Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/114470FA49D611F08AEE6E84DAE4EC9C.roa
File: 114470FA49D611F08AEE6E84DAE4EC9C.roa (raw, json)
Hash identifier: 6fs5q1Tznzu2/FDtb6mF+7/qzhvyYSF9ykvkcn/kb4I=
Subject key identifier: 41:C0:CD:CC:B6:96:AF:3C:08:E4:3D:AA:79:6A:21:FA:7B:9E:45:80
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015C50
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/114470FA49D611F08AEE6E84DAE4EC9C.roa
Signing time: Sun 15 Jun 2025 10:47:01 +0000
ROA not before: Sun 15 Jun 2025 10:46:57 +0000
ROA not after: Mon 21 Jul 2025 10:46:57 +0000
asID: 203020
IP address blocks: 156.248.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 03 Jul 2025 06:28:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89168 (0x15c50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 15 10:46:57 2025 GMT
Not After : Jul 21 10:46:57 2025 GMT
Subject: CN=684ea4a5-37b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:83:1a:e2:e7:f1:01:58:e1:86:c0:4b:7d:61:
48:74:21:a0:00:36:4b:15:b1:53:c4:59:b7:ac:d4:
ac:86:9a:58:1c:00:ea:35:67:76:d2:9f:96:0a:68:
47:6d:c3:83:03:5d:25:28:20:12:ec:a1:1b:3b:7c:
ef:a1:61:66:e9:64:ad:f1:05:ab:ce:59:86:15:dd:
90:a0:ae:22:dc:0e:8a:11:d7:7a:e8:d3:ff:4f:99:
cc:a8:fb:35:ea:23:aa:1b:63:f7:cf:c9:d7:0f:2b:
06:bf:ab:e2:89:cb:e5:c0:5c:b0:ca:94:fd:a5:64:
92:d8:58:65:35:d0:9b:d2:8f:c8:cb:13:d4:c9:46:
d6:29:6a:27:3b:a6:a2:71:d0:a7:2f:42:0f:f5:f4:
38:ed:e9:26:89:66:aa:20:20:a3:e2:1e:9a:7e:e6:
1d:0b:3b:1b:a1:32:35:b7:9d:d8:4d:2d:d5:ed:bd:
ce:d1:fa:27:83:64:41:7d:75:2d:63:32:68:ce:3e:
d7:27:53:83:7c:f4:a8:e0:56:92:d0:95:ea:84:8d:
b9:39:35:84:24:73:ee:07:4e:cf:e4:eb:ee:9d:3e:
cb:84:de:da:d6:1b:be:8e:55:8a:60:ea:68:4f:2e:
22:38:df:69:cd:75:06:b0:38:b4:d9:64:21:95:db:
75:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:C0:CD:CC:B6:96:AF:3C:08:E4:3D:AA:79:6A:21:FA:7B:9E:45:80
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/114470FA49D611F08AEE6E84DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.248.32.0/19
Signature Algorithm: sha256WithRSAEncryption
7f:70:ff:fb:13:3b:8e:a3:84:94:37:57:fd:15:7a:00:8a:ce:
d6:88:87:fc:92:9b:3d:b3:26:42:81:76:be:37:3e:df:a6:e1:
12:65:d1:65:9b:2a:b1:e9:55:9f:97:ab:24:34:d8:8e:ef:97:
dd:33:d2:a3:89:65:85:54:22:72:1c:88:5d:89:7c:54:11:ff:
5c:9a:95:34:82:8c:a3:98:7d:e9:03:64:32:0e:e2:86:3a:32:
11:94:f1:0d:a7:0d:a8:a6:3f:01:67:08:b4:96:a5:bc:22:f1:
dd:b0:35:2d:74:ab:21:93:4b:9a:ca:45:28:e9:c1:33:d3:b6:
59:36:b0:9e:82:87:19:50:22:b3:23:1f:00:1e:14:c0:34:e8:
e4:ee:b3:94:16:e7:a4:01:df:49:e9:87:9f:ed:ee:13:46:c7:
0f:fb:db:3b:6a:58:3e:45:12:31:d8:88:22:e4:20:8f:c7:53:
b7:1a:ec:58:27:98:a2:80:6e:11:17:b8:ef:6e:0d:f6:f3:e8:
93:49:9b:21:e0:99:eb:87:96:c5:d2:b5:71:b2:59:4b:53:2f:
b2:b6:c5:3b:42:6b:e0:6b:12:39:c3:c8:56:bb:0f:bb:33:35:
97:9f:9e:f5:05:31:99:b6:cd:06:17:fd:90:fa:a6:8b:a6:a2:
61:d6:0b:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 21:59:49 2025 by rpki-client