Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/56C9E838260111F0A54028B3DAE4EC9C.roa
File: 56C9E838260111F0A54028B3DAE4EC9C.roa (raw, json)
Hash identifier: E9DCRAsXu/WN6i7xW02pA2wHqJlKEXuI9JMeUIvA/fI=
Subject key identifier: 03:E6:5F:BD:F7:4F:26:4A:99:B4:DA:A6:8F:74:9F:F6:2F:36:5A:D8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0150DB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/56C9E838260111F0A54028B3DAE4EC9C.roa
Signing time: Wed 30 Apr 2025 20:26:04 +0000
ROA not before: Wed 30 Apr 2025 20:26:00 +0000
ROA not after: Wed 26 Apr 2028 20:26:00 +0000
asID: 17561
IP address blocks: 156.239.22.0/24 maxlen: 24
156.239.23.0/24 maxlen: 24
156.239.128.0/24 maxlen: 24
156.239.129.0/24 maxlen: 24
156.239.130.0/24 maxlen: 24
156.239.131.0/24 maxlen: 24
156.239.132.0/24 maxlen: 24
156.239.133.0/24 maxlen: 24
156.239.134.0/24 maxlen: 24
156.239.135.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 16 May 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86235 (0x150db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 30 20:26:00 2025 GMT
Not After : Apr 26 20:26:00 2028 GMT
Subject: CN=6812875c-8916
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:d4:0c:a2:16:6b:2e:07:0c:2d:d9:da:02:6d:
8c:8b:af:27:04:1e:47:25:e3:31:df:62:5f:ef:d4:
47:e7:51:00:9a:dd:6d:f7:29:2d:7d:48:40:af:30:
38:34:68:4b:86:04:c2:84:e5:f5:b7:6c:7a:0d:50:
9c:3e:90:21:b3:13:47:5f:88:4b:4c:b1:b8:ae:0d:
cc:cf:73:bc:c1:eb:fc:cb:7d:66:cf:d5:64:07:ce:
02:11:6e:83:ae:b4:aa:ae:ff:7c:c9:a7:d8:8f:64:
28:65:a6:cc:cf:8c:0c:39:93:d4:70:0a:47:fc:f5:
f9:94:0f:cc:4f:80:69:66:59:ea:9b:da:ae:19:c4:
51:11:ca:cd:26:9d:8d:7b:01:fa:a3:24:3b:b2:47:
44:84:2d:c8:6a:84:a1:f6:c7:dc:73:b4:75:c6:0c:
79:ee:87:80:7c:cf:a5:fc:88:8b:04:d4:3a:78:b7:
e9:f7:8c:e3:ef:16:4b:4e:6a:09:78:77:76:04:a8:
e2:bb:9a:07:02:b0:12:0e:e6:58:bc:e2:2e:8e:d8:
a1:c5:75:d1:81:4a:a3:fe:cc:1e:36:5b:6c:f5:e3:
d6:2a:ea:5d:4f:70:7a:c8:4f:75:82:1b:17:7d:40:
72:25:8f:0e:2f:fe:d6:16:68:22:9c:df:e7:28:50:
37:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:E6:5F:BD:F7:4F:26:4A:99:B4:DA:A6:8F:74:9F:F6:2F:36:5A:D8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/56C9E838260111F0A54028B3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.239.22.0/23
156.239.128.0/21
Signature Algorithm: sha256WithRSAEncryption
0e:c5:92:17:de:cc:0d:a7:7d:1d:9e:50:91:48:48:68:03:93:
49:c6:9f:e0:19:5b:cf:f3:85:aa:05:02:9e:a5:d0:dd:86:8f:
34:a7:be:e9:b3:df:fd:57:51:fd:fb:d1:16:28:ef:88:2e:8e:
5d:f8:8e:6b:aa:2f:7b:1c:fa:20:49:2e:e1:77:f0:e5:25:b6:
fa:ef:67:c8:d3:2c:9e:d8:a0:55:5b:eb:33:fa:5f:b0:bb:13:
77:86:d1:22:19:cc:fc:90:8d:17:21:72:eb:e9:bd:02:b7:1d:
73:fe:1f:cb:5e:4d:ae:17:3d:4b:02:75:e3:b4:19:eb:4c:55:
71:6f:b6:1e:12:5d:13:98:71:7e:74:84:35:5e:9d:9a:93:f4:
d6:eb:dd:9f:3a:c6:6a:4a:a0:ab:6d:88:d8:79:d7:10:bb:eb:
ff:62:37:e1:6f:59:8f:e0:a5:96:07:e5:e8:83:44:80:69:b2:
65:be:49:1a:78:c6:7a:5b:db:35:26:54:fa:87:17:98:30:2c:
74:e6:7b:f0:bc:0c:e2:1d:b9:e4:ee:10:8b:37:18:2d:36:dc:
da:c2:1b:1b:dd:78:12:44:be:fb:64:90:f8:84:94:62:b4:83:
aa:7c:e2:00:d4:0b:32:e6:db:2e:2b:27:11:bc:35:82:49:a9:
06:91:3d:40
-----BEGIN CERTIFICATE-----
MIIFhzCCBG+gAwIBAgIDAVDbMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNDMwMjAyNjAwWhcNMjgwNDI2MjAyNjAwWjAYMRYw
FAYDVQQDEw02ODEyODc1Yy04OTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA+NQMohZrLgcMLdnaAm2Mi68nBB5HJeMx32Jf79RH51EAmt1t9yktfUhA
rzA4NGhLhgTChOX1t2x6DVCcPpAhsxNHX4hLTLG4rg3Mz3O8wev8y31mz9VkB84C
EW6DrrSqrv98yafYj2QoZabMz4wMOZPUcApH/PX5lA/MT4BpZlnqm9quGcRREcrN
Jp2NewH6oyQ7skdEhC3IaoSh9sfcc7R1xgx57oeAfM+l/IiLBNQ6eLfp94zj7xZL
TmoJeHd2BKjiu5oHArASDuZYvOIujtihxXXRgUqj/sweNlts9ePWKupdT3B6yE91
ghsXfUByJY8OL/7WFmginN/nKFA3kQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAPm
X733TyZKmbTapo90n/YvNlrYMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC81NkM5RTgzODI2MDExMUYwQTU0MDI4QjNEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBnO8WAwQDnO+AMA0GCSqGSIb3
DQEBCwUAA4IBAQAOxZIX3swNp30dnlCRSEhoA5NJxp/gGVvP84WqBQKepdDdho80
p77ps9/9V1H9+9EWKO+ILo5d+I5rqi97HPogSS7hd/DlJbb672fI0yye2KBVW+sz
+l+wuxN3htEiGcz8kI0XIXLr6b0Ctx1z/h/LXk2uFz1LAnXjtBnrTFVxb7YeEl0T
mHF+dIQ1Xp2ak/TW692fOsZqSqCrbYjYedcQu+v/Yjfhb1mP4KWWB+Xog0SAabJl
vkkaeMZ6W9s1JlT6hxeYMCx05nvwvAziHbnk7hCLNxgtNtzawhsb3XgSRL77ZJD4
hJRitIOqfOIA1Asy5tsuKycRvDWCSakGkT1A
-----END CERTIFICATE-----
Generated at Wed May 14 16:37:20 2025 by rpki-client