Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A5BC6722273211F089130DBADAE4EC9C.roa
File: A5BC6722273211F089130DBADAE4EC9C.roa (raw, json)
Hash identifier: sdKyK6Gykd2r1U+nH/lJXuTPEfc4jPDGG9YLL97bFnE=
Subject key identifier: B8:79:ED:30:B6:03:7A:06:86:9F:D7:3B:D2:AC:6C:00:5D:BB:F6:CA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01515E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A5BC6722273211F089130DBADAE4EC9C.roa
Signing time: Fri 02 May 2025 08:51:33 +0000
ROA not before: Fri 02 May 2025 08:51:29 +0000
ROA not after: Tue 03 Jun 2025 08:51:29 +0000
asID: 203020
IP address blocks: 156.225.6.0/24 maxlen: 24
156.225.69.0/24 maxlen: 24
156.226.7.0/24 maxlen: 24
156.228.6.0/24 maxlen: 24
156.230.63.0/24 maxlen: 24
156.232.4.0/24 maxlen: 24
156.232.5.0/24 maxlen: 24
156.232.108.0/22 maxlen: 24
156.232.112.0/20 maxlen: 24
156.233.2.0/23 maxlen: 24
156.233.4.0/22 maxlen: 24
156.233.24.0/22 maxlen: 24
156.235.0.0/24 maxlen: 24
156.235.24.0/22 maxlen: 24
156.235.30.0/23 maxlen: 24
156.235.32.0/20 maxlen: 24
156.235.64.0/22 maxlen: 24
156.235.68.0/23 maxlen: 24
156.253.200.0/23 maxlen: 24
156.253.208.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 14 May 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86366 (0x1515e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 2 08:51:29 2025 GMT
Not After : Jun 3 08:51:29 2025 GMT
Subject: CN=68148795-a3d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:00:b3:5d:7c:e0:26:04:4b:66:e3:64:0a:d8:
4d:c7:7f:49:f0:61:e8:b9:7a:76:29:08:40:4f:32:
05:38:f4:fc:40:76:fb:3d:86:05:a5:32:a0:96:9f:
2f:0b:6f:81:f9:41:25:7e:a5:88:e1:15:ac:33:fa:
82:97:2f:be:1f:b5:76:30:73:bb:2d:fe:bf:18:5f:
91:c6:6c:91:30:4b:b7:0c:18:17:7c:f9:ea:c5:26:
44:fe:1d:ce:e1:72:31:21:fa:2d:af:a2:45:6e:c2:
08:ec:34:68:3d:08:d8:6a:65:d7:66:dd:cb:53:f5:
f0:1c:5a:39:b7:0d:a5:b0:41:d5:13:73:e5:3e:74:
67:ee:b8:b3:60:87:a2:4d:41:79:ff:2f:9f:23:5b:
ec:a6:df:3d:35:71:04:00:20:f1:f2:f5:7b:bd:ec:
37:d3:6d:c7:b4:3a:d6:8e:c6:81:43:c3:5a:88:3c:
6a:97:5e:f3:b1:b3:f3:ec:43:27:5b:89:bb:70:c4:
e1:59:41:1d:37:a0:6a:87:79:3e:09:52:79:54:60:
b7:70:67:f6:2f:58:3e:9c:4f:00:8d:5e:bd:12:77:
0f:b7:90:a5:05:68:02:fa:9e:bb:24:23:4e:ad:cd:
ae:a0:62:ff:02:1d:df:6a:79:e0:6c:21:e0:6a:ae:
04:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:79:ED:30:B6:03:7A:06:86:9F:D7:3B:D2:AC:6C:00:5D:BB:F6:CA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A5BC6722273211F089130DBADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.6.0/24
156.225.69.0/24
156.226.7.0/24
156.228.6.0/24
156.230.63.0/24
156.232.4.0/23
156.232.108.0-156.232.127.255
156.233.2.0-156.233.7.255
156.233.24.0/22
156.235.0.0/24
156.235.24.0/22
156.235.30.0-156.235.47.255
156.235.64.0-156.235.69.255
156.253.200.0/23
156.253.208.0/23
Signature Algorithm: sha256WithRSAEncryption
a4:9b:9a:47:fd:a3:74:08:86:f5:91:01:3b:ec:f6:c8:63:6e:
cb:99:1a:ef:54:66:3a:47:dd:ec:9e:5d:df:d0:1c:a4:e4:df:
97:55:dc:b4:11:77:26:d7:44:4b:87:dd:3a:7d:2f:82:e9:e3:
90:76:8f:b6:16:68:97:12:8b:6c:98:dd:3f:03:a3:41:89:8d:
97:69:eb:b5:75:b4:dd:24:c6:3c:6f:95:e7:34:4d:0e:19:73:
bc:ce:df:0c:9a:45:0a:b0:68:19:7f:78:a8:85:36:29:11:6c:
9d:57:bb:be:51:57:ac:31:5f:e0:1d:7b:e6:46:27:55:57:89:
b3:1c:4b:b0:5b:ac:76:2a:c9:9f:3c:a4:99:c9:7e:ca:66:e4:
2d:14:c3:37:06:08:83:5a:6f:51:02:2c:ab:ec:cc:6c:7d:22:
b3:a9:52:6c:91:41:97:ed:e3:64:8a:d9:63:5c:bb:10:b6:44:
a3:9b:3a:d7:c9:8d:aa:89:52:19:01:68:35:98:be:0d:da:cf:
97:96:c2:f8:e5:5a:2f:da:24:d9:74:f6:b4:85:99:d8:c9:9c:
c6:09:88:16:2e:11:79:00:12:57:e6:19:44:9f:b1:cd:a1:8a:
44:41:4f:7d:1c:bd:a0:86:a2:76:e9:2c:c9:65:ff:72:10:6a:
34:35:e7:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 06:42:22 2025 by rpki-client