Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/29F13EEC7AC511F0BB204B8CDAE4EC9C.roa
File: 29F13EEC7AC511F0BB204B8CDAE4EC9C.roa (raw, json)
Hash identifier: 7+TpiMcYj5C/AgpjtYCJUNwR4vRA2p7cptTJ8WQBa3g=
Subject key identifier: 71:A6:33:A1:06:49:D1:23:88:B9:DD:0C:93:A7:E0:4E:EC:63:61:51
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016B6F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/29F13EEC7AC511F0BB204B8CDAE4EC9C.roa
Signing time: Sat 16 Aug 2025 17:19:28 +0000
ROA not before: Sat 16 Aug 2025 17:19:24 +0000
ROA not after: Sat 27 Sep 2025 17:19:24 +0000
asID: 134823
IP address blocks: 156.234.228.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93039 (0x16b6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 16 17:19:24 2025 GMT
Not After : Sep 27 17:19:24 2025 GMT
Subject: CN=68a0bda0-6bfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b8:23:2d:85:13:dc:bc:05:a5:ff:39:4b:40:
5e:27:51:ad:7e:6d:cb:a5:88:99:ca:a1:d8:9d:dc:
bf:00:05:c2:4c:35:95:5e:f3:3e:41:35:9c:ae:5c:
6a:2b:aa:7e:f6:48:3b:37:ab:c8:f2:8a:6d:f5:52:
90:0d:af:33:ea:6a:aa:d5:a5:c0:f2:a5:30:fb:ee:
47:da:b6:68:7a:34:44:2a:9d:9d:43:88:96:96:c2:
f6:7e:59:db:45:0e:3f:aa:8f:2d:b6:d0:84:dd:cc:
84:8d:b8:cb:6d:f3:c3:b5:fc:0a:51:4e:2d:09:38:
a0:2f:ba:af:0d:f0:0d:26:21:6c:3b:80:89:88:a8:
5e:b9:af:39:72:d0:ce:0c:51:52:98:d0:58:fd:06:
87:7b:d3:94:9c:fb:05:b7:21:d7:c0:d5:93:06:1a:
62:a6:1d:7e:63:5b:21:10:bc:e7:3e:3a:2e:88:38:
42:dc:c7:47:ba:25:f8:20:93:90:0f:4f:16:3c:e4:
6b:bb:f9:e3:19:d7:65:88:3c:92:64:99:56:ee:2b:
bb:f4:92:af:03:1d:59:c1:1e:54:9f:e9:a3:6f:a6:
22:ea:1f:0d:32:bb:78:a5:67:36:43:e3:cb:ec:af:
aa:5d:4a:af:44:9d:cd:9a:a3:91:ec:dd:93:d6:1e:
2a:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:A6:33:A1:06:49:D1:23:88:B9:DD:0C:93:A7:E0:4E:EC:63:61:51
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/29F13EEC7AC511F0BB204B8CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.234.228.0/22
Signature Algorithm: sha256WithRSAEncryption
81:37:d8:c0:c0:6a:6d:a3:7d:db:84:36:54:22:39:82:f6:02:
ae:8a:61:52:40:8e:6c:41:9c:b9:19:90:b7:2f:95:9c:36:c7:
c7:73:da:58:90:df:41:e9:46:fd:9c:5a:86:e7:d0:e9:df:fe:
67:7f:21:34:2e:c7:86:47:83:d7:c0:57:94:61:56:1a:07:f6:
e7:85:9a:01:6a:f9:07:75:82:22:f7:74:53:85:e2:77:ec:b4:
f5:6c:50:ef:93:d7:83:c6:21:0a:f0:b4:c2:ff:de:e0:ec:3e:
9c:fe:f0:49:ad:1f:b1:f0:d1:b8:de:c3:95:a4:91:02:cb:c2:
c9:9a:f1:d7:56:c3:e2:89:65:b2:44:c1:34:b2:b0:af:90:a1:
a8:a4:41:56:c5:b8:ec:89:a2:b6:3d:a3:16:07:77:e9:97:2e:
d5:eb:5b:90:36:c0:9a:3a:a2:86:97:a7:51:24:b5:37:c8:ce:
6d:d2:c9:6d:f3:82:8c:63:27:40:7d:aa:0e:90:a1:20:69:fe:
91:06:6d:14:d9:57:8d:88:d8:e3:7a:a8:80:83:87:8b:19:dd:
45:d3:98:20:77:e6:08:e4:75:78:be:9a:8d:25:61:75:59:76:
2c:9b:a9:bd:87:ff:25:bc:e5:a0:fe:c9:c8:e9:bf:0c:88:48:
db:3c:51:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 08:59:30 2025 by rpki-client