Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7C0C4F5425FD11F08029199ADAE4EC9C.roa
File: 7C0C4F5425FD11F08029199ADAE4EC9C.roa (raw, json)
Hash identifier: 1r3XmHEI+gbfEzj0IDLbt5AA0DY3ha5L3isV53/zx5w=
Subject key identifier: 32:6D:44:F0:6E:DA:50:B3:8A:96:F7:7A:B1:4A:70:F8:84:15:9F:37
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0150D3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7C0C4F5425FD11F08029199ADAE4EC9C.roa
Signing time: Wed 30 Apr 2025 19:58:29 +0000
ROA not before: Wed 30 Apr 2025 19:58:24 +0000
ROA not after: Wed 26 Apr 2028 19:58:24 +0000
asID: 17561
IP address blocks: 156.238.140.0/24 maxlen: 24
156.238.141.0/24 maxlen: 24
156.238.142.0/24 maxlen: 24
156.238.143.0/24 maxlen: 24
156.238.144.0/24 maxlen: 24
156.238.145.0/24 maxlen: 24
156.238.146.0/24 maxlen: 24
156.238.147.0/24 maxlen: 24
156.238.148.0/24 maxlen: 24
156.238.149.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 13 May 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86227 (0x150d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 30 19:58:24 2025 GMT
Not After : Apr 26 19:58:24 2028 GMT
Subject: CN=681280e5-8f07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:e0:4e:5f:1e:bc:d6:16:2e:c2:36:bf:71:2f:
9a:a2:67:3b:4c:59:96:b5:43:65:9e:96:2a:8a:da:
fb:59:f6:ca:e7:69:4e:a8:96:6f:24:92:65:2e:8d:
33:78:e0:74:84:3b:1f:d2:d9:98:fc:5f:1d:c1:6a:
8a:dc:34:b6:b5:dd:16:1f:79:ed:94:18:ac:64:83:
44:5e:82:52:15:e1:63:62:e1:9e:7a:36:65:c6:55:
fc:45:15:50:88:71:ad:e2:b2:08:65:40:d5:42:bc:
b0:2b:96:57:ff:bc:a8:5f:ec:81:dd:d7:0f:43:f0:
6f:7c:ab:9d:f4:74:8a:94:fa:2d:93:1c:67:eb:0f:
af:a7:1d:dc:88:9c:d9:ad:fa:18:f1:f3:87:40:79:
49:6a:bf:c8:54:8b:8c:d2:89:b1:90:71:ca:ea:fe:
51:9a:e9:95:87:ed:55:f2:12:9a:4a:cd:34:6e:66:
67:54:e1:8b:4b:1a:62:bf:47:63:9e:2e:09:c3:43:
fe:19:45:bc:7d:93:49:6f:9c:1f:a1:10:62:84:dc:
5a:0d:9c:88:e5:ec:b0:15:2a:db:56:73:5d:4e:12:
e5:27:d8:53:06:2a:45:29:c4:e0:db:42:f0:e8:ef:
eb:a6:a1:82:02:3a:10:05:08:36:5d:0f:fd:0f:48:
a1:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:6D:44:F0:6E:DA:50:B3:8A:96:F7:7A:B1:4A:70:F8:84:15:9F:37
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7C0C4F5425FD11F08029199ADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.140.0-156.238.149.255
Signature Algorithm: sha256WithRSAEncryption
95:e6:d8:fc:e9:de:c7:df:f3:d4:72:9e:03:46:d7:f1:aa:f9:
d2:60:2d:d0:ac:9c:de:4a:7f:9c:8a:0e:dd:40:ac:22:45:99:
1c:3d:0c:e0:2b:ea:63:f6:f6:6d:92:55:46:83:ea:95:32:88:
9b:8f:b6:16:98:01:48:81:db:77:e8:41:17:0c:0e:4a:62:32:
0e:48:e3:3d:31:39:d0:c1:b1:aa:7b:58:ac:67:cc:71:f1:23:
8c:07:90:5a:21:e0:94:12:c9:a2:37:eb:5c:f1:fa:4c:d3:13:
5f:92:6e:18:a1:f5:1d:ba:cd:19:42:16:27:d2:90:6a:31:54:
68:24:83:f5:7f:1d:26:ab:b6:d3:a5:0e:ea:c1:6d:22:ef:07:
37:5a:7a:2a:9e:3c:4a:73:ee:fc:26:ba:ff:b6:e6:1e:50:8e:
ff:fb:f6:6e:b3:bf:20:96:43:c4:0f:3c:3e:75:da:83:7c:53:
d8:3b:22:07:97:98:96:39:24:2e:65:6e:6c:dc:e0:99:83:a8:
c2:68:fb:2e:55:aa:67:3d:f0:45:f3:e3:e9:15:36:24:da:62:
f9:50:81:53:5c:b0:ac:a8:c8:c3:41:a2:da:bb:57:83:ae:18:
8f:c0:a7:23:87:f1:cc:80:71:f3:ba:ae:b6:76:b9:a6:66:f5:
5a:23:19:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 10:27:49 2025 by rpki-client