Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7262C8A2451011F0913B90E9DAE4EC9C.roa
File: 7262C8A2451011F0913B90E9DAE4EC9C.roa (raw, json)
Hash identifier: UA4PIy5Ld4qepmqRKAYi2TLCbRGfpREf36Hv26oKlOI=
Subject key identifier: CD:43:A3:9E:F4:87:1E:5B:89:00:F0:AA:EF:3A:81:A0:A3:A1:69:60
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015A81
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7262C8A2451011F0913B90E9DAE4EC9C.roa
Signing time: Mon 09 Jun 2025 09:02:19 +0000
ROA not before: Mon 09 Jun 2025 09:02:14 +0000
ROA not after: Wed 16 Jul 2025 09:02:14 +0000
asID: 395793
IP address blocks: 156.228.15.0/24 maxlen: 24
156.236.14.0/23 maxlen: 24
156.243.223.0/24 maxlen: 24
156.243.230.0/24 maxlen: 24
156.243.245.0/24 maxlen: 24
156.243.250.0/24 maxlen: 24
156.243.251.0/24 maxlen: 24
156.243.252.0/24 maxlen: 24
156.243.253.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 03 Jul 2025 06:28:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88705 (0x15a81)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 9 09:02:14 2025 GMT
Not After : Jul 16 09:02:14 2025 GMT
Subject: CN=6846a31b-d0a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:d7:20:5d:69:a6:76:0f:d2:0d:ba:1b:39:dd:
4b:53:fc:02:3b:4c:ab:b8:48:f9:15:79:60:1d:94:
57:05:f0:40:4d:ba:a7:92:e0:20:4e:52:eb:7a:e8:
e8:9e:51:98:d5:ec:73:ee:5e:87:5f:f0:d7:5f:69:
88:89:53:3d:10:76:c6:5c:92:81:f3:b1:18:6b:da:
ee:71:d6:17:67:e3:cb:73:af:45:45:51:8d:48:d5:
88:35:53:16:b7:6a:20:34:d6:0e:48:58:8d:03:d5:
c3:c1:6b:43:66:a7:de:f4:2a:d3:e1:5b:32:7a:ae:
65:d4:6f:4a:45:5d:c3:5e:77:ee:e6:b7:2d:f5:4e:
3b:cb:ec:6c:f6:0b:82:96:27:21:ca:a6:58:e0:15:
d5:ee:e4:3d:01:f0:9f:77:c4:4b:4a:65:f7:f1:a7:
6e:8e:24:77:d4:e3:dc:cd:4c:0a:84:dd:98:f8:b1:
5b:9b:f1:1b:8a:d5:69:8d:91:0b:ed:fb:69:68:45:
ae:6a:6b:90:b2:37:6d:d6:fd:0d:bc:96:ea:4b:72:
84:4b:4b:e7:bb:9e:32:04:13:8b:62:65:e9:b9:83:
cd:83:c2:2f:75:b9:76:25:68:b5:6e:af:fe:b0:3e:
37:6b:04:d9:d3:88:ea:11:93:6f:62:32:48:1a:5f:
0d:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:43:A3:9E:F4:87:1E:5B:89:00:F0:AA:EF:3A:81:A0:A3:A1:69:60
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7262C8A2451011F0913B90E9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.228.15.0/24
156.236.14.0/23
156.243.223.0/24
156.243.230.0/24
156.243.245.0/24
156.243.250.0-156.243.253.255
Signature Algorithm: sha256WithRSAEncryption
94:b6:8e:81:d6:e7:81:4e:88:db:1b:bc:d8:df:c7:88:81:40:
76:4d:91:6f:34:4c:f1:7f:b5:e0:23:56:f2:8d:b2:13:dc:1b:
00:21:10:03:40:2c:8e:9b:7c:7d:2c:ed:35:15:76:9d:d6:df:
4e:aa:c1:78:bd:6d:37:f3:52:05:82:9e:4e:a8:80:73:87:71:
76:4a:19:6d:56:0e:29:8a:98:75:84:0e:e2:29:a8:c6:89:51:
5d:b4:20:e0:31:f7:6f:e0:66:ac:7d:20:03:a0:22:e7:a6:b5:
ee:8c:96:b4:b8:56:72:79:8d:b5:27:47:1a:62:c1:76:f7:c1:
97:8f:78:a3:f2:73:5d:8a:84:df:d0:df:fc:5c:53:15:4a:58:
2b:8c:b5:77:16:4f:88:d2:f9:d2:e8:cc:04:84:48:60:1e:0f:
38:16:f5:5d:18:6f:25:a8:d1:14:16:6f:92:39:3e:3a:f9:ee:
2f:ce:23:79:60:d9:95:c0:34:ed:c2:9d:b1:12:9b:18:b0:fa:
c9:36:8e:96:52:be:5f:87:40:45:e2:d1:9b:2f:ad:99:d4:70:
b4:53:c0:92:90:fc:33:a4:1f:e2:4a:f6:20:75:65:c6:55:05:
90:4c:80:80:3f:29:89:8a:f3:52:f7:51:5b:4a:b3:d4:42:9d:
0f:5b:12:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 17:09:36 2025 by rpki-client