Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F5BD3924333811F0AE1DA8A8DAE4EC9C.roa
File: F5BD3924333811F0AE1DA8A8DAE4EC9C.roa (raw, json)
Hash identifier: CwmpLQlfyZ6iAQVsgo87LaEA/l78WdoI6k+7DZ3X1Ak=
Subject key identifier: 9A:41:9F:3A:AC:CD:D7:72:61:F7:92:CE:E0:61:03:B9:18:8B:D6:1D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0155A3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F5BD3924333811F0AE1DA8A8DAE4EC9C.roa
Signing time: Sat 17 May 2025 16:06:59 +0000
ROA not before: Sat 17 May 2025 16:06:54 +0000
ROA not after: Tue 16 Jun 2026 16:06:54 +0000
asID: 984
IP address blocks: 156.242.113.0/24 maxlen: 24
156.242.114.0/24 maxlen: 24
156.242.115.0/24 maxlen: 24
156.242.116.0/24 maxlen: 24
156.242.117.0/24 maxlen: 24
156.242.118.0/24 maxlen: 24
156.242.119.0/24 maxlen: 24
156.242.125.0/24 maxlen: 24
156.245.136.0/24 maxlen: 24
156.245.137.0/24 maxlen: 24
156.245.151.0/24 maxlen: 24
156.245.152.0/24 maxlen: 24
156.245.153.0/24 maxlen: 24
156.245.154.0/24 maxlen: 24
156.245.155.0/24 maxlen: 24
156.245.156.0/24 maxlen: 24
156.245.157.0/24 maxlen: 24
156.245.158.0/24 maxlen: 24
156.245.161.0/24 maxlen: 24
156.245.162.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 05 Jun 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87459 (0x155a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 17 16:06:54 2025 GMT
Not After : Jun 16 16:06:54 2026 GMT
Subject: CN=6828b422-18eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:9a:04:32:27:35:aa:4c:c7:93:31:89:69:4f:
6d:fd:d6:98:43:3b:d1:c7:92:b9:6e:b1:e3:cc:6d:
57:c9:56:f8:f1:ed:dd:79:1b:02:70:08:9f:5c:30:
bf:96:9d:10:ac:78:be:2d:ad:be:b6:77:01:8d:66:
48:37:88:81:ef:5e:c1:56:0d:39:46:7b:d1:db:1c:
dc:21:47:b0:33:bb:11:2b:c8:89:8c:04:4b:36:2d:
f0:ec:44:28:89:3e:9f:76:46:4f:6a:4b:e6:d5:8b:
ab:67:b2:c2:d9:bb:a0:5a:9c:38:96:a4:90:81:1e:
20:12:53:5c:c4:17:33:dd:42:87:da:b2:12:2d:e1:
94:37:a8:09:55:00:2a:2e:e0:88:5d:f1:b1:9c:15:
3c:55:b2:4a:19:6e:69:64:e8:00:9c:8e:fb:7c:bd:
21:d0:77:ac:16:0f:d3:10:0e:9c:7e:89:5e:b7:ed:
a5:87:e8:70:f7:ba:de:69:31:85:58:5b:58:1f:c5:
d9:89:4f:1d:4c:f5:4c:a4:9e:f6:f6:1b:69:09:16:
b5:53:e3:e7:3b:7f:24:a2:79:d5:a1:98:0f:91:91:
ea:7e:b4:4f:20:c2:8c:61:10:b8:63:99:a7:8f:a5:
ef:3c:cf:d9:37:5a:c9:4f:43:20:d3:ac:78:98:22:
ef:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:41:9F:3A:AC:CD:D7:72:61:F7:92:CE:E0:61:03:B9:18:8B:D6:1D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F5BD3924333811F0AE1DA8A8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.242.113.0-156.242.119.255
156.242.125.0/24
156.245.136.0/23
156.245.151.0-156.245.158.255
156.245.161.0-156.245.162.255
Signature Algorithm: sha256WithRSAEncryption
78:73:43:1b:74:63:65:b5:0b:58:e3:ee:13:1a:17:e9:ae:d2:
4c:6b:29:36:92:13:f2:35:22:e2:79:0a:ea:22:4e:a0:b3:70:
3b:f1:f8:3c:af:e4:42:06:c3:96:95:1c:bb:2a:1e:8b:79:0b:
46:12:5b:b8:fc:86:1b:c2:65:84:74:84:5a:d7:f7:a8:5e:75:
78:fd:95:a5:c0:40:e2:1b:0a:fa:9d:00:54:74:d8:a2:db:6f:
c2:c5:b6:3a:05:95:50:ea:40:9b:9a:e4:eb:21:6f:83:88:ac:
b8:b4:15:8b:52:dc:65:9e:00:64:c5:2e:41:16:8a:b9:06:c7:
f7:a8:d5:f8:65:2f:2c:fe:7c:3d:82:b7:b9:3e:7a:7d:26:ae:
be:cc:e3:62:f4:e0:8c:19:fb:fc:9f:fd:5f:cc:3e:d7:bb:f4:
f3:fd:49:c1:6d:76:ed:42:f7:97:a4:3d:3f:3f:cc:55:2a:bc:
be:0c:9b:a7:e8:0f:20:cf:17:1c:14:42:ed:be:0a:f3:ca:32:
f3:80:17:9a:74:12:2e:af:9e:05:33:4a:ee:7d:57:52:fa:2f:
8b:95:8b:c9:d6:c3:1e:5d:e4:53:bb:d5:58:4a:a8:3d:54:6b:
81:a1:e7:7f:72:45:eb:a5:a7:c2:d3:e3:da:a3:ef:14:fa:49:
02:f3:0a:35
-----BEGIN CERTIFICATE-----
MIIFsTCCBJmgAwIBAgIDAVWjMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNTE3MTYwNjU0WhcNMjYwNjE2MTYwNjU0WjAYMRYw
FAYDVQQDEw02ODI4YjQyMi0xOGViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA65oEMic1qkzHkzGJaU9t/daYQzvRx5K5brHjzG1XyVb48e3deRsCcAif
XDC/lp0QrHi+La2+tncBjWZIN4iB717BVg05RnvR2xzcIUewM7sRK8iJjARLNi3w
7EQoiT6fdkZPakvm1YurZ7LC2bugWpw4lqSQgR4gElNcxBcz3UKH2rISLeGUN6gJ
VQAqLuCIXfGxnBU8VbJKGW5pZOgAnI77fL0h0HesFg/TEA6cfolet+2lh+hw97re
aTGFWFtYH8XZiU8dTPVMpJ729htpCRa1U+PnO38konnVoZgPkZHqfrRPIMKMYRC4
Y5mnj6XvPM/ZN1rJT0Mg06x4mCLv6wIDAQABo4IC0jCCAs4wHQYDVR0OBBYEFJpB
nzqszddyYfeSzuBhA7kYi9YdMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9GNUJEMzkyNDMzMzgxMUYwQUUxREE4QThEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
ME8GCCsGAQUFBwEHAQH/BEAwPjA8BAIAATA2MAwDBACc8nEDBAOc8nADBACc8n0D
BAGc9YgwDAMEAJz1lwMEAJz1njAMAwQAnPWhAwQAnPWiMA0GCSqGSIb3DQEBCwUA
A4IBAQB4c0MbdGNltQtY4+4TGhfprtJMayk2khPyNSLieQrqIk6gs3A78fg8r+RC
BsOWlRy7Kh6LeQtGElu4/IYbwmWEdIRa1/eoXnV4/ZWlwEDiGwr6nQBUdNii22/C
xbY6BZVQ6kCbmuTrIW+DiKy4tBWLUtxlngBkxS5BFoq5Bsf3qNX4ZS8s/nw9gre5
Pnp9Jq6+zONi9OCMGfv8n/1fzD7Xu/Tz/UnBbXbtQveXpD0/P8xVKry+DJun6A8g
zxccFELtvgrzyjLzgBeadBIur54FM0rufVdS+i+LlYvJ1sMeXeRTu9VYSqg9VGuB
oed/ckXrpafC0+Pao+8U+kkC8wo1
-----END CERTIFICATE-----
Generated at Tue Jun 3 08:29:08 2025 by rpki-client