Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5A32024625E611F08A843083DAE4EC9C.roa
File: 5A32024625E611F08A843083DAE4EC9C.roa (raw, json)
Hash identifier: idNLRqbIuZoqKrp8L0xTqjRroGUAgXeJT9VS7NcBqQ8=
Subject key identifier: A6:0B:99:10:B1:86:AB:E0:B7:19:82:E6:F0:97:49:E4:DC:0F:99:82
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0150A3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5A32024625E611F08A843083DAE4EC9C.roa
Signing time: Wed 30 Apr 2025 17:12:54 +0000
ROA not before: Wed 30 Apr 2025 17:12:48 +0000
ROA not after: Fri 14 Apr 2028 17:12:48 +0000
asID: 17561
IP address blocks: 156.235.229.0/24 maxlen: 24
156.235.230.0/24 maxlen: 24
156.235.231.0/24 maxlen: 24
156.235.232.0/24 maxlen: 24
156.235.233.0/24 maxlen: 24
156.235.234.0/24 maxlen: 24
156.235.235.0/24 maxlen: 24
156.235.236.0/24 maxlen: 24
156.235.237.0/24 maxlen: 24
156.235.238.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 15 May 2025 00:26:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86179 (0x150a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 30 17:12:48 2025 GMT
Not After : Apr 14 17:12:48 2028 GMT
Subject: CN=68125a16-710f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c5:c3:0d:96:fa:fa:fc:22:4d:5c:93:7f:3d:
02:17:fe:ad:ff:15:65:c2:56:fa:ea:42:42:2c:bc:
a6:01:ba:de:6d:da:1d:1c:95:ea:83:9e:01:1b:b8:
e7:df:f3:fd:e1:ad:b8:de:a4:ab:23:5b:ab:c8:78:
2c:88:52:48:f6:92:9c:1f:19:7d:ee:50:cd:bf:9c:
51:e5:6b:b3:03:42:8a:fa:a2:26:15:67:7f:58:ea:
d3:e9:24:39:7d:e1:3e:e6:7d:93:fe:42:32:20:4b:
9a:f0:52:5b:7c:8d:d1:b1:d0:ad:6e:7b:ae:5b:31:
f7:6e:4a:a0:2d:df:33:68:21:58:37:9f:af:ac:f9:
e6:09:19:c9:cf:f3:b1:6c:b2:92:6b:40:b6:1f:76:
0e:d3:5a:a3:aa:6a:65:d4:e0:fe:a7:cf:da:25:f3:
fd:ab:5a:b0:2c:6e:e0:03:98:1a:0b:7f:79:7a:f0:
bb:45:48:21:d4:7a:89:66:db:47:0a:24:04:fc:06:
58:95:f9:99:d7:80:32:ee:22:8a:2b:f2:5b:a9:7c:
4d:ea:e2:6f:b3:b6:fa:6b:a2:57:06:c6:ad:a7:48:
ec:45:37:32:67:63:16:02:82:f2:41:ca:4c:e2:9d:
6f:44:47:a8:cf:3c:a9:03:05:41:55:e5:43:86:6a:
5e:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:0B:99:10:B1:86:AB:E0:B7:19:82:E6:F0:97:49:E4:DC:0F:99:82
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5A32024625E611F08A843083DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.235.229.0-156.235.238.255
Signature Algorithm: sha256WithRSAEncryption
2f:1b:c9:87:98:77:f3:00:50:86:03:a4:26:3e:f5:80:26:80:
a4:cc:bb:8e:ba:55:08:f3:bc:64:c2:8f:ce:81:57:e5:53:f6:
c9:b8:6a:3e:27:6a:56:7a:f2:20:f1:fd:c5:f9:d8:e0:25:49:
b5:b1:7c:ff:13:29:32:fa:6f:48:3c:84:46:5f:31:28:3e:85:
e0:bd:46:d2:93:7d:6d:4e:bc:f0:ef:5c:62:f6:6e:91:19:c7:
48:e2:8c:3b:67:f1:ed:f4:ca:6f:9f:fa:94:aa:7e:01:18:8c:
42:46:41:64:6c:26:0c:e6:3d:90:c2:ea:53:93:24:3b:c3:b6:
5e:99:41:29:45:37:ab:e0:ec:db:d0:ab:5f:46:e0:c7:b4:58:
18:cf:2b:68:60:4c:8e:b0:bc:0b:c7:83:b6:67:7a:a7:6a:da:
80:0e:d8:cd:14:6c:3b:af:f5:de:1e:05:dc:8c:d9:5b:f2:fb:
d5:58:fe:3d:8f:65:dd:24:80:6e:f1:e0:a9:0f:12:6e:f1:94:
ec:dc:10:dc:54:69:ea:16:23:57:46:e5:64:8a:d3:88:64:7a:
76:e5:f3:51:b4:de:c0:23:a6:dc:58:b0:cd:d7:7f:d2:2d:f5:
42:68:08:8a:e4:20:2b:7d:39:8a:90:73:a8:8c:7f:b3:97:71:
20:7c:f4:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 10:45:38 2025 by rpki-client