Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EF6F4A0225D811F0BFA7F3AADAE4EC9C.roa
File: EF6F4A0225D811F0BFA7F3AADAE4EC9C.roa (raw, json)
Hash identifier: L1rLVZNlfMEwQ19B+qmlCh6AHDMKhriNGD7kZQYIO0w=
Subject key identifier: AC:E2:A1:B3:0C:1F:5C:03:37:87:0B:19:F1:24:78:F6:88:1A:9E:DF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015087
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EF6F4A0225D811F0BFA7F3AADAE4EC9C.roa
Signing time: Wed 30 Apr 2025 15:36:51 +0000
ROA not before: Wed 30 Apr 2025 15:36:46 +0000
ROA not after: Sun 02 Apr 2028 15:36:46 +0000
asID: 17561
IP address blocks: 156.239.117.0/24 maxlen: 24
156.239.118.0/24 maxlen: 24
156.239.119.0/24 maxlen: 24
156.239.120.0/24 maxlen: 24
156.239.121.0/24 maxlen: 24
156.239.122.0/24 maxlen: 24
156.239.123.0/24 maxlen: 24
156.239.124.0/24 maxlen: 24
156.239.125.0/24 maxlen: 24
156.239.126.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 14 May 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86151 (0x15087)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 30 15:36:46 2025 GMT
Not After : Apr 2 15:36:46 2028 GMT
Subject: CN=68124393-ff49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:45:f0:b0:0a:9f:ea:d4:ba:c2:d3:22:5e:6d:
24:09:55:7a:50:16:75:c8:8c:ba:67:99:8a:f4:b3:
ba:b0:2b:80:50:6b:a9:11:b6:c1:64:c6:e8:74:72:
db:b7:18:58:4e:67:7d:fb:63:84:47:92:af:8a:02:
0e:5e:6c:34:74:c1:76:38:4f:3b:7e:b9:c6:f0:89:
b8:7b:0c:51:01:22:8e:b5:31:be:53:a3:e7:06:7a:
c3:46:77:34:d7:39:10:90:e8:7a:70:84:8e:cd:fa:
05:65:43:40:5c:b5:45:d5:f5:1f:2b:51:c0:81:49:
de:c2:3c:53:28:6a:41:1e:0a:fb:26:44:0f:cf:94:
23:3d:a8:8b:c9:59:27:73:d8:08:27:8b:b1:a5:65:
90:c3:87:7d:25:82:94:43:00:c0:53:d9:01:10:f4:
cf:10:e1:72:6b:28:d9:93:eb:68:0d:ae:1f:ba:6b:
b7:7e:d8:ec:a8:70:f5:62:25:9f:2f:d9:da:50:f7:
67:43:28:2c:e2:a8:19:cd:95:88:cc:6f:da:d2:d6:
8d:6a:3d:5e:eb:93:0e:fc:bb:e2:75:63:50:35:42:
3d:b8:c9:7b:c6:0d:ad:56:a2:d2:31:a2:ec:8c:66:
12:fc:77:0e:06:ce:81:64:b7:05:de:4d:d7:31:f9:
e3:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:E2:A1:B3:0C:1F:5C:03:37:87:0B:19:F1:24:78:F6:88:1A:9E:DF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EF6F4A0225D811F0BFA7F3AADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.239.117.0-156.239.126.255
Signature Algorithm: sha256WithRSAEncryption
5c:58:ec:8a:18:83:fd:dc:77:ce:42:32:d1:c6:7c:2e:71:6a:
98:2f:4e:7e:69:8e:17:c7:5d:6d:5e:7f:31:2d:18:10:93:50:
55:73:0f:6d:a9:6b:f6:0a:ca:ea:cb:81:f3:41:cb:44:c1:19:
c1:bd:43:b9:fd:79:de:36:81:47:24:2d:e4:01:18:80:21:0d:
78:19:98:db:93:b1:1f:3e:35:fb:3d:24:a3:a6:d6:a6:1b:dc:
a0:68:7c:28:1a:02:d0:b7:52:81:7d:63:b7:d3:29:e0:35:e1:
d0:f1:1e:a4:3c:9b:71:b5:6a:62:16:96:cf:90:97:47:e6:49:
5a:29:cc:39:18:74:ba:c9:e4:74:35:47:4a:3c:50:2b:9f:b2:
1f:d5:2e:82:4b:d5:50:1b:4e:90:9a:46:05:ef:a0:95:b8:92:
6b:ce:49:d4:40:29:8c:e4:42:78:39:f6:88:ba:cb:01:51:db:
9f:ef:22:3e:af:95:e7:a2:af:59:f7:f7:4e:3d:40:b6:f1:a9:
9a:bd:c6:b6:18:9d:1c:a3:64:79:07:2f:70:7c:9e:a4:8e:ab:
d2:b7:46:1c:f5:68:21:5d:71:9e:cd:35:a3:a2:56:7a:44:a9:
b7:f9:9a:2d:34:d5:c7:9d:25:7a:41:b9:a0:b7:cd:78:d1:62:
92:58:12:52
-----BEGIN CERTIFICATE-----
MIIFiTCCBHGgAwIBAgIDAVCHMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNDMwMTUzNjQ2WhcNMjgwNDAyMTUzNjQ2WjAYMRYw
FAYDVQQDEw02ODEyNDM5My1mZjQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAykXwsAqf6tS6wtMiXm0kCVV6UBZ1yIy6Z5mK9LO6sCuAUGupEbbBZMbo
dHLbtxhYTmd9+2OER5KvigIOXmw0dMF2OE87frnG8Im4ewxRASKOtTG+U6PnBnrD
Rnc01zkQkOh6cISOzfoFZUNAXLVF1fUfK1HAgUnewjxTKGpBHgr7JkQPz5QjPaiL
yVknc9gIJ4uxpWWQw4d9JYKUQwDAU9kBEPTPEOFyayjZk+toDa4fumu3ftjsqHD1
YiWfL9naUPdnQygs4qgZzZWIzG/a0taNaj1e65MO/LvidWNQNUI9uMl7xg2tVqLS
MaLsjGYS/HcOBs6BZLcF3k3XMfnjfwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFKzi
obMMH1wDN4cLGfEkePaIGp7fMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9FRjZGNEEwMjI1RDgxMUYwQkZBN0YzQUFEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBACc73UDBACc734wDQYJKoZI
hvcNAQELBQADggEBAFxY7IoYg/3cd85CMtHGfC5xapgvTn5pjhfHXW1efzEtGBCT
UFVzD22pa/YKyurLgfNBy0TBGcG9Q7n9ed42gUckLeQBGIAhDXgZmNuTsR8+Nfs9
JKOm1qYb3KBofCgaAtC3UoF9Y7fTKeA14dDxHqQ8m3G1amIWls+Ql0fmSVopzDkY
dLrJ5HQ1R0o8UCufsh/VLoJL1VAbTpCaRgXvoJW4kmvOSdRAKYzkQng59oi6ywFR
25/vIj6vleeir1n39049QLbxqZq9xrYYnRyjZHkHL3B8nqSOq9K3Rhz1aCFdcZ7N
NaOiVnpEqbf5mi001cedJXpBuaC3zXjRYpJYElI=
-----END CERTIFICATE-----
Generated at Mon May 12 23:16:29 2025 by rpki-client