Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/76A375CE2CBA11F0B7246EB9DAE4EC9C.roa
File: 76A375CE2CBA11F0B7246EB9DAE4EC9C.roa (raw, json)
Hash identifier: gBsiWubEPDAqXDQs6G7GW/RbB4+eEgryh9Dm/vcKJPU=
Subject key identifier: 6D:B5:C9:38:4A:BE:43:01:9C:AD:A9:BB:C8:71:68:D7:62:67:4F:D5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015307
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/76A375CE2CBA11F0B7246EB9DAE4EC9C.roa
Signing time: Fri 09 May 2025 09:46:22 +0000
ROA not before: Fri 09 May 2025 09:46:17 +0000
ROA not after: Sun 08 Jun 2025 09:46:17 +0000
asID: 138985
IP address blocks: 156.238.81.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 14 May 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86791 (0x15307)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 9 09:46:17 2025 GMT
Not After : Jun 8 09:46:17 2025 GMT
Subject: CN=681dceee-9dd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:20:35:0d:e7:b9:65:8e:59:0c:75:82:49:7d:
5a:1f:95:da:7e:22:cc:4e:f1:7c:b9:60:b9:0a:25:
49:e6:17:d1:f8:39:15:23:70:e7:bd:74:95:42:68:
32:83:fe:0a:9f:6a:4a:28:df:2c:a2:22:07:70:d9:
7d:09:4d:7c:5d:e6:03:4e:ec:51:fa:2e:03:8b:b9:
51:d0:a6:a5:68:5b:d1:ec:36:74:a6:f5:db:fb:b3:
7d:ba:78:36:9a:20:0d:04:9b:16:69:be:35:16:28:
20:12:35:57:7c:c1:1a:38:9c:57:3a:fe:80:8c:5f:
b7:5f:c7:fe:c1:18:87:69:1f:fd:cc:ca:ef:7c:2d:
91:61:50:13:58:d2:e7:87:de:70:9a:63:94:95:fa:
cb:85:0f:1a:82:fe:eb:87:04:72:fb:15:fd:23:0a:
63:67:48:44:19:cc:0d:e7:e7:8a:bf:1b:42:81:1d:
c6:c0:89:60:ac:7d:6f:1a:b7:35:55:1d:38:82:34:
fb:75:1c:2d:bd:27:0c:a6:b1:7c:32:31:cb:7b:5e:
6f:6a:40:42:ad:0e:6e:a2:fd:f5:bf:c7:9a:cd:f6:
4f:37:bf:f5:15:f8:e2:5b:28:31:f8:cf:41:c8:f1:
29:14:22:53:93:26:e3:71:1b:b1:0d:cc:ac:d9:b9:
d6:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:B5:C9:38:4A:BE:43:01:9C:AD:A9:BB:C8:71:68:D7:62:67:4F:D5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/76A375CE2CBA11F0B7246EB9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.81.0/24
Signature Algorithm: sha256WithRSAEncryption
23:fb:aa:66:2b:31:bf:0b:bf:08:f8:ec:2e:60:56:b1:e0:86:
9c:53:f5:08:84:d8:b9:41:96:9a:0e:90:72:90:00:40:ea:29:
a9:b3:f0:00:9c:7c:18:9b:58:bf:45:de:1c:fa:5d:b5:3d:6c:
15:27:29:bd:3d:ed:26:3c:1f:2c:7b:f5:a3:dd:18:4e:bb:4e:
29:39:18:11:ea:d2:42:88:8e:c1:a8:39:5a:29:03:9b:4c:42:
32:94:8c:6b:06:b4:76:ad:20:95:3d:23:83:eb:0e:2b:c4:6a:
fb:4c:cf:a3:66:93:5b:b0:02:fc:77:bc:85:a9:79:77:f5:5a:
8f:18:a7:d2:0e:b7:67:27:7c:33:cc:35:cd:1a:18:3b:81:36:
1a:ae:02:b3:ef:9c:f8:09:0c:e9:e1:2a:47:bd:b1:1b:88:6c:
93:52:10:bc:02:9e:bc:b5:f3:9f:6a:d7:a8:87:65:50:36:0e:
34:94:cc:d1:a8:24:b0:b5:c2:50:bc:a2:24:58:37:4e:22:a2:
89:98:b3:dd:01:c5:13:d4:7c:c9:4d:bc:b4:69:44:84:0b:9e:
d1:76:d9:1b:84:41:0b:0f:e7:9f:8c:3e:92:57:82:ef:c6:ab:
81:97:ef:e7:c5:51:b0:38:90:c8:a4:2d:b7:8e:3f:68:7a:88:
4b:33:c1:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 07:18:21 2025 by rpki-client