Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3D388C9A7F6011F0A19535B7DAE4EC9C.roa
File: 3D388C9A7F6011F0A19535B7DAE4EC9C.roa (raw, json)
Hash identifier: qFod/rgvJ9TI3MUQ2iSv/icyPIVV3EXYmgp15JlIR1o=
Subject key identifier: D8:07:6A:76:F8:04:E5:B1:63:DE:C8:8F:95:10:12:13:57:1D:1D:8E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016ECB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3D388C9A7F6011F0A19535B7DAE4EC9C.roa
Signing time: Fri 22 Aug 2025 13:59:37 +0000
ROA not before: Fri 22 Aug 2025 13:59:32 +0000
ROA not after: Thu 30 Apr 2026 13:59:32 +0000
asID: 142629
IP address blocks: 156.232.107.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93899 (0x16ecb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 22 13:59:32 2025 GMT
Not After : Apr 30 13:59:32 2026 GMT
Subject: CN=68a877c9-0cbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:87:0f:34:0b:c3:90:38:6b:d8:22:54:d7:04:
e8:5b:0c:a7:c8:95:e7:8d:d9:dc:1b:ed:19:62:75:
cc:3c:2b:c0:e1:b4:24:d9:59:97:bb:40:65:6e:19:
a7:62:f2:cc:e9:17:98:1c:cb:de:29:79:f9:98:b3:
3e:7c:30:2a:07:ca:36:9a:d0:5b:0c:88:b0:74:a1:
e3:a8:50:cd:75:52:81:ae:d6:10:30:8f:23:53:9c:
e9:5c:20:90:5f:e5:b1:35:a6:aa:21:92:e9:b6:79:
6d:99:c7:fb:51:5f:4c:87:7a:a0:23:79:9b:f1:2e:
64:78:41:d0:1c:ce:ac:7d:b5:8b:ee:91:90:bf:c3:
2f:f6:d4:37:d1:8a:35:be:9f:12:50:36:07:76:4e:
2f:3d:10:c0:60:87:79:7f:51:1c:9e:02:6a:9a:4e:
b5:c9:1a:99:10:a2:e8:4f:1e:ec:a1:96:8a:20:a4:
c4:60:7d:d4:86:9d:22:35:46:5d:09:ab:c7:c9:19:
89:c0:5e:5c:4a:7b:e7:99:d9:80:ca:dd:18:1e:cb:
d4:f4:7e:3d:d5:5f:3b:4a:2c:8d:34:f0:70:f0:0b:
de:10:ee:ac:8e:21:11:88:00:03:b5:da:f1:1f:67:
56:de:69:01:d2:3d:70:82:6a:04:e5:79:a4:33:69:
a0:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:07:6A:76:F8:04:E5:B1:63:DE:C8:8F:95:10:12:13:57:1D:1D:8E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3D388C9A7F6011F0A19535B7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.232.107.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:6a:c6:f7:0e:a8:65:0d:79:7e:c9:a1:ad:1f:97:e9:22:ad:
36:c0:bf:1a:8d:ed:59:36:bb:6f:dc:cc:cc:49:87:b3:eb:ab:
52:7d:27:9c:1d:29:23:3e:7d:4b:71:74:27:98:18:25:12:94:
dc:8c:76:1d:b0:ab:a6:ae:36:94:ca:56:37:f8:d9:c4:65:69:
a5:cf:13:1a:bb:60:b9:79:a7:14:5e:39:c0:e3:25:44:33:15:
b9:0b:47:ab:e5:57:a2:b7:67:0c:89:a9:35:d7:d5:13:ab:f1:
0d:58:d8:e0:99:c0:3f:d5:1e:2f:11:f1:9d:d4:4d:87:7e:ef:
7d:ff:77:09:d0:a4:81:49:f7:84:cd:14:a1:16:58:f9:0a:aa:
81:70:3b:60:89:03:03:0c:93:14:aa:70:b6:41:09:11:ec:ee:
0c:28:ae:61:0e:f8:95:cc:92:bd:57:4e:90:23:e4:a8:09:d5:
b9:ae:1a:bc:03:be:22:26:a6:98:2d:ae:ef:bc:ad:83:8f:14:
13:6b:7a:fb:95:0b:08:1c:3b:5e:e3:7b:12:ed:96:58:0b:cd:
4c:bd:00:d9:d7:01:ca:4c:f9:03:35:71:6c:32:83:dd:5c:bb:
db:5b:64:21:01:b8:98:f5:62:9b:36:4e:2f:04:e9:a2:8c:d1:
43:e0:6c:c0
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAW7LMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwODIyMTM1OTMyWhcNMjYwNDMwMTM1OTMyWjAYMRYw
FAYDVQQDEw02OGE4NzdjOS0wY2JjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAzocPNAvDkDhr2CJU1wToWwynyJXnjdncG+0ZYnXMPCvA4bQk2VmXu0Bl
bhmnYvLM6ReYHMveKXn5mLM+fDAqB8o2mtBbDIiwdKHjqFDNdVKBrtYQMI8jU5zp
XCCQX+WxNaaqIZLptnltmcf7UV9Mh3qgI3mb8S5keEHQHM6sfbWL7pGQv8Mv9tQ3
0Yo1vp8SUDYHdk4vPRDAYId5f1EcngJqmk61yRqZEKLoTx7soZaKIKTEYH3Uhp0i
NUZdCavHyRmJwF5cSnvnmdmAyt0YHsvU9H491V87SiyNNPBw8AveEO6sjiERiAAD
tdrxH2dW3mkB0j1wgmoE5XmkM2mgeQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFNgH
anb4BOWxY97Ij5UQEhNXHR2OMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8zRDM4OEM5QTdGNjAxMUYwQTE5NTM1QjdEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnOhrMA0GCSqGSIb3DQEBCwUA
A4IBAQBdasb3DqhlDXl+yaGtH5fpIq02wL8aje1ZNrtv3MzMSYez66tSfSecHSkj
Pn1LcXQnmBglEpTcjHYdsKumrjaUylY3+NnEZWmlzxMau2C5eacUXjnA4yVEMxW5
C0er5Veit2cMiak119UTq/ENWNjgmcA/1R4vEfGd1E2Hfu99/3cJ0KSBSfeEzRSh
Flj5CqqBcDtgiQMDDJMUqnC2QQkR7O4MKK5hDviVzJK9V06QI+SoCdW5rhq8A74i
JqaYLa7vvK2DjxQTa3r7lQsIHDte43sS7ZZYC81MvQDZ1wHKTPkDNXFsMoPdXLvb
W2QhAbiY9WKbNk4vBOmijNFD4GzA
-----END CERTIFICATE-----
Generated at Sat Aug 23 07:25:03 2025 by rpki-client