Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5126E90E25E711F0AA87F787DAE4EC9C.roa
File: 5126E90E25E711F0AA87F787DAE4EC9C.roa (raw, json)
Hash identifier: Yc1zyhlNs40OAPSUfWt/0wm8pV7wzn/GZQvBl0OPzBw=
Subject key identifier: 06:AD:13:AB:48:64:3B:7F:49:4F:30:A0:9C:D7:F9:49:58:38:36:42
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0150A5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5126E90E25E711F0AA87F787DAE4EC9C.roa
Signing time: Wed 30 Apr 2025 17:19:48 +0000
ROA not before: Wed 30 Apr 2025 17:19:43 +0000
ROA not after: Fri 14 Apr 2028 17:19:43 +0000
asID: 17561
IP address blocks: 156.235.239.0/24 maxlen: 24
156.235.240.0/24 maxlen: 24
156.235.241.0/24 maxlen: 24
156.235.242.0/24 maxlen: 24
156.235.243.0/24 maxlen: 24
156.235.244.0/24 maxlen: 24
156.235.245.0/24 maxlen: 24
156.235.246.0/24 maxlen: 24
156.235.247.0/24 maxlen: 24
156.235.248.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 14 May 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86181 (0x150a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 30 17:19:43 2025 GMT
Not After : Apr 14 17:19:43 2028 GMT
Subject: CN=68125bb4-ea8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:93:1d:7e:19:a3:fa:5c:f2:e3:c2:73:71:f6:
2c:ec:32:e9:dd:df:7b:3e:1e:b4:be:76:a7:fc:9e:
34:50:19:ef:e8:00:53:e6:6a:44:1d:ee:23:9a:34:
6b:11:75:76:0c:5f:2a:02:8e:7d:d7:75:e5:12:1f:
08:60:13:da:8e:42:13:69:41:a5:32:56:f0:38:5c:
a8:09:03:48:54:a0:4f:f7:f5:5f:30:13:36:b7:bf:
aa:86:3c:45:66:1b:db:09:4e:f7:e8:e5:10:0f:d1:
49:b6:d9:27:e3:72:a6:a2:93:d7:fa:f3:58:b6:f3:
07:dc:03:47:9e:8c:7b:41:ab:a2:19:b9:61:e9:58:
80:6f:10:14:50:fd:d7:4d:23:0f:a0:01:98:15:99:
fa:f4:70:d3:5c:a1:8a:da:41:4f:79:6f:d2:74:15:
62:9b:c2:97:68:a6:8c:d2:12:b0:66:f6:96:3b:ef:
33:9e:7b:82:64:b1:5f:84:42:c6:4e:e6:ba:9a:be:
bd:aa:20:90:f5:75:dd:04:bd:64:d6:bf:56:2b:64:
0f:dd:e5:c8:cc:c4:f6:68:a3:c7:19:56:2e:2f:09:
41:64:df:8b:f9:d7:ae:b9:77:67:11:83:f9:6a:da:
1e:44:e9:69:37:2f:3a:91:9f:33:cd:3f:2d:c2:28:
3f:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:AD:13:AB:48:64:3B:7F:49:4F:30:A0:9C:D7:F9:49:58:38:36:42
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5126E90E25E711F0AA87F787DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.235.239.0-156.235.248.255
Signature Algorithm: sha256WithRSAEncryption
b1:9b:e0:7e:fe:cb:c8:1e:e1:d7:9f:84:38:f0:a5:c7:15:35:
05:c8:c6:a1:87:95:07:ea:7f:80:11:ca:e2:fd:2c:29:8f:8d:
b0:22:f9:c5:76:52:26:53:6b:c5:85:58:fd:2d:65:76:1f:63:
fd:3d:12:d2:39:0a:33:09:64:1c:0b:b5:c9:4e:84:7b:67:f3:
3b:e4:67:57:0a:4f:b6:38:6b:54:a0:21:35:d4:95:4f:a6:df:
9a:e5:50:d6:fa:70:27:b7:5c:f6:57:2e:d1:ac:c7:56:92:7b:
fc:ed:ab:10:a2:56:b0:79:d8:fb:44:c6:51:a2:ec:7c:31:bd:
f3:a5:69:67:69:f9:f7:89:ad:ea:7b:3f:c7:d5:50:80:e3:37:
fb:0b:3c:1b:eb:cd:82:e3:75:83:0b:86:8e:93:28:20:fb:d7:
19:99:d7:cc:37:16:3f:9e:2a:17:bf:97:07:b8:5e:5b:ec:85:
cb:7f:ca:c4:a5:2a:8c:a7:ae:2a:e9:98:99:1c:6c:9d:0c:12:
af:66:39:9d:64:3f:60:60:51:56:ba:b2:17:9f:6e:19:16:e4:
61:2f:52:cd:f5:dd:18:55:9a:62:2b:e7:7c:19:9a:77:39:59:
d4:29:4a:83:cb:a2:11:d0:69:59:b5:1d:5c:dc:c1:52:8a:ea:
dd:ef:6e:5a
-----BEGIN CERTIFICATE-----
MIIFiTCCBHGgAwIBAgIDAVClMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNDMwMTcxOTQzWhcNMjgwNDE0MTcxOTQzWjAYMRYw
FAYDVQQDEw02ODEyNWJiNC1lYThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAqpMdfhmj+lzy48JzcfYs7DLp3d97Ph60vnan/J40UBnv6ABT5mpEHe4j
mjRrEXV2DF8qAo5913XlEh8IYBPajkITaUGlMlbwOFyoCQNIVKBP9/VfMBM2t7+q
hjxFZhvbCU736OUQD9FJttkn43KmopPX+vNYtvMH3ANHnox7QauiGblh6ViAbxAU
UP3XTSMPoAGYFZn69HDTXKGK2kFPeW/SdBVim8KXaKaM0hKwZvaWO+8znnuCZLFf
hELGTua6mr69qiCQ9XXdBL1k1r9WK2QP3eXIzMT2aKPHGVYuLwlBZN+L+deuuXdn
EYP5atoeROlpNy86kZ8zzT8twig/aQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFAat
E6tIZDt/SU8woJzX+UlYODZCMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC81MTI2RTkwRTI1RTcxMUYwQUE4N0Y3ODdEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBACc6+8DBACc6/gwDQYJKoZI
hvcNAQELBQADggEBALGb4H7+y8ge4defhDjwpccVNQXIxqGHlQfqf4ARyuL9LCmP
jbAi+cV2UiZTa8WFWP0tZXYfY/09EtI5CjMJZBwLtclOhHtn8zvkZ1cKT7Y4a1Sg
ITXUlU+m35rlUNb6cCe3XPZXLtGsx1aSe/ztqxCiVrB52PtExlGi7HwxvfOlaWdp
+feJrep7P8fVUIDjN/sLPBvrzYLjdYMLho6TKCD71xmZ18w3Fj+eKhe/lwe4Xlvs
hct/ysSlKoynrirpmJkcbJ0MEq9mOZ1kP2BgUVa6shefbhkW5GEvUs313RhVmmIr
53wZmnc5WdQpSoPLohHQaVm1HVzcwVKK6t3vblo=
-----END CERTIFICATE-----
Generated at Mon May 12 07:18:16 2025 by rpki-client