Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2C95A6FCA76A11F0A3D245C6DAE4EC9C.roa
File: 2C95A6FCA76A11F0A3D245C6DAE4EC9C.roa (raw, json)
Hash identifier: 0V+QpH55wRZuvlTmFcqY2QRFsVSkvvgJ9L6xXg5Tq5o=
Subject key identifier: 2B:AC:D3:0D:E9:71:20:C2:BC:BA:E7:5D:6E:D8:C4:03:5D:26:12:6B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 018028
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2C95A6FCA76A11F0A3D245C6DAE4EC9C.roa
Signing time: Sun 12 Oct 2025 12:51:31 +0000
ROA not before: Sun 12 Oct 2025 12:51:25 +0000
ROA not after: Thu 27 Nov 2025 12:51:25 +0000
asID: 18013
IP address blocks: 156.234.0.0/24 maxlen: 32
156.234.7.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98344 (0x18028)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 12 12:51:25 2025 GMT
Not After : Nov 27 12:51:25 2025 GMT
Subject: CN=68eba453-1ded
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a5:6c:36:3c:b7:17:d6:68:30:73:02:6b:85:
70:54:05:61:9d:5e:7e:55:ae:bf:e5:71:db:5d:af:
16:3f:91:61:ba:4e:e3:ec:f7:42:2e:d6:81:e7:f1:
8e:1e:08:8c:9e:23:84:4f:95:ed:e7:21:c7:df:c8:
76:cc:1d:9f:fe:3c:c5:47:85:fe:36:8f:6c:bc:b6:
e8:48:20:a6:56:a7:26:d4:0e:cd:e1:8a:59:c5:93:
0b:fb:5d:51:ca:2e:fe:5b:ed:de:3c:89:25:50:65:
47:90:3e:10:51:cb:82:fa:f0:80:d8:15:85:55:d2:
44:85:6a:d3:28:a1:26:e0:ef:ef:a2:20:cf:e2:6e:
ad:43:6e:a4:6c:3e:a4:6a:48:df:61:55:ca:7d:bd:
89:a9:10:3f:23:0a:31:23:1c:60:2b:56:3c:79:98:
09:bd:e0:a1:25:b4:53:d5:07:e3:3f:6e:4f:ca:3e:
96:26:c1:d3:54:1c:51:fb:fc:e3:a8:5e:bd:78:0e:
2b:c9:d8:87:93:4a:c7:31:9b:dd:86:80:90:cc:cd:
af:0c:09:a6:14:07:d9:74:5c:fb:8d:4a:47:f7:f2:
eb:95:d4:f1:be:ae:3b:66:6d:48:03:a9:3e:99:3e:
5f:fe:1d:af:94:6a:cc:b9:a3:3f:71:d9:26:6e:b0:
36:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:AC:D3:0D:E9:71:20:C2:BC:BA:E7:5D:6E:D8:C4:03:5D:26:12:6B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2C95A6FCA76A11F0A3D245C6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.234.0.0/24
156.234.7.0/24
Signature Algorithm: sha256WithRSAEncryption
97:54:15:93:18:bc:17:ce:03:da:e4:83:2e:76:5b:51:d3:07:
04:82:bb:41:00:37:4d:cd:a7:6a:f4:ae:32:52:b1:39:e9:7d:
ed:c1:18:9d:70:3b:30:4a:bc:52:71:1b:17:a6:1c:7f:2d:cc:
f6:c1:7c:a9:99:fd:07:12:d4:0a:0f:1c:9b:5e:db:84:d4:cd:
b0:94:7b:36:bf:71:6c:9e:49:50:90:84:ac:49:52:ed:9f:19:
76:cf:a8:dc:10:fb:16:92:2d:4f:39:3e:a1:40:f0:ca:b9:46:
a5:cb:16:21:97:0b:f5:63:b1:66:c7:3e:0d:b0:b2:45:de:bb:
fc:b4:19:97:3c:86:6e:62:b9:9b:02:80:6b:2f:08:db:92:4c:
41:da:3d:52:f9:c2:95:92:17:eb:50:c1:0b:ff:ae:9c:e6:ec:
d3:20:c7:de:9e:14:4f:8b:c0:b4:8a:76:3b:eb:6d:05:69:be:
b3:40:31:65:25:c2:62:0e:a7:2c:2b:d8:e5:f0:a1:ba:f7:90:
d3:e1:d6:0c:be:5f:21:01:04:d7:63:15:2f:36:37:26:dc:ce:
fd:02:b8:c1:86:95:3a:68:a5:6b:e8:65:d3:1f:6e:b2:98:75:
66:6c:9a:d4:00:f3:0b:91:10:34:a2:47:f4:85:5b:07:0d:c6:
84:25:44:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:06:04 2025 by rpki-client