 maxlen: 24
156.251.61.0/24 maxlen: 24
156.251.62.0/24 maxlen: 24
156.251.63.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88176 (0x15870)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 28 13:15:54 2025 GMT
Not After : Jun 8 13:15:54 2025 GMT
Subject: CN=68370c8f-3d30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:c1:65:ee:2e:9d:99:6e:4a:55:8b:15:db:d5:
5e:c1:b7:50:9f:63:02:b5:68:f4:b1:f4:4a:27:a4:
58:c7:89:e2:8c:7f:f8:8c:29:6b:2b:3a:0b:fd:fc:
44:8a:00:9f:1c:b2:ac:c8:fb:e3:9b:e5:7d:f8:2f:
90:9e:75:da:b0:4b:f2:dd:53:8a:f6:c5:2b:3f:87:
e2:70:b0:e2:08:3b:ad:da:7b:77:85:eb:fe:53:17:
6f:4c:6c:a8:59:f9:48:d9:e8:8a:fc:91:6d:73:e8:
3a:a6:6f:42:20:38:5e:e1:3a:ed:d5:e9:88:72:a4:
54:bc:54:1a:c5:82:7e:6d:0b:d3:9d:c6:0e:35:2f:
fd:ec:94:ba:f8:cd:8d:ca:6d:3a:cf:8b:99:dd:3d:
86:7a:c1:e2:c6:cf:8b:80:7a:ed:a5:f1:14:a8:cc:
5b:d8:1c:78:c9:33:5d:fe:32:15:c9:ec:94:f6:7e:
1b:e9:0d:4f:a3:bf:35:72:06:a0:b6:17:e3:b9:67:
83:54:ff:ee:b3:dd:f4:5f:e8:b6:2d:0f:5f:4b:ed:
5b:61:f5:85:1d:02:bb:2f:7c:83:35:46:86:af:0c:
6f:f4:fc:a3:cf:00:15:38:0b:08:6a:5b:5b:03:49:
d7:f0:71:e1:3c:91:68:e1:af:86:89:44:7c:46:ea:
72:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:D5:E3:6E:28:20:23:11:79:5A:82:34:B6:69:8E:DE:C4:17:09:9B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E520BE703BC511F0B46A4581DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.251.0.0/24
156.251.5.0/24
156.251.10.0/24
156.251.27.0/24
156.251.48.0/23
156.251.59.0-156.251.63.255
Signature Algorithm: sha256WithRSAEncryption
93:67:18:ca:0d:36:60:28:52:f8:e8:d1:13:8d:fe:3f:39:7a:
27:48:af:f4:9d:11:69:aa:65:f4:ea:2b:b1:b6:d3:83:64:1d:
f5:28:79:cb:04:32:f3:08:01:03:25:45:9c:5c:c2:74:4d:0c:
d5:7b:2c:3a:03:02:5a:c5:77:80:5f:61:7e:9e:07:ad:ec:1d:
55:64:b7:c7:7e:05:db:e7:f5:6b:fe:85:48:1e:2c:8e:92:e6:
44:c5:df:2c:c4:bd:ad:f7:d3:93:dd:6e:e4:2a:45:9b:0f:4c:
4e:72:f1:eb:9f:ab:b9:25:95:3b:43:c6:9a:a5:e5:f3:31:45:
77:57:b4:48:02:a5:49:e1:a7:f7:3c:d3:f7:62:94:1b:83:26:
dc:8a:48:c8:71:c6:38:de:7e:c1:65:b8:b1:cd:21:99:9c:8e:
9e:ca:cc:fe:8e:0f:57:25:fa:77:f6:31:b3:6a:fd:e9:b2:ee:
b2:bd:37:03:6a:1c:4e:14:d9:d6:b0:9b:d8:a4:bc:99:fe:60:
c7:be:1d:51:18:20:19:14:63:6a:46:fd:5c:ef:e0:33:dd:75:
d1:e5:39:ce:e2:b3:15:c4:2a:d1:d7:93:9f:11:f3:ee:03:8d:
4b:36:2d:90:30:9c:78:51:b1:f0:76:2a:9f:94:d5:a6:6f:06:
22:90:54:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:35:48 2025 by rpki-client