Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/01548B3E4C6611F0815382B8DAE4EC9C.roa
File: 01548B3E4C6611F0815382B8DAE4EC9C.roa (raw, json)
Hash identifier: y/SFx/QVu9NnbHNXAjMaEwuc4OoE9AjLydC6XSBPCu4=
Subject key identifier: D9:F0:0F:9E:E1:04:B3:EB:8C:10:42:01:07:16:52:03:41:03:47:10
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015D1F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/01548B3E4C6611F0815382B8DAE4EC9C.roa
Signing time: Wed 18 Jun 2025 17:02:24 +0000
ROA not before: Wed 18 Jun 2025 17:02:20 +0000
ROA not after: Fri 12 Sep 2025 17:02:20 +0000
asID: 398993
IP address blocks: 156.236.192.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 05 Jul 2025 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89375 (0x15d1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 18 17:02:20 2025 GMT
Not After : Sep 12 17:02:20 2025 GMT
Subject: CN=6852f120-ed8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ec:fa:0a:d4:7b:0b:28:a7:4b:55:6d:11:1d:
1e:5c:35:19:93:1a:4d:1b:39:d4:51:18:34:d3:04:
15:83:ab:59:6d:15:d6:fd:8e:06:a7:31:bf:c2:cc:
f0:2d:9f:21:70:2a:77:43:95:51:62:d8:7a:d8:02:
fd:df:67:d2:55:cb:c5:e6:9a:c7:50:5f:a3:40:52:
73:1d:80:f2:08:fb:73:fe:c2:24:47:d3:d7:c0:3a:
29:39:84:1b:5e:1b:c3:8e:af:cb:a2:97:db:30:b7:
60:4e:8a:75:de:e8:2b:ba:cc:0c:c6:cc:80:df:b5:
30:19:5a:c9:3a:90:b3:45:67:f5:72:0c:e3:65:48:
70:88:66:20:64:9f:05:3d:f4:dd:db:cc:c0:25:8a:
68:16:eb:73:fc:fa:55:cf:1e:ea:d1:e9:92:6f:ee:
3d:3e:6d:fe:04:75:a5:6d:dd:2d:94:a4:e2:ab:a5:
7b:e5:fd:f6:0c:c5:78:ef:42:bb:b2:1b:8b:dc:bd:
88:b5:a0:29:41:15:16:3c:b2:62:b1:42:4c:77:d4:
be:85:e3:68:e9:79:ab:0d:70:ce:a6:3d:36:47:e7:
65:9f:cf:e4:51:30:88:ef:ec:d2:4e:62:42:ff:cd:
7b:89:f6:79:47:63:e2:d5:ba:80:11:e9:db:e9:22:
4a:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:F0:0F:9E:E1:04:B3:EB:8C:10:42:01:07:16:52:03:41:03:47:10
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/01548B3E4C6611F0815382B8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.192.0/18
Signature Algorithm: sha256WithRSAEncryption
8d:82:49:1a:b4:5a:4a:26:5b:ab:dc:5c:a4:ea:e5:dd:a1:e9:
18:af:c4:a1:bb:28:ab:fa:05:19:67:f4:22:44:64:e8:e0:fe:
bd:38:c6:7f:b5:87:4a:53:54:29:51:75:a9:b4:59:c2:10:42:
e6:b7:42:eb:ce:b3:e1:af:94:35:d6:0a:2f:e1:b2:59:0b:e4:
ab:f6:f6:60:65:05:37:a3:3e:f3:35:de:51:93:2d:f0:0d:54:
72:1a:46:29:72:8a:81:b4:5f:0f:95:13:8b:63:52:23:7e:be:
fa:51:22:2e:7d:35:f9:b1:60:aa:90:8e:63:d2:02:1f:ad:f2:
f6:57:96:92:0e:2c:c7:05:76:31:13:e0:19:df:e4:fe:89:51:
4d:84:75:41:2a:fa:f5:2c:92:42:cb:81:fb:85:be:f2:be:39:
ed:e4:82:07:3b:11:79:3b:fe:69:39:9d:6b:b7:26:69:5c:56:
5e:74:25:76:0d:ca:ee:a0:5d:fb:55:2e:ab:17:65:3c:c2:18:
8c:2d:7e:07:db:27:0e:0d:d9:df:9a:b7:43:da:0c:c9:56:9b:
d3:e6:53:8e:3e:eb:02:68:38:b2:22:aa:59:cb:ef:74:94:64:
0d:4a:72:38:ef:f0:2a:fd:fb:99:9f:a3:c9:ca:30:d9:ef:42:
fd:67:cd:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 13:07:26 2025 by rpki-client