Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4A7A18C0246511F091EBBDEBDAE4EC9C.roa
File: 4A7A18C0246511F091EBBDEBDAE4EC9C.roa (raw, json)
Hash identifier: W5CelbEx5bmW7o2A6eVwUPJwRT2Udhjt8WWHwEITjnE=
Subject key identifier: 75:AE:3E:5F:44:9E:6B:39:CA:B1:F6:01:3A:4A:F9:4D:04:17:AD:C5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 014FD5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4A7A18C0246511F091EBBDEBDAE4EC9C.roa
Signing time: Mon 28 Apr 2025 19:16:31 +0000
ROA not before: Mon 28 Apr 2025 19:16:27 +0000
ROA not after: Sun 08 Jun 2025 19:16:27 +0000
asID: 44559
IP address blocks: 156.238.24.0/24 maxlen: 24
156.247.20.0/24 maxlen: 24
156.247.21.0/24 maxlen: 24
156.247.22.0/24 maxlen: 24
156.247.23.0/24 maxlen: 24
156.254.96.0/24 maxlen: 24
156.254.97.0/24 maxlen: 24
156.254.98.0/24 maxlen: 24
156.254.99.0/24 maxlen: 24
156.254.102.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 13 May 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85973 (0x14fd5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 28 19:16:27 2025 GMT
Not After : Jun 8 19:16:27 2025 GMT
Subject: CN=680fd40f-8fe3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5d:98:8d:ca:c8:c2:a1:a1:47:61:5e:ea:d4:
e9:80:02:ee:46:48:36:51:e2:88:a0:51:3d:64:c4:
11:0e:6a:75:df:75:8a:83:4f:b6:d4:aa:9a:b5:37:
67:4a:3f:80:f6:03:98:ee:e0:e3:94:b5:98:c8:5e:
3c:44:73:54:a3:6c:c6:6a:da:c8:3e:74:33:af:06:
35:3c:ef:ce:59:ed:45:a7:18:8a:15:e9:b1:bc:b2:
0f:a2:11:32:a3:83:9a:4e:de:59:04:f8:c4:6d:51:
d8:65:9d:a6:2c:f9:68:3a:43:7d:d3:0a:6d:c3:5a:
12:13:fb:47:9c:2d:5f:8d:51:e2:d6:87:a8:6c:f1:
64:ec:9c:0f:6e:9d:46:63:08:9a:bc:29:85:07:a4:
84:23:0b:bf:b1:19:d2:ce:46:8a:bf:e8:96:61:64:
d7:0e:96:b1:9d:bf:6b:3e:51:99:82:6c:b7:b3:89:
d1:77:e6:49:6b:e5:3a:a6:78:fa:a2:b7:1e:2d:48:
c0:9f:cb:30:08:31:90:3c:81:ea:b5:b1:d7:63:04:
74:ce:89:97:cf:bb:8a:a2:f9:bd:d0:3f:e2:eb:25:
97:d6:da:32:48:10:13:a3:7e:bd:c8:e1:4d:58:be:
96:39:57:94:4c:20:2f:0b:20:13:8d:29:c7:09:6f:
ba:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:AE:3E:5F:44:9E:6B:39:CA:B1:F6:01:3A:4A:F9:4D:04:17:AD:C5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4A7A18C0246511F091EBBDEBDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.24.0/24
156.247.20.0/22
156.254.96.0/22
156.254.102.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:d3:0a:4e:a9:95:54:28:9f:5d:a5:55:d6:0c:f2:72:09:41:
6f:18:7d:7c:bd:bb:9c:02:34:09:8a:50:c5:59:b2:e3:f9:ce:
d7:4a:f7:58:20:fc:9d:c0:17:15:f9:9c:01:84:60:2a:48:fb:
b6:e0:f6:22:20:87:dc:b5:82:ef:a4:4b:bb:a5:ae:8c:69:53:
54:7f:90:9a:a2:ac:3d:f9:0d:2d:ad:e9:21:60:da:58:66:cd:
ad:d5:4a:e6:cd:b9:2a:55:e6:3f:ff:60:e7:21:94:80:b6:2e:
0c:e5:d1:88:5d:eb:31:5b:08:c7:e0:2a:3e:b9:c6:26:5a:bf:
76:e1:ee:09:2d:ae:0d:88:39:07:62:91:45:3e:27:00:05:25:
f1:21:fd:17:0c:05:64:a6:f7:f5:96:11:6b:98:1c:7b:bd:f2:
69:43:19:51:3c:91:57:d6:80:ac:c4:bb:e3:d5:41:b2:46:bd:
a6:10:5a:df:1c:2e:7c:67:4c:43:3f:30:98:06:95:76:f7:a7:
88:89:e5:69:aa:41:19:e8:ea:e5:c2:60:1c:be:0c:f8:8e:8a:
a7:34:ab:31:a6:ca:e2:87:4f:65:92:f2:df:1d:ed:e4:46:51:
e5:de:77:45:f3:90:86:8e:94:1b:e8:cb:38:72:5a:56:98:e7:
26:e7:eb:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 18:47:41 2025 by rpki-client