Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9C4A231426AB11F0A5739EAADAE4EC9C.roa
File: 9C4A231426AB11F0A5739EAADAE4EC9C.roa (raw, json)
Hash identifier: TLwY9Scx4pDXRGV4YdcFwcucB9+qatQXvPGdShUX+lU=
Subject key identifier: 37:5B:C2:A6:2F:EC:EF:E1:E9:82:DB:D9:F3:0D:3C:9E:40:83:B7:5F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015148
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9C4A231426AB11F0A5739EAADAE4EC9C.roa
Signing time: Thu 01 May 2025 16:44:56 +0000
ROA not before: Thu 01 May 2025 16:44:51 +0000
ROA not after: Sat 01 Nov 2025 16:44:51 +0000
asID: 329478
IP address blocks: 156.229.73.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 15 May 2025 00:26:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86344 (0x15148)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 1 16:44:51 2025 GMT
Not After : Nov 1 16:44:51 2025 GMT
Subject: CN=6813a507-be0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:6e:ad:ce:52:58:97:05:8a:75:08:af:21:1c:
ed:d2:eb:3f:fa:75:a7:73:6e:d3:fa:0a:f5:0f:ae:
e8:0a:c9:3d:2a:f0:60:c4:91:e7:e4:ba:40:b6:57:
61:a0:f6:1f:87:fe:f5:71:b2:71:94:06:8c:9a:08:
9a:5a:8b:cf:5c:51:6b:4e:7b:d4:a4:3a:b5:4a:25:
f6:e7:1a:f0:31:4c:22:c8:39:2a:c1:f4:76:a9:44:
14:94:53:2e:85:50:c0:21:18:40:18:40:a3:c0:db:
6a:33:a8:91:31:91:72:7f:fc:33:15:8e:cb:5f:83:
5b:25:fd:76:d3:fc:b1:07:cd:2e:1d:3e:36:44:95:
59:d7:df:ed:3b:2f:aa:ff:af:64:3f:f1:53:e4:7e:
cd:bc:1a:5b:b0:1b:7d:5c:0a:52:b7:e7:e8:56:b7:
10:73:e2:64:6c:f0:3a:18:62:19:41:a7:75:39:35:
2c:7c:08:1b:79:36:a0:16:d6:79:1c:08:a2:1d:02:
79:90:35:bc:cf:09:a3:c9:7d:ac:83:ce:80:01:2f:
e8:bb:4d:14:4f:59:26:8a:ce:22:1c:d8:7c:9f:c8:
26:b9:dd:72:8c:2c:32:99:78:c3:46:38:de:8d:6b:
05:9b:7b:16:81:eb:63:cd:ca:4a:ba:a7:fc:87:bf:
96:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:5B:C2:A6:2F:EC:EF:E1:E9:82:DB:D9:F3:0D:3C:9E:40:83:B7:5F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9C4A231426AB11F0A5739EAADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.73.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:f3:93:73:36:bd:e1:90:ea:2b:a7:7b:42:30:68:b5:94:c3:
87:e5:90:6d:da:a0:b7:b3:78:9a:12:f7:29:8a:3d:6d:53:9f:
cd:2a:45:26:1e:15:80:56:cb:c4:5b:52:42:bd:8a:50:9a:0d:
39:4c:40:85:26:8b:85:97:e1:92:9c:cb:c8:3b:da:f0:19:3a:
dc:a6:36:43:80:d1:0b:17:55:4b:fb:2b:42:bd:43:6d:b1:a6:
67:c8:72:00:10:fb:f3:0f:8b:6b:25:d5:1e:6e:bb:e0:39:c1:
0e:55:ac:55:c1:b8:92:12:de:15:57:76:dd:90:6a:c7:30:e9:
0b:27:ae:12:83:42:30:93:9b:68:48:2d:93:60:bb:5f:55:db:
82:76:73:a1:51:fe:65:d9:57:bf:51:be:38:17:ac:59:5d:98:
43:14:e4:0a:dc:cf:cf:84:ed:a3:ee:da:7a:6e:8e:6b:00:da:
e5:8c:15:33:61:20:1a:71:81:98:70:6b:d3:fc:2a:2d:2a:71:
d2:74:b6:d2:2d:16:00:2c:c8:07:0a:7d:9f:b7:fe:7b:33:72:
a4:34:f0:50:ff:94:ab:da:a5:e4:44:e1:7e:6f:67:11:94:0b:
c7:07:72:ff:31:4d:8c:ef:19:5c:a8:2e:07:4b:c2:a1:1d:28:
1b:0d:93:ae
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAVFIMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNTAxMTY0NDUxWhcNMjUxMTAxMTY0NDUxWjAYMRYw
FAYDVQQDEw02ODEzYTUwNy1iZTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtm6tzlJYlwWKdQivIRzt0us/+nWnc27T+gr1D67oCsk9KvBgxJHn5LpA
tldhoPYfh/71cbJxlAaMmgiaWovPXFFrTnvUpDq1SiX25xrwMUwiyDkqwfR2qUQU
lFMuhVDAIRhAGECjwNtqM6iRMZFyf/wzFY7LX4NbJf120/yxB80uHT42RJVZ19/t
Oy+q/69kP/FT5H7NvBpbsBt9XApSt+foVrcQc+JkbPA6GGIZQad1OTUsfAgbeTag
FtZ5HAiiHQJ5kDW8zwmjyX2sg86AAS/ou00UT1kmis4iHNh8n8gmud1yjCwymXjD
RjjejWsFm3sWgetjzcpKuqf8h7+WcQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFDdb
wqYv7O/h6YLb2fMNPJ5Ag7dfMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC85QzRBMjMxNDI2QUIxMUYwQTU3MzlFQUFEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnOVJMA0GCSqGSIb3DQEBCwUA
A4IBAQBK85NzNr3hkOorp3tCMGi1lMOH5ZBt2qC3s3iaEvcpij1tU5/NKkUmHhWA
VsvEW1JCvYpQmg05TECFJouFl+GSnMvIO9rwGTrcpjZDgNELF1VL+ytCvUNtsaZn
yHIAEPvzD4trJdUebrvgOcEOVaxVwbiSEt4VV3bdkGrHMOkLJ64Sg0Iwk5toSC2T
YLtfVduCdnOhUf5l2Ve/Ub44F6xZXZhDFOQK3M/PhO2j7tp6bo5rANrljBUzYSAa
cYGYcGvT/CotKnHSdLbSLRYALMgHCn2ft/57M3KkNPBQ/5Sr2qXkROF+b2cRlAvH
B3L/MU2M7xlcqC4HS8KhHSgbDZOu
-----END CERTIFICATE-----
Generated at Tue May 13 04:46:42 2025 by rpki-client