Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F466D4322B1C11F08FC0CFEADAE4EC9C.roa
File: F466D4322B1C11F08FC0CFEADAE4EC9C.roa (raw, json)
Hash identifier: S5muSuiW006k6V9qUrQjNPQwnlHsMKR8n5n2xxGHb3o=
Subject key identifier: 56:23:A4:F0:1B:93:8D:DB:6F:27:BF:59:5E:AC:09:CA:68:37:E3:76
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015270
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F466D4322B1C11F08FC0CFEADAE4EC9C.roa
Signing time: Wed 07 May 2025 08:26:21 +0000
ROA not before: Wed 07 May 2025 08:26:16 +0000
ROA not after: Wed 11 Jun 2025 08:26:16 +0000
asID: 213448
IP address blocks: 156.228.233.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 14 May 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86640 (0x15270)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 7 08:26:16 2025 GMT
Not After : Jun 11 08:26:16 2025 GMT
Subject: CN=681b192d-6c40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:a4:f0:fe:c8:b8:96:33:fa:06:fa:db:b6:79:
80:b6:91:38:75:1c:1a:f1:80:e2:44:5e:be:b6:53:
7e:b6:7c:d1:8c:3c:31:8a:6a:2a:fb:61:7a:98:c2:
13:78:f9:6e:a2:ef:f9:4f:b2:b5:30:89:99:21:17:
b1:e1:6d:52:5f:7c:fb:80:2f:b2:39:6f:33:1a:83:
a6:f8:0a:11:11:36:ad:85:4e:eb:62:2d:d1:2d:f2:
05:33:9f:61:83:b9:80:95:8a:d3:c2:ed:b1:92:e6:
6b:85:e4:b3:58:8b:0f:62:62:92:52:46:fc:b8:23:
36:1f:79:77:74:13:b3:5e:d5:4b:53:c7:f4:b5:ff:
54:e6:c5:44:db:1b:3b:2e:23:62:26:3a:ac:c2:c4:
11:24:97:0a:d8:02:37:bf:0a:72:09:e8:cb:e7:d3:
b7:62:a1:3d:a5:b4:6c:84:e8:1b:f0:f6:24:00:92:
f4:0a:8e:bf:a8:d8:ae:1a:78:1d:62:13:54:ed:56:
dd:5d:79:01:06:74:00:63:06:22:dd:f0:48:14:dd:
b7:30:c1:89:3d:85:b7:15:e0:1b:3d:21:a0:9a:54:
48:5b:04:25:f6:fe:4e:30:3d:66:14:93:9a:b1:ed:
42:d9:ed:43:04:93:94:c9:6c:47:27:bf:ed:67:fd:
71:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:23:A4:F0:1B:93:8D:DB:6F:27:BF:59:5E:AC:09:CA:68:37:E3:76
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F466D4322B1C11F08FC0CFEADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.228.233.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:e7:e8:75:9b:9f:1b:5b:6c:0d:3a:c7:67:75:55:1c:79:0a:
cc:20:42:3f:10:94:2e:dc:c1:f5:dc:63:b2:b8:61:81:d6:79:
01:12:60:c0:7d:7f:6a:fc:8e:25:4e:97:a3:fe:0c:b7:b0:13:
62:e3:88:15:65:e7:44:3b:fa:c7:7b:57:fd:a5:6b:99:3b:bb:
6f:55:62:8f:02:bb:c4:ed:36:93:7d:b1:0c:4e:62:b7:d7:33:
f1:f6:fc:19:13:84:79:a8:30:c2:2c:9c:d0:a5:50:d2:35:12:
49:34:58:30:fe:ae:54:4f:02:8d:66:6a:13:5a:9a:b8:c5:eb:
dd:13:d3:7c:c1:d2:8a:ec:7b:8c:67:93:66:2a:93:e4:26:ec:
b0:e8:4d:4f:78:f2:e9:1d:9e:55:7b:7d:86:b2:6b:16:6d:8c:
d6:5a:a7:23:e5:71:b3:40:99:81:5e:18:4c:d1:95:38:d4:5f:
bd:2b:89:ea:31:0e:8a:e3:a9:86:6e:27:ab:39:07:d6:21:94:
83:07:d0:75:ea:cf:16:36:91:f6:86:e4:f9:6d:da:9a:c2:69:
9e:4d:9d:19:5b:5a:c9:41:cf:d7:5b:6d:2d:ab:6e:92:05:70:
f3:88:b0:e4:46:61:df:56:15:3e:e2:42:ad:c3:5b:8d:13:05:
cc:90:8c:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 04:14:43 2025 by rpki-client