Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FA0268D64C5311F0935108C4DAE4EC9C.roa
File: FA0268D64C5311F0935108C4DAE4EC9C.roa (raw, json)
Hash identifier: gKJF64HCqFf4ktnGAHqJuUiqiAtaIEur+xMURsRUFYc=
Subject key identifier: D3:8E:56:76:65:8E:E6:95:8A:79:C8:E8:33:B8:95:D6:24:58:AB:86
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015CF6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FA0268D64C5311F0935108C4DAE4EC9C.roa
Signing time: Wed 18 Jun 2025 14:53:21 +0000
ROA not before: Wed 18 Jun 2025 14:53:13 +0000
ROA not after: Tue 08 Jul 2025 14:53:13 +0000
asID: 38193
IP address blocks: 156.238.80.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 05 Jul 2025 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89334 (0x15cf6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 18 14:53:13 2025 GMT
Not After : Jul 8 14:53:13 2025 GMT
Subject: CN=6852d2e1-e79e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:b1:4d:83:bc:fc:05:5f:eb:11:31:83:02:63:
19:00:20:7c:8d:35:4b:48:f9:da:db:9b:01:07:03:
dd:7f:6f:33:5d:9c:29:1d:c1:f3:72:76:15:cd:15:
4c:6d:55:3b:fa:b6:25:fc:fc:b8:33:3c:15:d5:75:
b5:15:ad:54:54:a6:b2:bc:85:e6:13:08:59:27:c1:
99:2b:9f:4f:7d:36:7e:b0:cb:93:39:8c:46:4b:6f:
7a:3b:27:72:12:f2:27:ea:26:c2:ef:95:c5:88:38:
a4:da:9c:1a:84:9c:e8:5b:6c:f7:20:e9:33:59:fd:
8a:bc:ac:21:a1:3d:13:d2:58:89:e5:ef:c8:32:04:
a4:21:bf:f0:b1:b6:54:6b:a0:00:a1:a5:8e:6f:03:
82:23:ff:00:44:a4:7c:cc:b6:0a:e9:7c:3f:33:6c:
6b:76:36:c9:77:24:cf:8b:84:70:1b:e0:55:90:ac:
ec:05:ca:a7:7e:a4:f8:3f:89:f8:13:ee:0f:05:02:
63:36:bd:02:c0:ad:84:aa:af:ce:d4:c8:11:12:f9:
a5:fb:ef:2c:f5:d7:83:38:57:3d:57:6c:2c:0e:9f:
a3:2b:cf:95:10:fd:91:8f:71:3a:74:e3:14:7e:2e:
a8:07:08:49:42:7a:ca:d0:b1:b7:61:43:28:e5:fa:
87:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:8E:56:76:65:8E:E6:95:8A:79:C8:E8:33:B8:95:D6:24:58:AB:86
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FA0268D64C5311F0935108C4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.80.0/24
Signature Algorithm: sha256WithRSAEncryption
05:6c:17:c4:b3:26:1a:e9:64:90:9b:26:05:fd:2e:eb:4c:78:
32:0f:d6:c0:16:17:e1:6e:51:2c:06:1d:e7:06:3f:ef:13:78:
51:7d:6f:96:28:09:ed:d0:e2:6a:d2:d9:6b:04:5f:9d:b3:2b:
f4:f9:e4:c6:82:d6:91:01:f5:28:22:45:2b:0d:25:6e:ae:a3:
7b:27:3d:01:16:14:fd:ca:16:ac:40:25:64:89:48:8c:ed:36:
47:4c:bc:42:64:0c:e5:5d:fd:7a:e3:87:c8:1f:86:19:ba:19:
41:10:7a:e0:f5:aa:4d:43:7f:46:85:41:f3:3b:15:0a:c1:a3:
75:8f:91:e6:3c:fd:7b:32:e4:59:2e:2b:dd:1c:ca:fe:1d:bb:
8c:aa:a3:88:a0:d7:10:ba:50:ef:4e:c6:a0:f2:2a:10:b1:85:
f4:c9:d7:10:d5:ce:0a:c2:d9:f4:e9:c3:69:53:9e:a8:42:76:
45:85:f8:a4:55:1c:53:5c:f0:4f:7c:59:15:d0:08:a0:ff:75:
58:10:89:e8:b6:b4:70:44:a3:a9:44:cf:41:74:a8:87:18:e9:
42:19:e6:40:db:87:63:76:fc:e5:c8:66:90:a8:7d:91:ee:d3:
aa:7d:0e:05:28:72:41:8f:3d:c9:cc:e5:2b:2d:90:09:40:f1:
83:ec:9b:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 06:55:00 2025 by rpki-client