Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FE8E5E8E517411F0ABB92FA1DAE4EC9C.roa
File: FE8E5E8E517411F0ABB92FA1DAE4EC9C.roa (raw, json)
Hash identifier: G+vPIKjjyR0ZwP9B2i9oOqmlxWhVaSwF4o1j4ybqGPk=
Subject key identifier: 8E:93:77:1B:B9:19:92:21:56:E3:85:77:30:9B:2A:84:17:CF:F0:3B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 015EA3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FE8E5E8E517411F0ABB92FA1DAE4EC9C.roa
Signing time: Wed 25 Jun 2025 03:32:18 +0000
ROA not before: Wed 25 Jun 2025 03:32:13 +0000
ROA not after: Tue 15 Jul 2025 03:32:13 +0000
asID: 44559
IP address blocks: 156.243.32.0/24 maxlen: 24
156.243.33.0/24 maxlen: 24
156.243.80.0/24 maxlen: 24
156.243.234.0/24 maxlen: 24
156.243.240.0/24 maxlen: 24
156.243.242.0/24 maxlen: 24
156.243.243.0/24 maxlen: 24
156.243.248.0/24 maxlen: 24
156.243.249.0/24 maxlen: 24
156.243.254.0/24 maxlen: 24
156.243.255.0/24 maxlen: 24
156.244.209.0/24 maxlen: 24
156.244.210.0/24 maxlen: 24
156.244.211.0/24 maxlen: 24
156.248.6.0/24 maxlen: 24
156.248.7.0/24 maxlen: 24
156.248.20.0/24 maxlen: 24
156.248.21.0/24 maxlen: 24
156.248.23.0/24 maxlen: 24
156.249.19.0/24 maxlen: 24
156.249.80.0/24 maxlen: 24
156.249.81.0/24 maxlen: 24
156.249.83.0/24 maxlen: 24
156.249.97.0/24 maxlen: 24
156.249.98.0/24 maxlen: 24
156.249.99.0/24 maxlen: 24
156.249.100.0/24 maxlen: 24
156.249.103.0/24 maxlen: 24
156.249.112.0/24 maxlen: 24
156.249.113.0/24 maxlen: 24
156.249.114.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 04 Jul 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89763 (0x15ea3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 25 03:32:13 2025 GMT
Not After : Jul 15 03:32:13 2025 GMT
Subject: CN=685b6dc2-5ea7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b8:f3:cd:5e:57:58:3d:9f:ab:99:e1:0d:f8:
34:b0:98:f5:c7:c3:9a:35:2c:c1:3d:12:45:ba:4f:
99:49:5e:0b:89:dd:59:9b:df:1f:0a:57:38:dc:da:
f8:7a:7b:df:62:af:e9:dd:b1:32:fd:e3:0d:1c:a8:
cb:c5:ec:f2:96:9f:8a:f5:25:d0:0f:6f:0d:f3:0f:
87:5d:12:ff:66:f1:fd:8c:25:06:82:25:87:46:7d:
5c:70:65:90:2d:83:3f:ed:5d:e9:2a:26:31:6c:bd:
ae:33:07:5d:fb:ef:2c:4e:e0:b0:84:69:83:17:18:
57:0f:06:ba:44:30:77:8e:a0:4f:7d:1c:e3:2f:af:
02:f1:3b:6f:93:ca:5f:08:42:91:e3:5a:2d:cc:ba:
09:2e:cc:44:0b:59:96:f9:56:e2:52:65:45:4a:d3:
84:ad:aa:14:54:ba:8c:71:c1:b8:16:c7:2f:4c:98:
6a:9c:cb:12:4a:38:b8:c9:28:53:b6:2f:c3:fd:b7:
91:c9:80:f8:1a:87:29:40:74:35:e2:d0:ff:f0:ab:
0f:6d:96:79:57:b8:ff:38:04:4c:da:03:9a:42:46:
36:c1:b5:f2:5f:ba:06:8b:50:ab:1b:94:48:1d:19:
10:c5:90:1c:7e:94:0e:5b:46:84:63:85:b8:c0:a6:
3a:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:93:77:1B:B9:19:92:21:56:E3:85:77:30:9B:2A:84:17:CF:F0:3B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FE8E5E8E517411F0ABB92FA1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.243.32.0/23
156.243.80.0/24
156.243.234.0/24
156.243.240.0/24
156.243.242.0/23
156.243.248.0/23
156.243.254.0/23
156.244.209.0-156.244.211.255
156.248.6.0/23
156.248.20.0/23
156.248.23.0/24
156.249.19.0/24
156.249.80.0/23
156.249.83.0/24
156.249.97.0-156.249.100.255
156.249.103.0/24
156.249.112.0-156.249.114.255
Signature Algorithm: sha256WithRSAEncryption
10:3f:53:51:51:f4:64:80:1f:20:d4:65:ea:46:06:be:8a:8d:
db:be:c3:11:ba:2d:1f:33:72:ea:1e:e7:34:e7:97:2e:f1:b2:
3d:b3:0d:40:ac:27:8d:e3:7b:5e:68:8e:d1:10:c8:6c:94:b3:
b3:c6:de:0f:87:c4:56:57:62:fb:4a:0a:e7:79:58:70:7c:7e:
12:c2:a0:eb:14:db:8d:51:c8:89:54:7c:95:38:b2:18:0b:ad:
2f:a2:47:50:7b:ba:07:da:b2:6c:d0:27:01:da:0f:c0:51:e6:
1b:d8:f1:a8:51:3b:40:8a:bc:a2:28:32:2d:8a:b9:de:f7:27:
dd:88:c7:4e:29:3d:dd:53:48:dd:13:cf:bb:21:65:77:b3:f3:
66:8f:9f:4d:be:e1:dd:b5:28:18:46:1e:07:ac:dd:82:5b:da:
1f:75:3d:d4:fd:47:70:d6:2d:98:e3:5f:91:c9:4e:61:c9:5f:
e2:7f:60:9c:6d:39:c4:9b:1a:49:f0:07:d9:f6:78:66:76:ab:
59:35:61:3d:17:84:e0:1d:8f:fc:6f:ef:81:a1:0c:52:24:01:
a6:f4:f5:01:b2:93:3b:d9:d2:87:7c:f3:c8:2f:24:3e:a4:ff:
30:cf:c3:ad:3c:85:87:c6:23:0f:b7:b2:a0:96:56:6b:15:1e:
fa:81:96:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 15:35:22 2025 by rpki-client