Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F616AE0A25D711F0996077A2DAE4EC9C.roa
File: F616AE0A25D711F0996077A2DAE4EC9C.roa (raw, json)
Hash identifier: MrufD4ecZafhLylpTtnrZfIP3ja3l8L0fUpcMm13ySI=
Subject key identifier: CD:EA:E2:75:CB:90:F0:F3:4E:20:F6:C8:FB:B8:15:0C:44:08:4D:EC
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015085
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F616AE0A25D711F0996077A2DAE4EC9C.roa
Signing time: Wed 30 Apr 2025 15:29:53 +0000
ROA not before: Wed 30 Apr 2025 15:29:48 +0000
ROA not after: Sun 02 Apr 2028 15:29:48 +0000
asID: 17561
IP address blocks: 156.239.107.0/24 maxlen: 24
156.239.108.0/24 maxlen: 24
156.239.109.0/24 maxlen: 24
156.239.110.0/24 maxlen: 24
156.239.111.0/24 maxlen: 24
156.239.112.0/24 maxlen: 24
156.239.113.0/24 maxlen: 24
156.239.114.0/24 maxlen: 24
156.239.115.0/24 maxlen: 24
156.239.116.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 13 May 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86149 (0x15085)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 30 15:29:48 2025 GMT
Not After : Apr 2 15:29:48 2028 GMT
Subject: CN=681241f1-3f5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a0:06:e0:5b:8e:87:d0:b4:ef:2c:3b:72:b0:
46:28:1a:f4:91:91:66:51:d0:eb:41:34:e0:35:c2:
d8:4b:98:28:5c:9c:39:cc:ab:61:a9:96:5f:c8:e0:
9c:aa:ed:32:3e:43:86:b7:c5:34:b6:fe:52:79:12:
6c:2c:89:52:6f:6c:5f:b7:88:d1:50:24:cf:58:a4:
2b:f8:86:2d:b1:f2:c4:25:69:9e:c0:8e:6d:f2:a9:
c8:3f:a4:df:2c:b8:42:32:c3:05:85:eb:e3:97:da:
a2:38:b1:f1:b7:a3:9f:6e:80:4f:49:72:d1:2d:6a:
d6:34:f7:b8:e1:e6:17:83:e6:c6:11:a5:e8:7b:4f:
30:d9:b5:58:c6:ce:75:0c:3d:4c:55:9a:8a:65:db:
6c:60:f7:b7:90:b5:21:80:d7:9e:1b:15:56:97:bf:
73:29:0c:eb:d2:f9:45:94:c3:29:7f:ac:68:74:ad:
4f:b0:16:6a:50:c4:0f:ce:75:38:33:18:46:d9:46:
96:4a:ac:ec:02:79:8d:9e:41:bf:48:1c:71:4e:b5:
25:bd:99:4c:8b:e3:b4:44:04:dc:df:5c:48:4e:c8:
20:0a:cd:20:63:24:97:ff:e6:9e:5c:82:45:36:55:
d1:e9:b0:76:dd:cd:5a:f0:76:8a:56:77:21:c2:a7:
99:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:EA:E2:75:CB:90:F0:F3:4E:20:F6:C8:FB:B8:15:0C:44:08:4D:EC
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F616AE0A25D711F0996077A2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.239.107.0-156.239.116.255
Signature Algorithm: sha256WithRSAEncryption
44:d0:9a:3c:bd:79:81:39:80:b9:c0:57:b8:f7:81:34:b2:cb:
55:8b:aa:63:aa:e2:8a:05:51:70:32:a7:20:3e:01:f2:ef:46:
94:60:5e:e7:4f:95:6c:cd:b4:1c:f7:28:bb:ca:06:62:14:8d:
cf:65:2d:39:d4:6a:a3:95:d8:dc:2b:f3:18:0e:3f:7a:1f:28:
04:32:bf:04:28:2b:d3:20:40:61:14:ed:96:5c:31:db:05:15:
20:f9:27:27:36:a6:f5:d1:f8:b0:33:81:49:76:5e:1e:64:bc:
3f:ee:05:64:4d:93:2a:41:2c:1e:2e:fb:f9:07:fb:d3:23:46:
41:3b:63:8d:51:eb:66:2c:e3:b0:13:6f:25:4d:4a:fb:46:ea:
17:fe:19:b7:b3:37:fd:94:35:62:2c:e6:1d:a2:00:10:72:58:
b8:85:8f:48:64:1f:ee:47:c4:25:81:69:17:cd:f6:74:31:d9:
73:8f:20:42:55:2e:8a:ba:52:c1:81:ba:0c:59:4c:62:23:b8:
82:43:70:89:41:ce:90:a9:25:c7:8c:1e:c7:3a:6a:95:44:7e:
da:16:1c:33:3e:66:e9:d5:07:84:bf:64:bb:98:62:0b:0c:76:
9d:0e:45:58:d2:12:5e:5a:78:81:f6:e9:5e:ca:a8:3c:3d:cd:
ee:e3:25:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 22:17:18 2025 by rpki-client