Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369BF27/5800DCF491EA11E9BA56927AF8AEA228/C28DA6C44D5F11F089D77C8ADAE4EC9C.roa
File: C28DA6C44D5F11F089D77C8ADAE4EC9C.roa (raw, json)
Hash identifier: dABQoz9AGXGyoNBAetMSbs1U62SRqLiX8c5R1HY93gg=
Subject key identifier: D6:8B:DB:7C:70:FB:10:81:05:0D:F7:83:4B:48:79:19:15:47:B7:12
Certificate issuer: /CN=F369BF27AR/serialNumber=CD07D7C89ECE4C0F9D04A1B153BBC710DF016B2D
Certificate serial: 08DF
Authority key identifier: CD:07:D7:C8:9E:CE:4C:0F:9D:04:A1:B1:53:BB:C7:10:DF:01:6B:2D
Authority info access: rsync://rpki.afrinic.net/repository/arin/zQfXyJ7OTA-dBKGxU7vHEN8Bay0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369BF27/5800DCF491EA11E9BA56927AF8AEA228/C28DA6C44D5F11F089D77C8ADAE4EC9C.roa
Signing time: Thu 19 Jun 2025 22:50:13 +0000
ROA not before: Fri 20 Jun 2025 22:50:09 +0000
ROA not after: Wed 20 Jun 2035 22:50:09 +0000
asID: 37049
IP address blocks: 165.16.167.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369BF27/5800DCF491EA11E9BA56927AF8AEA228/zQfXyJ7OTA-dBKGxU7vHEN8Bay0.crl
rsync://rpki.afrinic.net/repository/member_repository/F369BF27/5800DCF491EA11E9BA56927AF8AEA228/zQfXyJ7OTA-dBKGxU7vHEN8Bay0.mft
rsync://rpki.afrinic.net/repository/arin/zQfXyJ7OTA-dBKGxU7vHEN8Bay0.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 02 Jul 2025 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2271 (0x8df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369BF27AR, serialNumber=CD07D7C89ECE4C0F9D04A1B153BBC710DF016B2D
Validity
Not Before: Jun 20 22:50:09 2025 GMT
Not After : Jun 20 22:50:09 2035 GMT
Subject: CN=68549425-c7b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e3:4b:a3:5b:8a:97:bb:0c:25:83:3c:45:e6:
7a:a1:2e:91:26:f3:37:89:6d:a4:20:b4:96:8e:0c:
4f:b7:76:26:db:16:63:52:ec:1e:c2:1b:1e:0f:62:
00:89:33:1c:e4:78:4e:c3:c3:e3:c6:f9:13:2b:d7:
1f:06:4b:1c:cf:db:bb:e1:12:59:fe:9e:0b:80:18:
95:cb:45:8c:06:80:f7:de:87:56:4f:4e:27:dd:01:
9b:b0:17:a8:91:0c:af:fa:4f:1a:b4:aa:43:e4:aa:
83:dd:c8:80:1c:04:9c:28:06:48:3f:3a:6a:fb:68:
c1:47:63:44:bb:3b:6d:bf:8e:17:f9:95:44:29:50:
4c:25:7f:60:2e:66:de:2c:aa:50:fc:a0:6c:47:a2:
66:40:e8:59:69:9f:da:1b:da:a8:77:45:f2:c4:fd:
34:e0:6a:ff:04:cd:c4:e3:5a:0c:ca:3a:18:bb:49:
ff:ef:db:32:cd:a3:a7:e4:56:d0:65:c5:6b:20:84:
8e:19:78:9b:8b:e6:69:25:64:90:76:9e:97:f8:5c:
74:fe:52:43:73:77:13:82:d4:8c:fe:5e:99:cc:a4:
17:cf:ea:4d:c0:c1:ae:f0:8f:80:e3:a1:e1:87:84:
8e:14:ec:0f:1b:7d:e8:27:9c:52:04:93:02:92:bc:
f5:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:8B:DB:7C:70:FB:10:81:05:0D:F7:83:4B:48:79:19:15:47:B7:12
X509v3 Authority Key Identifier:
keyid:CD:07:D7:C8:9E:CE:4C:0F:9D:04:A1:B1:53:BB:C7:10:DF:01:6B:2D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369BF27/5800DCF491EA11E9BA56927AF8AEA228/zQfXyJ7OTA-dBKGxU7vHEN8Bay0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/zQfXyJ7OTA-dBKGxU7vHEN8Bay0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369BF27/5800DCF491EA11E9BA56927AF8AEA228/C28DA6C44D5F11F089D77C8ADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.16.167.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:7f:98:56:63:f0:ca:d7:0d:1f:86:b7:f4:87:a0:55:89:9a:
a3:02:cc:61:d8:72:b8:a6:c2:c1:17:6c:1b:71:e4:67:f1:85:
8e:38:d5:b5:62:c4:e8:1d:4c:57:35:67:1b:4a:a1:cb:f8:6e:
e6:8b:25:f4:42:e3:33:2b:f7:a3:2c:2a:ea:19:e9:dc:af:4a:
1d:da:f9:73:bf:f3:dc:38:35:b2:6e:8a:3c:bd:eb:69:5f:58:
bc:b0:e9:64:21:d8:f0:73:d7:91:7e:c4:d0:6b:c2:a0:90:01:
47:22:ca:0d:20:e7:01:ed:a4:3e:b8:44:30:9b:d5:f1:90:52:
67:53:f7:e9:5d:2e:f4:ce:13:42:b3:4c:02:1d:3f:eb:03:7e:
79:7d:be:e8:c4:2f:da:b9:6a:34:c8:04:83:5b:17:69:cc:3e:
27:2f:21:88:fe:c0:1e:06:90:2a:62:ed:14:7c:94:2b:58:6e:
e1:1e:b6:9a:60:16:74:b2:91:27:41:44:be:65:3e:94:46:25:
66:aa:82:a3:ad:d4:1c:4d:c0:97:ef:a8:0e:14:c9:36:c3:4f:
82:ee:2f:89:8a:b6:ad:57:9a:90:b7:64:14:1b:a6:45:37:49:
50:6c:b5:80:24:6b:1f:88:16:fa:af:e8:ed:c5:74:3f:a0:c6:
f9:36:21:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 30 14:48:35 2025 by rpki-client