Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/21118266781611F09EC75397DAE4EC9C.roa
File: 21118266781611F09EC75397DAE4EC9C.roa (raw, json)
Hash identifier: 1QnXlRTwVmIeN2dt8W5PAlAbYoA2MCEi5NWxXc5d0ic=
Subject key identifier: 28:8A:70:85:ED:C8:C5:94:36:04:08:49:19:14:C3:59:1E:A8:EB:DB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016A95
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/21118266781611F09EC75397DAE4EC9C.roa
Signing time: Wed 13 Aug 2025 07:21:29 +0000
ROA not before: Wed 13 Aug 2025 07:21:24 +0000
ROA not after: Sat 04 Oct 2025 07:21:24 +0000
asID: 203020
IP address blocks: 156.228.6.0/24 maxlen: 24
156.228.12.0/24 maxlen: 24
156.228.19.0/24 maxlen: 24
156.228.25.0/24 maxlen: 24
156.228.251.0/24 maxlen: 24
156.233.180.0/22 maxlen: 24
156.233.184.0/21 maxlen: 24
156.233.192.0/24 maxlen: 24
156.243.159.0/24 maxlen: 24
156.243.160.0/20 maxlen: 24
156.243.176.0/21 maxlen: 24
156.243.184.0/22 maxlen: 24
156.243.188.0/23 maxlen: 24
156.243.190.0/24 maxlen: 24
156.243.235.0/24 maxlen: 24
156.251.96.0/20 maxlen: 24
156.251.112.0/21 maxlen: 24
156.253.212.0/23 maxlen: 24
156.253.214.0/23 maxlen: 24
156.253.216.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92821 (0x16a95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 13 07:21:24 2025 GMT
Not After : Oct 4 07:21:24 2025 GMT
Subject: CN=689c3cf9-03f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:fa:67:0f:70:3a:d0:75:e4:d2:4d:7f:38:5b:
55:9e:56:3c:89:1b:60:a1:47:82:ca:f1:17:03:e3:
9c:76:a2:7a:a7:e9:52:d3:b0:6a:b2:04:08:d5:00:
30:f0:32:db:61:9e:51:67:6a:ba:29:38:35:44:4f:
60:ee:3d:54:c7:0d:49:fe:0c:a8:d1:9d:41:e6:75:
99:14:22:bb:0b:2d:99:c4:46:3c:ad:20:07:64:16:
7c:9b:74:14:6d:f2:91:ca:96:4d:c8:0a:34:c6:77:
aa:42:b0:d9:a7:27:e4:ce:a5:ba:0c:d3:2f:98:38:
d9:75:7c:e3:9c:e6:0c:ff:21:41:dd:b4:db:b1:2b:
ec:f6:39:21:8f:a4:39:46:97:34:17:00:4b:8e:b6:
40:73:cc:8d:f0:a6:08:bd:f0:3f:38:9b:3b:79:b7:
6a:f2:f6:92:4d:c9:5d:5d:54:59:60:53:76:d0:a4:
7e:c4:81:18:59:7f:43:94:76:15:b9:00:e9:a8:b2:
cd:7d:36:23:35:c9:8e:e2:6f:3f:25:dd:48:44:cf:
45:6f:00:2d:fd:60:4f:43:7d:73:47:c8:dc:1e:86:
7b:a1:32:b7:d3:0d:4d:25:0d:54:79:37:b0:39:f2:
b5:f0:c5:18:b5:e2:61:4e:9f:d2:4c:e5:08:e1:8a:
09:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:8A:70:85:ED:C8:C5:94:36:04:08:49:19:14:C3:59:1E:A8:EB:DB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/21118266781611F09EC75397DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.228.6.0/24
156.228.12.0/24
156.228.19.0/24
156.228.25.0/24
156.228.251.0/24
156.233.180.0-156.233.192.255
156.243.159.0-156.243.190.255
156.243.235.0/24
156.251.96.0-156.251.119.255
156.253.212.0-156.253.217.255
Signature Algorithm: sha256WithRSAEncryption
af:d6:49:91:04:f0:4f:38:84:af:71:98:1b:da:a2:17:b1:7f:
bf:1f:b6:f2:d1:bd:60:e8:f2:22:18:51:65:9b:8d:77:05:f5:
ed:ca:d9:ad:a0:63:51:93:e4:ba:97:82:cc:c7:d4:d5:22:95:
f4:2b:03:6a:64:84:7d:b6:a4:42:e1:16:a5:f0:65:65:6b:81:
bb:47:a1:35:a0:de:43:4f:a9:63:1c:c4:8a:51:72:42:d4:ba:
98:b2:6a:81:75:ac:91:1f:76:33:bc:d8:6c:0a:46:e5:46:cb:
e2:85:2e:1c:26:1e:3c:22:26:e4:d1:e8:d3:dd:4d:4c:ae:2b:
61:04:11:b6:2b:e5:87:fe:23:c6:94:bb:f7:e0:d5:e7:f5:bf:
fb:02:ef:ce:64:8b:d0:da:88:15:8c:ca:1d:f7:05:f5:37:f8:
5f:b7:1c:8e:5c:7d:9a:b8:64:b3:83:28:2d:31:c0:9e:28:63:
f0:0c:98:89:50:fc:59:00:d6:be:0e:b1:e6:0c:ea:64:7a:bf:
65:57:89:16:c8:36:6b:39:1a:5b:38:80:4d:95:9b:8c:3d:86:
3e:fb:d1:1f:21:87:1a:4c:25:7a:ba:9f:ba:0c:71:8e:19:61:
e3:96:c0:02:f7:9b:b2:6c:fb:8f:4a:ca:84:60:f9:f4:1c:02:
00:f3:11:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:10:31 2025 by rpki-client