Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/41127FD0260811F0ACA61CE1DAE4EC9C.roa
File: 41127FD0260811F0ACA61CE1DAE4EC9C.roa (raw, json)
Hash identifier: 9/RGUtXUqwT0c3p7x3j5B4n94rp5DYOF/GVetfZwtFY=
Subject key identifier: AC:C6:F5:83:3E:A7:65:BE:6A:C1:7F:29:BF:E1:13:CD:FA:B9:BD:4E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0150E9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/41127FD0260811F0ACA61CE1DAE4EC9C.roa
Signing time: Wed 30 Apr 2025 21:15:34 +0000
ROA not before: Wed 30 Apr 2025 21:15:29 +0000
ROA not after: Wed 26 Apr 2028 21:15:29 +0000
asID: 17561
IP address blocks: 156.246.125.0/24 maxlen: 24
156.246.126.0/24 maxlen: 24
156.246.127.0/24 maxlen: 24
156.248.92.0/24 maxlen: 24
156.248.93.0/24 maxlen: 24
156.248.94.0/24 maxlen: 24
156.248.95.0/24 maxlen: 24
156.248.104.0/24 maxlen: 24
156.248.105.0/24 maxlen: 24
156.248.106.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 12 May 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86249 (0x150e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 30 21:15:29 2025 GMT
Not After : Apr 26 21:15:29 2028 GMT
Subject: CN=681292f6-c0e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:f0:0b:6e:1a:6a:96:ce:f6:f2:d6:2e:83:3a:
ab:68:9a:73:0e:0f:ca:60:31:c3:07:7e:5a:18:f0:
56:bf:b7:2c:84:fd:b2:1a:99:3d:ab:9d:6d:36:8b:
d3:98:cf:e7:7c:95:e2:d2:85:82:5a:e5:5c:c9:64:
f9:b5:90:f5:c8:85:9d:18:16:6d:6f:3b:72:2c:44:
cb:4b:84:63:2d:da:29:9f:06:1f:ea:95:aa:a5:3f:
45:ee:5c:01:a3:58:5a:5d:84:57:cf:ae:e8:2c:78:
a2:8a:f8:7d:ed:fd:ea:bc:2e:83:6f:fc:f9:5e:e5:
f2:40:6a:26:23:d5:e9:a2:96:61:fb:7f:05:00:d8:
0a:cb:43:85:e8:7d:67:a5:8b:55:8e:6a:f5:f7:e1:
0a:a6:e0:7f:c0:3a:fb:bf:1b:88:2b:42:05:48:7e:
e1:ae:3b:9d:6e:e8:d3:78:8e:16:e1:25:5d:94:e2:
11:d4:d0:2a:65:1f:f5:8c:0a:09:10:28:3f:d1:e4:
72:8c:d7:03:ed:90:a5:af:02:94:86:31:6c:61:cb:
a8:47:b2:91:79:fe:b4:80:ce:a5:c2:7d:8b:2e:36:
97:1a:b6:e5:b1:57:4f:e2:53:55:9c:01:a6:f0:28:
45:78:ba:87:22:42:5e:4d:07:4e:c3:3f:f1:3f:22:
e3:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:C6:F5:83:3E:A7:65:BE:6A:C1:7F:29:BF:E1:13:CD:FA:B9:BD:4E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/41127FD0260811F0ACA61CE1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.125.0-156.246.127.255
156.248.92.0/22
156.248.104.0-156.248.106.255
Signature Algorithm: sha256WithRSAEncryption
1a:38:3d:50:2f:7d:89:91:fd:75:12:34:d8:8b:d7:64:cb:ff:
c1:69:14:fb:64:a7:d9:0d:9b:33:3d:e0:91:14:c1:d8:dd:3d:
cc:a2:29:a8:aa:f9:a4:50:25:55:f1:a0:47:51:29:4c:d6:9b:
91:4b:24:8b:46:ee:a7:5a:8f:59:f1:70:ae:36:5c:ea:34:05:
4f:40:ba:0a:fa:7d:87:6e:19:74:79:a1:e0:e5:bf:98:25:32:
68:56:0a:d4:24:55:07:d6:c0:58:66:c3:85:6f:3c:96:8d:6b:
62:70:74:f7:09:7b:68:ce:c9:c2:1f:0a:3e:9a:81:cf:fd:7a:
04:c0:cc:17:80:3b:1b:74:5a:64:e3:ad:33:45:fb:88:f9:4a:
d8:23:56:e0:90:38:3d:11:f3:46:b5:4d:e9:ad:2d:16:ce:1e:
0a:7b:4c:9d:31:72:02:94:c5:24:e9:64:10:76:39:95:f0:a2:
e7:9b:58:30:04:ca:b2:6b:94:a4:6a:e9:4d:04:da:d9:14:8b:
db:fb:0c:54:b7:14:b0:11:a2:6d:e2:b3:81:2f:1f:ed:db:4a:
a7:ef:2f:7f:ba:0c:34:b0:07:d3:f7:be:e4:7b:93:72:12:01:
0a:cc:c0:13:f3:cb:0c:1b:c0:f9:93:69:23:d6:f4:56:cf:0f:
1b:68:75:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 02:12:40 2025 by rpki-client