Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F0EE85BE332511F0832DACAADAE4EC9C.roa
File: F0EE85BE332511F0832DACAADAE4EC9C.roa (raw, json)
Hash identifier: XPUaqK9Ntr/F3f77vizUgT2D4WKgh8w9o+2+LZzPOM0=
Subject key identifier: 72:EB:30:F8:0E:3D:08:4D:8C:4B:8A:B9:C2:CF:D2:2C:7D:83:3C:CA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015587
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F0EE85BE332511F0832DACAADAE4EC9C.roa
Signing time: Sat 17 May 2025 13:50:50 +0000
ROA not before: Sat 17 May 2025 13:50:45 +0000
ROA not after: Fri 08 Aug 2025 13:50:45 +0000
asID: 149014
IP address blocks: 156.236.96.0/22 maxlen: 24
156.236.108.0/22 maxlen: 24
156.236.112.0/22 maxlen: 24
156.236.116.0/22 maxlen: 24
156.236.124.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87431 (0x15587)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 17 13:50:45 2025 GMT
Not After : Aug 8 13:50:45 2025 GMT
Subject: CN=6828943a-b6bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:84:0d:6b:32:24:2c:2b:16:53:7f:20:88:ff:
4e:b6:9b:a3:d8:b4:bf:2d:ce:2d:2e:1e:3e:f9:e9:
45:67:12:67:0b:35:81:9f:cd:66:51:5b:28:96:22:
84:ea:e4:89:15:94:be:40:18:30:e6:ff:a2:69:44:
83:44:e0:d8:a5:34:17:ac:76:0c:ac:7d:c9:a5:3b:
d6:93:6b:a0:71:05:db:2c:38:a6:13:fe:48:a5:44:
b7:3a:fc:c2:51:99:b2:3a:14:9c:e8:5e:fa:4c:08:
c5:19:44:b4:78:01:72:bd:85:d3:da:43:57:cb:c7:
13:12:21:9b:32:9d:1f:99:cc:8e:6c:47:84:49:e6:
78:95:e0:48:62:8a:af:ae:58:0c:3d:15:1e:ce:88:
32:a5:25:a2:a2:63:20:97:7d:53:96:7b:bc:b0:c9:
7b:d6:a6:13:8f:a7:88:a9:36:ff:4f:52:7c:7d:1a:
7b:9e:ff:5f:90:7a:18:cc:83:72:43:82:29:3b:6a:
49:58:1e:f1:3b:09:f0:ac:23:de:ff:0a:6c:56:8b:
a8:89:d7:b5:5a:f0:db:ef:a2:ae:4a:26:fd:79:1a:
ee:a5:c9:8b:0c:07:bf:7f:7a:69:5c:12:67:25:95:
b0:37:da:07:5e:e6:1c:da:c6:43:4b:45:fd:20:7a:
66:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:EB:30:F8:0E:3D:08:4D:8C:4B:8A:B9:C2:CF:D2:2C:7D:83:3C:CA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F0EE85BE332511F0832DACAADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.96.0/22
156.236.108.0-156.236.119.255
156.236.124.0/22
Signature Algorithm: sha256WithRSAEncryption
18:c0:9b:58:ab:6a:54:78:f5:a0:eb:c6:a9:05:88:53:6b:60:
62:9d:f0:48:8f:e9:40:f9:de:b9:ec:e8:5b:9f:8b:a7:97:95:
4b:cf:03:10:6f:76:00:50:00:53:54:96:a2:86:75:15:31:2f:
1b:62:af:68:34:05:0f:e8:62:04:43:46:ae:b1:f0:81:af:6b:
2a:66:0f:36:3e:c7:d0:26:22:7d:51:4f:18:be:26:25:c3:7d:
b3:65:35:8d:a2:b3:bc:a3:5a:b4:75:b9:33:14:66:83:de:8a:
2b:00:d7:55:d9:ee:e5:a5:c9:b1:28:b7:2c:69:13:86:a6:17:
64:66:ca:53:c7:15:c2:fe:bb:bb:09:d0:6b:7d:c3:96:52:8c:
0f:f3:5e:60:a9:24:8c:79:15:10:8c:86:48:4c:b6:d9:39:4f:
58:4a:5c:93:43:97:cc:c5:58:9e:f4:2f:71:66:43:2d:aa:bf:
fc:c0:2c:1c:92:8d:b3:6e:2d:e9:8c:6b:02:b6:a9:78:9c:5e:
ab:2b:e4:98:f0:1f:fe:74:61:8f:dd:1e:86:e6:8d:8c:34:d9:
d6:12:e1:d8:d9:26:bf:49:27:8a:2f:fe:84:6e:44:87:78:3f:
1a:fe:46:9e:05:17:3d:0c:4c:e1:ab:34:aa:36:11:c9:13:1e:
33:d2:97:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 3 08:25:01 2025 by rpki-client