Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2144015A733411F0A200EAB4DAE4EC9C.roa
File: 2144015A733411F0A200EAB4DAE4EC9C.roa (raw, json)
Hash identifier: rPEknvrfvnyRvZgMLF0oT3aRFHve6a+hS5zgBcQp4bI=
Subject key identifier: 77:2F:C4:10:FF:B8:3D:11:41:45:94:57:A9:98:1A:F7:10:31:59:F0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01695D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2144015A733411F0A200EAB4DAE4EC9C.roa
Signing time: Thu 07 Aug 2025 02:13:38 +0000
ROA not before: Thu 07 Aug 2025 02:13:30 +0000
ROA not after: Thu 04 Sep 2025 02:13:30 +0000
asID: 396356
IP address blocks: 156.229.119.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92509 (0x1695d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 7 02:13:30 2025 GMT
Not After : Sep 4 02:13:30 2025 GMT
Subject: CN=68940bd2-2233
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:50:00:e3:88:06:bc:05:ca:9a:d3:cf:a4:b8:
26:9c:04:b0:a3:ba:22:93:07:ee:46:2b:1d:6d:8a:
79:8c:54:34:9b:d6:17:bf:6d:52:dc:fa:4b:61:8e:
54:01:26:08:7b:dc:0a:ed:74:63:d0:bb:d8:d7:be:
4c:47:2e:19:3e:5c:4b:5b:00:9f:96:42:1f:17:da:
e9:d4:4f:97:94:ec:90:28:2a:b9:27:02:ca:32:ea:
45:a6:4a:fb:64:60:2d:48:9c:77:70:f2:bb:9b:43:
30:77:0e:9c:e0:34:7b:9b:4b:ac:c2:7c:0d:cd:b5:
cd:90:d0:d5:28:51:d8:1c:df:ab:53:16:4f:c3:e9:
44:38:44:d8:65:de:96:07:4d:c4:d1:de:3e:4d:79:
79:ea:0a:c4:87:9e:ed:71:cc:b4:26:69:24:7c:9b:
5f:71:f8:68:48:af:a5:55:30:c9:fb:ab:36:58:73:
34:35:97:61:14:5c:c7:ca:f2:c0:6f:7b:79:92:55:
f5:a9:10:ea:76:ba:b3:7f:79:8f:d1:2c:86:17:8d:
41:e0:90:3d:f2:5d:ff:97:95:ed:54:46:a9:b4:89:
a4:7f:15:36:2c:24:fd:5a:20:f6:f9:4e:f5:5d:aa:
8c:26:9b:59:ae:39:36:e5:99:55:70:54:0a:83:e9:
ea:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:2F:C4:10:FF:B8:3D:11:41:45:94:57:A9:98:1A:F7:10:31:59:F0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2144015A733411F0A200EAB4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.119.0/24
Signature Algorithm: sha256WithRSAEncryption
14:dd:9f:ba:8a:6d:76:50:58:11:15:4e:53:05:78:47:f7:99:
b3:57:a2:d5:26:4f:eb:01:fa:e0:ef:2f:de:27:1b:b1:42:38:
44:66:9e:ab:fe:54:04:cd:ce:58:95:2c:4a:fc:5c:83:04:c9:
38:5f:78:65:04:88:ae:b2:d3:0b:cf:e7:9a:2d:00:e8:05:e2:
2e:a6:ea:f3:7b:c2:a0:85:c8:22:c6:53:7b:1a:29:f1:11:a8:
40:99:34:74:4a:95:d0:d9:88:aa:87:4c:d5:c8:61:f6:9a:91:
6b:a2:6d:85:bc:8f:18:51:d1:6f:77:51:7d:61:0f:13:63:53:
18:3c:5d:c9:c6:73:07:08:0e:99:42:8d:66:c5:d0:1d:a3:fc:
0d:87:23:3a:de:74:fc:02:1f:53:00:61:70:85:58:5b:11:49:
cf:35:b4:d9:e2:3d:72:54:2e:4c:ea:45:38:53:b9:08:fb:aa:
e6:b6:c8:eb:37:2b:f9:c7:af:b3:df:89:95:77:01:d1:3b:0f:
95:53:2a:ca:c4:a2:79:65:fb:4a:8f:cf:83:01:f4:90:58:62:
c5:5b:3b:40:49:53:35:78:d2:d5:12:33:c4:47:cd:d6:81:e0:
41:70:df:b3:fe:0a:b5:81:42:e7:9b:c3:80:5a:11:98:cd:06:
3f:c3:e4:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 07:25:35 2025 by rpki-client