Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/55FD519250DB11F0B5E1B2BADAE4EC9C.roa
File: 55FD519250DB11F0B5E1B2BADAE4EC9C.roa (raw, json)
Hash identifier: K64jhGT2KOYigDrHU+Xj7f2fIM12DalftOSJIymcxEU=
Subject key identifier: EC:07:74:86:76:6E:13:90:F9:77:68:B8:22:DD:2A:46:4A:7E:68:25
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015E4C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/55FD519250DB11F0B5E1B2BADAE4EC9C.roa
Signing time: Tue 24 Jun 2025 09:12:22 +0000
ROA not before: Tue 24 Jun 2025 09:12:17 +0000
ROA not after: Sat 26 Jul 2025 09:12:17 +0000
asID: 63139
IP address blocks: 156.225.123.0/24 maxlen: 24
156.225.124.0/24 maxlen: 24
156.225.125.0/24 maxlen: 24
156.225.126.0/24 maxlen: 24
156.225.127.0/24 maxlen: 24
156.227.9.0/24 maxlen: 24
156.227.15.0/24 maxlen: 24
156.229.46.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 02 Jul 2025 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89676 (0x15e4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 24 09:12:17 2025 GMT
Not After : Jul 26 09:12:17 2025 GMT
Subject: CN=685a6bf6-7eb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:fc:ba:6f:a3:e0:fd:5a:05:db:4a:bf:5e:f7:
35:0e:dc:f7:f7:56:52:65:d8:bd:2b:a3:0b:d9:38:
56:34:eb:ef:90:02:91:1b:b0:5a:f0:db:c6:cb:6f:
56:6f:78:2c:cb:55:72:51:b7:2b:28:d6:3b:6d:a4:
6a:89:03:fc:30:b5:90:87:64:56:a0:a2:e5:dd:7a:
c9:35:cb:39:89:5e:ef:97:c0:4a:82:25:bc:3f:30:
fb:99:ca:4a:1d:c0:6d:1d:40:c8:4f:0e:a3:24:e1:
99:47:ec:8b:6a:78:cd:aa:7f:5a:22:31:89:05:c4:
6b:e4:67:5f:ea:dd:d8:45:6a:5a:dc:cd:74:1f:50:
ca:3f:fb:7e:fc:f6:f6:81:a6:3a:ae:30:f5:29:b7:
c2:72:a0:79:4c:93:a6:38:f1:29:3b:cc:a3:fa:7b:
54:49:a3:a7:f8:4f:d4:7b:33:be:37:51:81:7d:d7:
79:6a:6b:4e:8f:a3:5d:df:4f:e0:d1:cf:f8:60:1f:
75:7c:c6:ad:b4:9a:cf:ca:9d:d0:a0:a0:7e:43:bf:
f8:6b:b0:4f:d2:04:99:92:02:e0:30:14:1d:c9:98:
5f:1d:a4:43:e4:ab:f5:a3:a0:5d:e4:42:bd:f2:7d:
95:16:82:d9:aa:d1:1f:e2:ad:9a:f7:3d:14:ce:9e:
7d:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:07:74:86:76:6E:13:90:F9:77:68:B8:22:DD:2A:46:4A:7E:68:25
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/55FD519250DB11F0B5E1B2BADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.123.0-156.225.127.255
156.227.9.0/24
156.227.15.0/24
156.229.46.0/24
Signature Algorithm: sha256WithRSAEncryption
02:0c:6b:dc:1e:21:b7:f5:bb:e2:e6:ed:09:0b:8e:2c:4d:49:
01:c9:d5:55:3b:f4:cf:bc:5d:6d:98:ca:ed:fa:48:b2:96:a9:
88:d1:50:98:66:e8:03:ae:22:23:c9:b6:2b:89:00:6b:fb:df:
f2:0f:77:e8:99:72:88:20:85:5c:f1:80:85:bd:83:7c:a1:af:
60:90:42:a3:14:81:a1:f8:48:50:30:98:ee:8b:ea:a3:e6:1a:
19:66:2f:b2:dc:77:8f:62:21:6c:93:3c:ba:d3:03:6f:13:43:
d3:6c:e2:76:6b:b1:92:ba:05:79:52:da:04:cd:d5:9f:09:9a:
5f:3b:de:61:6a:e1:7f:de:74:40:88:00:f6:09:99:bb:1a:6e:
a1:11:20:8b:0d:d9:cc:f8:4b:1d:16:a6:e4:38:c2:39:f9:46:
47:77:1f:b4:36:96:3c:f0:70:2c:b3:fd:51:da:3a:d0:a9:23:
96:fb:39:dc:55:d6:a3:44:28:d8:70:2f:91:f4:e3:11:ba:aa:
17:72:89:e9:4a:f3:55:85:a7:bf:cd:49:bb:53:85:5e:ed:c8:
f0:5a:a5:ef:77:ed:e5:25:5b:63:10:e1:c8:43:0b:55:cc:f1:
1a:c7:32:94:3d:0d:d4:f1:4d:8a:f5:c2:f7:65:21:c8:17:b6:
ad:c6:54:2a
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Jun 30 13:19:10 2025 by rpki-client