Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EDD5CC18317F11F0827156A5DAE4EC9C.roa
File: EDD5CC18317F11F0827156A5DAE4EC9C.roa (raw, json)
Hash identifier: aD7+zVGPKxdnIfFOCs4pxngWofo1L3+goKShEykzcnk=
Subject key identifier: D4:62:5A:D3:5A:28:6B:5B:CB:8D:DD:99:EC:B0:AC:92:FC:E4:2A:D2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0154AD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EDD5CC18317F11F0827156A5DAE4EC9C.roa
Signing time: Thu 15 May 2025 11:29:57 +0000
ROA not before: Thu 15 May 2025 11:29:52 +0000
ROA not after: Fri 13 Jun 2025 11:29:52 +0000
asID: 398478
IP address blocks: 156.227.160.0/20 maxlen: 24
156.227.176.0/20 maxlen: 24
156.229.176.0/20 maxlen: 24
156.229.192.0/19 maxlen: 24
156.252.96.0/19 maxlen: 24
156.252.144.0/20 maxlen: 24
156.252.160.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87213 (0x154ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 15 11:29:52 2025 GMT
Not After : Jun 13 11:29:52 2025 GMT
Subject: CN=6825d035-728c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:41:5a:2a:01:ee:c3:0a:d9:ea:31:f9:4d:27:
10:69:ad:02:8a:74:f8:66:80:79:68:11:80:7f:e9:
9c:c9:79:42:79:47:d3:a2:b3:63:aa:6b:69:59:ad:
d8:21:a2:23:62:c4:ed:40:b7:e3:a9:ef:8b:43:87:
90:9f:b7:ca:90:4c:77:20:c7:0a:20:85:6a:8a:55:
af:97:29:9d:05:94:04:81:f8:78:f5:f4:5a:1e:f2:
17:c7:25:6b:94:12:3c:38:74:b5:68:c4:bb:c3:8d:
4e:ae:b2:4f:df:e4:9d:54:c3:4f:ae:92:76:7a:49:
34:95:fc:3e:0a:87:48:cf:fe:e3:e7:4c:98:6b:db:
91:6b:0d:d1:e7:02:53:63:7d:f0:76:9f:9f:dd:d1:
97:30:ab:72:fe:be:06:93:92:42:25:81:9b:27:e5:
f8:90:1d:bd:0a:34:63:8f:86:da:07:aa:5c:ba:6a:
f9:57:1e:90:af:cb:96:05:89:da:4b:f3:da:cc:0f:
85:e1:bd:93:8c:50:45:b3:bd:69:5c:bd:24:63:83:
9d:dd:15:e7:3b:27:01:3e:e4:72:05:6a:a7:56:41:
11:5c:65:1b:31:51:b8:9d:b0:d4:d8:df:ee:eb:a4:
19:0f:1b:57:55:a1:7c:55:2f:67:b4:cc:67:79:cd:
73:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:62:5A:D3:5A:28:6B:5B:CB:8D:DD:99:EC:B0:AC:92:FC:E4:2A:D2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EDD5CC18317F11F0827156A5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.160.0/19
156.229.176.0-156.229.223.255
156.252.96.0/19
156.252.144.0-156.252.175.255
Signature Algorithm: sha256WithRSAEncryption
ad:5b:63:7d:c2:25:92:d3:ed:cf:e8:1d:2b:e5:f9:64:f6:86:
b2:db:36:5d:34:5c:5e:a3:b4:6c:ed:f2:73:6c:80:70:38:f3:
c8:a7:4a:f3:78:73:2f:87:30:2b:9b:3f:65:72:61:12:cd:ae:
a9:15:a9:8f:bb:14:a2:66:b3:be:d9:0f:22:e2:76:13:b2:71:
b1:e6:1b:b9:7c:aa:c7:67:78:a2:91:e5:84:c7:a1:67:0a:72:
d7:f8:97:3d:96:84:4d:09:0f:8c:0b:9e:94:f6:e9:cb:02:fc:
f6:ab:58:69:e7:60:a1:fc:02:93:0b:e2:4d:69:25:4d:4d:76:
61:fc:9b:2c:19:0d:16:e8:36:1f:a9:fc:d8:95:9b:05:69:48:
8e:2d:c8:ae:5e:65:d4:e9:e4:f8:2c:36:9e:ef:3d:e8:b8:5b:
12:37:0b:81:90:b1:89:f5:4e:d8:e5:fd:98:8e:3f:3d:44:a1:
c6:90:9a:0c:61:f9:19:46:27:68:db:56:44:aa:37:ef:17:80:
d4:36:3d:09:c0:65:0a:de:5f:6b:90:37:b6:76:c8:06:df:b7:
7b:ec:35:61:31:52:0b:ee:64:30:a6:c4:1b:a3:46:44:11:3c:
3f:4a:31:78:32:75:e2:f9:17:49:6f:3a:97:a8:db:07:24:ae:
36:e6:43:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:45:59 2025 by rpki-client