Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F2E915A4412C11F081D8EAA1DAE4EC9C.roa
File: F2E915A4412C11F081D8EAA1DAE4EC9C.roa (raw, json)
Hash identifier: hHuoz77hFwVRxIvZohKH1A3SaI+1iA8umACyqDJuLoQ=
Subject key identifier: E8:69:CF:78:6A:03:30:02:BB:17:8B:47:FA:15:A3:7F:D8:75:92:40
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0159AE
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F2E915A4412C11F081D8EAA1DAE4EC9C.roa
Signing time: Wed 04 Jun 2025 10:16:16 +0000
ROA not before: Wed 04 Jun 2025 10:16:11 +0000
ROA not after: Tue 08 Jul 2025 10:16:11 +0000
asID: 200373
IP address blocks: 156.228.95.0/24 maxlen: 24
156.228.96.0/24 maxlen: 24
156.249.137.0/24 maxlen: 24
156.249.138.0/24 maxlen: 24
156.253.164.0/24 maxlen: 24
156.253.165.0/24 maxlen: 24
156.253.166.0/24 maxlen: 24
156.253.167.0/24 maxlen: 24
156.253.168.0/24 maxlen: 24
156.253.169.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 08 Jun 2025 00:26:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88494 (0x159ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 4 10:16:11 2025 GMT
Not After : Jul 8 10:16:11 2025 GMT
Subject: CN=68401cf0-43f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:85:a5:a1:12:2e:fb:4d:3e:6a:af:f1:27:f0:
82:e0:44:e8:fc:1e:6e:80:fb:53:0e:a2:1a:4d:85:
43:7b:41:d8:e7:c9:49:de:d5:c2:a3:97:eb:50:88:
76:82:5f:37:31:3d:c3:cf:6d:ab:20:09:eb:bb:75:
b8:ab:c4:79:5d:ae:4a:bd:af:83:eb:ee:47:55:bc:
f6:af:58:50:8c:ae:f0:0d:7a:a6:e7:1b:92:b2:03:
67:bc:ae:60:ac:da:c2:af:ec:43:1a:72:08:3e:ef:
46:91:82:34:62:7f:fd:72:36:be:f9:2a:89:5f:0e:
87:e6:a7:c5:2b:90:d2:d3:7d:e3:f3:64:88:7d:7d:
c8:e1:2e:fc:2a:02:a4:3b:0d:a8:51:38:63:91:3e:
a8:92:93:d8:97:fb:f6:36:e6:5d:27:1f:cc:2d:72:
6f:d8:8b:97:e9:f6:bd:8b:ef:d7:49:8d:26:ae:6b:
32:9f:b6:b6:59:ee:8c:d5:a1:5b:8e:2d:4e:89:f6:
a0:e9:ed:92:e2:36:8b:d3:e1:81:ca:45:5e:01:bc:
a0:0c:ad:22:14:99:a1:62:fc:d1:b7:21:5c:40:25:
c5:0c:77:ac:ff:8d:b7:0b:ea:ef:3b:4b:06:30:da:
3f:4f:5d:5c:66:21:a2:58:a6:61:8f:52:c5:a4:4e:
9d:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:69:CF:78:6A:03:30:02:BB:17:8B:47:FA:15:A3:7F:D8:75:92:40
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F2E915A4412C11F081D8EAA1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.228.95.0-156.228.96.255
156.249.137.0-156.249.138.255
156.253.164.0-156.253.169.255
Signature Algorithm: sha256WithRSAEncryption
03:2f:39:13:f0:c9:6c:82:f5:f0:e4:bc:44:f9:fa:2e:17:c7:
91:78:ed:39:6c:6f:d0:d7:aa:25:75:81:6e:02:1a:1e:bc:b6:
6f:fa:4c:1b:4b:4e:0f:ca:7d:b7:28:d1:a5:3e:31:a4:bc:98:
c4:47:d7:d0:99:78:91:f6:99:aa:da:a2:1c:66:6a:58:d7:ae:
71:38:37:3b:84:60:1a:5f:b8:a5:9e:93:37:db:92:36:9c:46:
91:aa:15:30:c7:86:ad:c1:18:9e:e8:3c:24:67:fb:cc:a2:3b:
be:68:aa:35:79:f8:b0:05:65:1f:a9:4e:6e:36:bd:4a:ff:4f:
42:95:20:cd:73:b1:c3:ac:68:d4:dc:74:76:8d:9a:b1:b2:bf:
13:1e:d6:0e:3c:62:5a:77:28:24:7a:84:50:11:45:51:3e:8d:
52:1d:b2:0a:b5:96:39:17:74:35:29:61:af:2d:a4:d9:47:fc:
cd:59:81:ee:1d:bd:37:4e:d5:29:d1:ff:e4:1f:e6:63:be:cb:
b5:40:88:40:8a:a6:1d:39:56:41:f3:41:41:b8:cc:76:59:98:
a0:fb:80:1e:69:0f:69:1a:4d:89:13:5a:fe:83:19:a3:b7:7a:
ac:9d:7d:d2:ac:29:77:3b:c5:9d:b7:42:4e:2e:96:2f:22:47:
6e:a5:ef:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 14:39:09 2025 by rpki-client