Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0422F8A07E3411F08EB04078DAE4EC9C.roa
File: 0422F8A07E3411F08EB04078DAE4EC9C.roa (raw, json)
Hash identifier: 5ucSZC95yI/CKeIa2m8+cQnlVHMQPW0UVIYTATvDPqM=
Subject key identifier: 23:4C:95:1A:16:10:75:85:9A:28:21:F1:B5:75:3C:6A:2E:7C:CF:05
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016D62
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0422F8A07E3411F08EB04078DAE4EC9C.roa
Signing time: Thu 21 Aug 2025 02:10:32 +0000
ROA not before: Thu 21 Aug 2025 02:10:28 +0000
ROA not after: Wed 12 Nov 2025 02:10:28 +0000
asID: 9294
IP address blocks: 156.239.64.0/18 maxlen: 24
156.244.160.0/19 maxlen: 24
156.247.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93538 (0x16d62)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 21 02:10:28 2025 GMT
Not After : Nov 12 02:10:28 2025 GMT
Subject: CN=68a68018-c389
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:60:14:39:f2:c2:71:0a:53:30:b2:cd:71:ce:
4a:cc:92:22:5f:52:1d:b0:61:57:f0:6c:eb:26:2b:
f6:6d:bf:41:bd:7f:20:b2:8a:66:a2:b1:36:c4:fd:
ae:bd:66:35:1b:46:7f:d3:be:90:63:06:ab:3e:9a:
c6:4b:f5:18:4f:69:9b:0b:3e:8b:af:23:d6:fc:8e:
29:fa:45:c6:0c:e3:d5:73:50:ef:33:1f:30:2c:63:
2f:56:c4:38:d5:89:c4:94:51:2c:52:52:8d:e6:21:
bd:3d:48:17:c2:8b:58:9b:3b:72:89:a1:28:75:85:
1c:8a:d4:4a:62:c2:ac:5f:3b:ec:3d:2c:b4:fc:8f:
22:80:12:f1:5b:1b:56:38:f4:57:9d:1d:0d:cf:4d:
80:51:9c:a1:40:6f:8b:eb:41:f0:de:f4:05:cb:a1:
d0:9f:13:8f:99:c1:f9:5d:77:d0:6c:4e:14:af:c5:
02:36:a2:19:cc:94:24:99:aa:e7:d4:e5:4d:83:f0:
d0:b1:2a:f4:22:fb:3e:6a:aa:7a:c2:14:d7:27:40:
32:ac:a9:3f:b5:3a:b6:3c:07:19:63:0c:dc:0d:f2:
41:05:8c:fa:96:ee:1c:13:2b:47:a6:38:a7:82:86:
a6:08:6a:52:30:58:f0:6a:74:af:72:d7:17:59:41:
90:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:4C:95:1A:16:10:75:85:9A:28:21:F1:B5:75:3C:6A:2E:7C:CF:05
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0422F8A07E3411F08EB04078DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.239.64.0/18
156.244.160.0/19
156.247.64.0/18
Signature Algorithm: sha256WithRSAEncryption
60:f9:5f:be:1a:d4:68:d6:c3:52:6c:a2:40:54:a8:98:b8:fb:
98:7c:11:05:3c:51:ba:a4:ff:b4:36:a1:0c:5f:0f:64:16:90:
d3:c2:75:43:2d:7e:61:8d:86:fc:96:7c:a5:d6:3c:b5:05:6d:
96:7c:fd:68:b1:5e:07:ef:72:7f:7a:e0:1b:ba:f3:90:ec:39:
06:13:5a:17:80:e6:0f:72:2e:0a:82:3c:2c:b0:4d:91:e4:62:
8b:70:ff:49:e0:be:81:0e:13:c5:c9:68:49:2d:46:f1:8a:c8:
e0:77:91:1e:20:40:1f:1c:74:84:59:08:6d:cb:1e:c9:1d:42:
73:81:93:8f:a4:fd:c1:96:bc:39:03:f2:6b:a2:fa:09:37:c8:
ea:2b:50:8f:28:9a:da:f7:7e:82:27:a7:28:6a:30:a4:44:13:
ce:b0:3d:c4:08:8f:e9:97:13:69:32:2f:62:61:58:08:f0:a4:
6c:73:91:56:de:39:8e:b2:94:30:0d:d3:58:3a:18:05:a7:6e:
25:26:ab:9f:00:03:dc:34:9f:0b:7c:20:65:3a:63:71:e2:74:
7b:a1:51:9b:61:4f:d0:cd:05:86:8f:7c:a3:7e:7b:a4:54:9e:
ee:bf:7c:d1:c7:d6:60:72:ea:50:14:19:14:54:1e:d0:15:6a:
b0:82:c8:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 07:16:23 2025 by rpki-client