Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/792D5AC44B5C11F083A006ECDAE4EC9C.roa
File: 792D5AC44B5C11F083A006ECDAE4EC9C.roa (raw, json)
Hash identifier: 28d6/EuiNWDI99LkO8cpj3rokb6wv3FARuRijRIuPAE=
Subject key identifier: CA:CC:D9:C1:96:C1:52:41:3F:1B:62:B5:4E:10:A8:69:40:3D:4C:D7
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015C7E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/792D5AC44B5C11F083A006ECDAE4EC9C.roa
Signing time: Tue 17 Jun 2025 09:21:40 +0000
ROA not before: Tue 17 Jun 2025 09:21:35 +0000
ROA not after: Tue 15 Jul 2025 09:21:35 +0000
asID: 134365
IP address blocks: 156.226.176.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 02 Jul 2025 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89214 (0x15c7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 17 09:21:35 2025 GMT
Not After : Jul 15 09:21:35 2025 GMT
Subject: CN=685133a4-0fe0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:a4:37:3d:49:6c:6a:e2:1c:0e:82:28:6b:e2:
b7:38:c2:25:65:3c:4e:8c:d6:6d:60:48:1e:4f:15:
64:08:98:1b:f5:51:be:88:a4:7c:79:47:54:0c:9e:
3e:4e:57:06:56:a5:fc:99:37:ca:ac:9a:ad:1c:c4:
99:a3:19:10:27:39:d9:e1:a7:6f:6f:76:f8:71:72:
7b:0d:65:c1:2c:7f:5e:46:66:ac:12:f0:1f:2a:2f:
b4:44:30:13:39:34:0d:a0:76:5e:a9:59:9b:a0:45:
59:d8:05:eb:9f:dc:75:42:d5:9a:70:a5:51:a5:9d:
55:c2:28:a6:5f:6f:96:f6:ad:e5:bd:22:11:59:37:
03:85:81:41:6a:6c:15:89:05:f5:d3:32:03:a1:70:
08:4d:e5:ca:de:2f:28:cd:3b:dc:a4:b1:ef:f2:00:
37:49:6b:80:dc:ba:b7:69:93:81:4d:70:f3:61:e6:
e1:b2:08:1d:8b:91:29:7f:9c:73:28:6d:5b:45:98:
5b:74:45:55:f6:74:18:7e:87:91:c0:31:4e:95:fd:
d9:d3:8c:2b:74:c3:8f:01:cf:68:a7:64:94:be:3a:
18:65:c4:57:1e:a0:4a:07:b2:cc:99:3d:aa:c7:35:
00:64:10:bb:32:38:84:6c:39:1c:08:b2:08:11:98:
8d:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:CC:D9:C1:96:C1:52:41:3F:1B:62:B5:4E:10:A8:69:40:3D:4C:D7
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/792D5AC44B5C11F083A006ECDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.226.176.0/21
Signature Algorithm: sha256WithRSAEncryption
ad:0b:2e:b9:f5:c3:36:6d:4e:20:1d:a3:5b:d9:d0:04:e2:13:
93:33:e8:eb:cc:47:c4:b5:b7:26:7b:77:ad:d0:14:7c:19:a4:
fb:1c:d1:73:db:39:e7:fc:8a:83:ec:17:d1:43:d1:7d:b9:c3:
1b:c3:b4:3d:50:2e:d9:59:fb:5f:3c:7e:b2:eb:12:1d:11:93:
57:0c:52:db:fb:f5:7b:54:2a:f4:06:f1:4f:dc:aa:f6:df:c1:
97:d3:6d:7a:86:9d:c7:13:2c:c9:21:54:b8:83:7b:38:30:31:
f4:5a:2e:31:77:0e:23:a7:37:be:74:13:1a:b6:47:fe:b7:2b:
1c:02:da:3a:f3:54:0a:2d:a8:eb:af:fb:6e:79:55:1f:90:a0:
c7:49:14:52:ee:a2:fe:4d:ff:f8:71:00:d9:be:49:e5:7c:43:
0d:8e:cf:09:32:25:a5:17:db:dc:fa:5b:20:58:f4:66:d0:0b:
5f:2d:46:e3:c6:82:bd:68:6f:82:db:1a:f4:e9:76:11:7a:1b:
4f:40:73:cb:0e:be:5c:26:0d:11:79:2f:fe:9f:18:49:b3:06:
80:27:39:5f:eb:32:01:ce:ff:71:9e:cb:3f:7f:48:d1:76:77:
e2:97:f4:a5:2b:f1:e2:f9:67:5c:06:e6:99:55:c7:55:c4:05:
91:d6:ca:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 30 14:38:00 2025 by rpki-client