Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6ACA8A24491311F0A14AAF8FDAE4EC9C.roa
File: 6ACA8A24491311F0A14AAF8FDAE4EC9C.roa (raw, json)
Hash identifier: guJO0qEW1MeXsW+Js2i1YAU5Q/MUaUSkA1jpY6Ag9fs=
Subject key identifier: 6D:09:B7:21:18:4F:16:36:7D:AC:8A:AB:CE:25:53:93:BA:15:1E:E3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015C2B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6ACA8A24491311F0A14AAF8FDAE4EC9C.roa
Signing time: Sat 14 Jun 2025 11:33:40 +0000
ROA not before: Sat 14 Jun 2025 11:33:35 +0000
ROA not after: Fri 04 Jul 2025 11:33:35 +0000
asID: 398993
IP address blocks: 156.236.192.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Jul 2025 11:33:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89131 (0x15c2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 14 11:33:35 2025 GMT
Not After : Jul 4 11:33:35 2025 GMT
Subject: CN=684d5e14-68a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:3b:b3:19:d4:6e:b7:e3:8a:f9:9c:77:2b:bc:
01:41:69:59:ff:e9:6c:4a:8e:48:40:e7:d1:25:25:
c1:4a:a1:a5:9e:2e:64:6a:5c:26:c0:82:b7:e8:06:
79:4c:cb:c7:ac:99:6e:2e:c7:4c:b0:ca:50:6a:33:
aa:31:11:cb:74:bd:38:bb:2f:3b:2d:9f:9e:65:23:
e6:4a:73:98:5a:66:4a:4b:67:eb:ed:3f:59:2f:36:
d3:ae:aa:fc:ae:1d:71:d9:9a:a8:64:59:88:4a:a6:
40:0b:05:ce:d2:1d:a8:0d:0c:78:ba:1b:da:f5:34:
54:a2:1c:a4:ae:e1:5b:60:1c:2e:47:34:5d:14:42:
d3:a9:92:6e:49:17:6b:f1:74:56:34:f0:5e:13:dc:
fe:9e:a3:15:32:8d:97:26:9a:d7:b1:78:ed:45:54:
40:9a:8f:0b:e9:ec:da:bb:0d:c8:08:5f:76:81:e6:
01:8e:c1:4b:ee:e0:c0:4f:bf:83:a3:b4:af:59:1c:
2f:8b:6b:d1:ab:ac:ee:9d:f6:77:fa:11:e1:fe:7b:
4c:49:8e:a3:26:97:44:31:52:f3:4f:f3:60:90:7c:
04:b8:90:22:e0:dd:9b:0b:b3:f5:cb:a6:35:3b:59:
a2:51:da:88:9d:b6:31:a4:12:19:9a:5b:10:f3:b9:
72:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:09:B7:21:18:4F:16:36:7D:AC:8A:AB:CE:25:53:93:BA:15:1E:E3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6ACA8A24491311F0A14AAF8FDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.192.0/18
Signature Algorithm: sha256WithRSAEncryption
35:f7:31:a0:83:4a:19:14:dd:91:db:c9:46:8e:2a:fa:ea:a4:
3a:29:9a:58:26:2b:c2:c7:85:01:d9:c4:81:2f:0a:e3:18:48:
65:74:58:e2:a8:d9:6c:c8:9f:2d:56:2f:a8:e9:87:3e:fe:9f:
5d:93:9f:e0:7c:3d:5b:d0:8f:8a:da:4b:64:da:a2:07:59:dd:
db:6c:bf:bb:0a:dd:0f:17:7a:2f:1e:e0:5f:9d:5c:16:86:a2:
95:18:23:f5:9b:a7:5c:2d:e4:74:41:91:cc:0c:26:17:fc:a0:
6a:d5:d1:a2:87:69:b5:22:2d:23:f5:07:c4:e8:03:7c:cb:bd:
bb:40:ff:e7:fe:96:74:66:3b:f4:78:b6:5b:c0:54:58:45:0f:
ec:83:ad:c8:34:41:00:09:bf:38:71:e7:a6:13:8a:c7:21:e5:
cc:91:bf:45:58:ab:47:bb:a1:f4:c8:d9:1e:59:1f:7f:ea:c8:
65:bd:ed:74:11:f1:1c:2c:c8:d2:4f:20:e0:07:c5:6a:b0:39:
e0:19:0b:49:0d:e0:08:4e:51:66:82:5a:5e:36:7b:f8:ec:37:
71:66:be:bf:8b:6a:b0:6e:46:04:2f:15:b5:c4:61:30:87:9d:
88:2e:97:d9:2f:57:40:04:c4:a1:b1:6d:a8:6a:2e:b4:64:c6:
ea:6e:2e:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 13:36:59 2025 by rpki-client