Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0A00558C261511F09E9B9DB6DAE4EC9C.roa
File: 0A00558C261511F09E9B9DB6DAE4EC9C.roa (raw, json)
Hash identifier: tprYgSmvDyxXEG4GQQzM4rF3CKYFi0hxeVBcKtzgfwU=
Subject key identifier: 6D:A0:52:E5:3D:05:0C:C4:C5:1B:F1:E1:A0:AC:9F:F5:D0:A5:8A:07
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015103
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0A00558C261511F09E9B9DB6DAE4EC9C.roa
Signing time: Wed 30 Apr 2025 22:47:06 +0000
ROA not before: Wed 30 Apr 2025 22:47:01 +0000
ROA not after: Fri 28 Apr 2028 22:47:01 +0000
asID: 17561
IP address blocks: 156.232.232.0/24 maxlen: 24
156.232.233.0/24 maxlen: 24
156.232.234.0/24 maxlen: 24
156.232.235.0/24 maxlen: 24
156.232.236.0/24 maxlen: 24
156.232.237.0/24 maxlen: 24
156.232.238.0/24 maxlen: 24
156.232.239.0/24 maxlen: 24
156.232.240.0/24 maxlen: 24
156.232.241.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 12 May 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86275 (0x15103)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 30 22:47:01 2025 GMT
Not After : Apr 28 22:47:01 2028 GMT
Subject: CN=6812a869-86b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:2f:e0:87:8d:16:38:7b:b5:73:91:a0:82:b7:
78:40:da:99:70:65:76:3c:79:29:dc:28:f5:e8:e0:
40:d4:c0:bf:9a:f6:11:85:d1:7e:dd:91:f7:90:d8:
2e:8d:19:7b:cc:d8:f4:b2:08:87:85:59:6f:e9:f9:
02:f4:d8:7c:fb:8c:ca:3a:a4:9a:ff:49:66:dc:df:
fd:f7:2a:c3:d3:5c:7b:8f:86:44:c4:8e:f4:2c:f8:
5d:66:12:bd:03:a3:8e:bb:f1:4a:e3:19:f2:c9:ac:
ad:56:dc:b8:cc:1e:70:d3:fe:52:98:0c:2a:c8:9c:
75:d2:5f:2f:17:5f:f7:a8:6b:a9:b3:93:d3:cb:ff:
e3:2f:a8:a2:aa:fc:61:10:6d:0e:b5:8b:32:11:11:
02:51:4a:5b:c2:f9:91:af:1c:c8:72:05:ca:25:7e:
7d:49:3c:13:ef:d0:21:55:a9:e5:34:f3:66:ea:99:
e1:01:1d:d8:da:86:ca:e7:1f:2f:24:0d:02:84:b6:
03:4f:1d:1f:15:3d:83:f8:30:b3:3d:c8:f3:c8:e7:
fc:c0:d5:cf:bf:fd:3e:4d:07:e4:a9:71:f6:b7:7a:
c1:db:21:c3:db:80:a1:19:c6:78:0d:92:2d:e6:60:
ba:3f:64:11:3f:7f:42:2d:09:2f:09:48:43:38:01:
e1:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:A0:52:E5:3D:05:0C:C4:C5:1B:F1:E1:A0:AC:9F:F5:D0:A5:8A:07
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0A00558C261511F09E9B9DB6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.232.232.0-156.232.241.255
Signature Algorithm: sha256WithRSAEncryption
6b:0f:fb:a5:63:9f:63:a1:f5:dd:c5:24:d0:f4:1e:2b:37:f2:
97:7a:1b:f6:d3:98:65:97:3a:6c:38:b2:20:b8:d1:2e:7b:59:
27:c9:8a:69:8a:4b:a6:63:ee:ff:f8:a8:a5:7e:d6:f4:9f:23:
d6:30:d3:9b:f5:c3:54:4c:dc:e7:d1:73:7d:0f:e0:8f:af:08:
05:6b:3e:6a:48:df:3a:d4:bf:b5:24:63:e0:7d:6f:06:cb:40:
8e:50:fc:54:25:c1:bc:e6:19:bb:39:a5:be:9e:e1:98:9c:6a:
48:cb:80:b1:c0:a0:7c:d8:f5:db:52:d7:17:60:c7:ff:6d:5f:
36:10:c5:29:72:3c:b3:79:63:47:4d:cc:01:09:60:16:30:64:
20:90:7e:98:84:06:9d:54:d7:eb:a9:42:9c:5c:db:55:a6:13:
ff:19:00:7a:c1:2b:98:80:e5:3b:81:56:ba:96:d9:79:bb:18:
a7:8a:87:1c:17:e1:b3:7a:5f:e7:20:8c:27:67:13:81:61:18:
c8:95:0c:3a:55:33:36:a8:df:88:0b:67:69:60:4a:5a:93:2c:
2f:50:77:99:ae:0e:f6:ff:40:60:d7:fc:a7:84:84:15:ef:73:
f8:6c:dd:6f:69:56:28:9f:a2:11:52:14:0a:fa:16:e2:9c:61:
ff:62:96:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 19:36:33 2025 by rpki-client