Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FE50B73C2B2711F0BA29B4B5DAE4EC9C.roa
File: FE50B73C2B2711F0BA29B4B5DAE4EC9C.roa (raw, json)
Hash identifier: X2bSEUD8uyum+YD8ufthRe/uttDjjWcOQQE105R6mIY=
Subject key identifier: 6B:D0:B1:3F:E3:33:1F:DE:E4:1E:5A:AF:66:8E:9C:74:45:0E:78:7F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01528C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FE50B73C2B2711F0BA29B4B5DAE4EC9C.roa
Signing time: Wed 07 May 2025 09:45:22 +0000
ROA not before: Wed 07 May 2025 09:45:17 +0000
ROA not after: Sat 14 Jun 2025 09:45:17 +0000
asID: 20473
IP address blocks: 156.236.77.0/24 maxlen: 24
156.236.78.0/23 maxlen: 24
156.240.98.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 08 Jun 2025 00:26:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86668 (0x1528c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 7 09:45:17 2025 GMT
Not After : Jun 14 09:45:17 2025 GMT
Subject: CN=681b2bb2-4e9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ec:0e:cb:b2:eb:0c:71:3b:6e:bf:12:f7:97:
c3:61:8f:5a:32:cf:0d:b3:2c:18:45:f9:88:6f:28:
5e:aa:28:c8:55:3d:e2:87:13:2f:4b:05:64:27:90:
f1:96:a0:be:23:a8:48:8c:56:47:1e:19:68:c6:fa:
58:0a:7a:42:71:e9:3b:79:e1:29:2a:28:03:f3:08:
a7:05:18:9b:97:e6:a0:78:79:24:26:66:84:a1:04:
d2:53:4d:e6:86:7b:a8:b6:6f:fe:be:5b:51:3a:6d:
9e:fd:d9:80:27:bb:93:34:38:6e:b2:13:53:8c:dc:
69:2c:82:38:d7:a2:bf:e7:5c:ce:93:75:3a:c7:b7:
84:2b:14:b6:b1:a7:a7:3f:12:69:84:fc:56:12:66:
55:f5:81:da:82:f2:b7:6b:0b:dd:21:43:e1:e9:89:
c6:be:ee:dc:10:84:fe:09:97:3f:12:4d:a3:3a:b5:
23:5f:08:53:b2:1f:c0:e9:ce:b1:0e:5f:00:70:ff:
2e:4e:f5:2f:0d:98:f4:cd:f5:ec:88:d3:5b:98:0c:
4b:b1:15:13:d6:38:b0:ba:f5:f9:7a:49:62:9c:c1:
50:68:23:3d:e6:d4:32:9b:4d:df:43:70:4f:45:a4:
03:60:3d:50:0c:74:6c:24:8d:f1:2f:2b:e1:a9:be:
9a:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:D0:B1:3F:E3:33:1F:DE:E4:1E:5A:AF:66:8E:9C:74:45:0E:78:7F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FE50B73C2B2711F0BA29B4B5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.77.0-156.236.79.255
156.240.98.0/24
Signature Algorithm: sha256WithRSAEncryption
81:49:6c:41:1f:2d:da:9d:8d:5b:f2:50:5a:6e:55:b1:e5:f2:
5c:eb:73:63:6e:94:53:f9:38:36:e8:93:c3:02:f0:48:35:d1:
90:55:8d:e4:4c:c9:83:bd:b8:a6:65:e9:4f:ee:f7:a9:e5:43:
53:21:4f:95:89:33:50:dc:a9:ce:9a:3e:16:1f:cb:37:cd:2a:
f2:89:07:38:18:cf:51:82:d6:61:c1:76:56:81:b5:98:8c:c7:
d3:ab:ce:ea:68:91:d2:e4:e5:f5:f5:27:ee:88:2b:4a:6c:2a:
c6:b6:50:0b:e5:ce:24:78:c1:d2:26:1a:b5:e3:33:a3:6a:54:
f7:29:2f:38:60:dd:7b:b1:71:8e:e7:e3:f7:19:cc:a7:ac:1d:
c8:67:98:40:5b:8e:4d:33:1b:1d:5d:cd:7d:84:99:7a:93:05:
df:81:5c:58:01:29:a7:b1:40:4d:85:a3:d2:6c:49:41:3c:1d:
8c:c1:29:c4:bb:e6:27:b8:ac:83:11:e0:6e:05:e0:3f:d1:ee:
1a:d9:c0:ee:7f:3d:50:83:13:83:d1:a3:a2:86:f6:3f:a0:54:
dd:92:fb:e1:f8:f0:8e:11:2c:05:4a:46:72:17:bd:3b:b5:be:
41:e5:32:a1:0d:fd:bd:9a:de:31:81:d0:2d:51:fd:6a:92:93:
81:ba:a9:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 18:08:17 2025 by rpki-client