Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6392329076C011F0BAA51FD8DAE4EC9C.roa
File: 6392329076C011F0BAA51FD8DAE4EC9C.roa (raw, json)
Hash identifier: ONV0KPlPDNVjbZwTDm1xHWkL9F+8cnaHS5WUJUt8jcQ=
Subject key identifier: D0:DB:8F:2A:5C:68:AD:FD:AD:25:C9:41:D3:5F:11:25:BC:38:4F:D6
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016A3E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6392329076C011F0BAA51FD8DAE4EC9C.roa
Signing time: Mon 11 Aug 2025 14:35:13 +0000
ROA not before: Mon 11 Aug 2025 14:35:08 +0000
ROA not after: Tue 16 Sep 2025 14:35:08 +0000
asID: 22773
IP address blocks: 156.239.144.0/22 maxlen: 24
156.242.234.0/24 maxlen: 24
156.242.235.0/24 maxlen: 24
156.242.236.0/24 maxlen: 24
156.242.237.0/24 maxlen: 24
156.242.238.0/24 maxlen: 24
156.242.239.0/24 maxlen: 24
156.242.240.0/24 maxlen: 24
156.248.2.0/24 maxlen: 24
156.248.3.0/24 maxlen: 24
156.248.22.0/24 maxlen: 24
156.248.24.0/24 maxlen: 24
156.248.25.0/24 maxlen: 24
156.248.26.0/24 maxlen: 24
156.248.27.0/24 maxlen: 24
156.248.28.0/24 maxlen: 24
156.248.29.0/24 maxlen: 24
156.248.30.0/23 maxlen: 24
156.248.64.0/21 maxlen: 24
156.249.120.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92734 (0x16a3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 11 14:35:08 2025 GMT
Not After : Sep 16 14:35:08 2025 GMT
Subject: CN=6899ffa1-22cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:97:f3:12:03:e1:d1:06:d8:f9:a4:d0:a5:94:
1d:57:5e:3c:ef:ba:2b:98:6f:35:99:da:d4:c3:77:
16:b5:c0:1d:c3:ba:8b:1b:5f:61:b3:0f:43:1b:ec:
90:d9:9c:b4:60:52:b0:dc:1c:d4:f2:b4:f5:0f:bd:
e4:df:3f:27:e5:d8:a8:53:e7:3e:2c:16:59:5e:83:
dc:9a:7e:b9:12:19:cb:aa:73:5a:27:48:39:27:8c:
56:8d:ed:ec:46:dd:5b:15:a4:40:c7:06:eb:5f:6e:
f9:54:de:a9:9a:dd:ac:e3:58:e5:9c:90:f9:8c:5a:
8c:01:10:7b:f6:b8:45:0b:29:e5:f0:64:12:0b:9c:
71:f6:01:db:c3:b9:1f:44:56:47:67:67:c7:4d:39:
1f:9d:34:96:31:39:15:f4:2d:03:cd:4e:6f:d8:bd:
14:c1:fd:09:30:30:10:19:95:85:70:93:63:e7:7e:
ab:17:65:bf:ae:81:69:07:53:92:b5:9b:87:2c:92:
29:e5:b2:4a:40:da:0a:3a:86:c4:02:69:55:2e:91:
34:55:15:db:9f:be:ac:e7:25:fc:de:62:61:31:db:
de:7b:26:6c:13:a7:6b:be:d2:54:d9:12:cf:3d:37:
65:02:cc:52:65:8e:65:0b:db:43:ec:26:f6:70:bd:
85:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:DB:8F:2A:5C:68:AD:FD:AD:25:C9:41:D3:5F:11:25:BC:38:4F:D6
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6392329076C011F0BAA51FD8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.239.144.0/22
156.242.234.0-156.242.240.255
156.248.2.0/23
156.248.22.0/24
156.248.24.0/21
156.248.64.0/21
156.249.120.0/24
Signature Algorithm: sha256WithRSAEncryption
33:aa:a5:62:67:53:7f:e8:6f:c1:c7:1c:3f:d0:72:d9:46:e6:
a7:54:2c:8f:5e:0b:7b:3b:5d:84:42:2a:b4:4c:68:4b:bc:e7:
d8:8b:0c:dd:dc:1b:5c:6c:7e:8c:82:45:a6:13:06:27:6c:c3:
4a:38:8d:db:6f:21:6d:17:1c:24:7f:ac:0a:19:73:cc:d5:87:
72:03:a0:2d:90:0f:76:28:34:cd:0d:72:52:12:83:88:c9:38:
e3:04:83:97:c4:4c:f4:fa:6a:04:f9:cb:59:3b:d0:e6:fb:36:
6f:0f:fc:c5:f9:69:b2:41:d8:a8:4a:16:42:d6:ba:a2:b0:b3:
b4:d8:4b:8a:c3:7f:5b:6f:95:e4:fe:c4:d5:f5:82:ce:0b:11:
82:9a:ec:1a:bd:3e:81:a0:78:8a:50:f3:fd:68:0c:b4:8b:31:
ff:9b:61:dc:43:e4:c5:22:7e:0e:81:86:52:96:ec:ca:76:36:
df:bd:6b:3c:33:f6:c6:93:e3:57:d8:ba:ae:fd:24:2f:ee:cf:
4b:e6:7f:ba:55:7a:de:e6:ea:e4:42:47:75:8e:7e:4e:fc:9a:
13:ea:26:ea:da:7e:9c:2d:35:3f:77:4a:03:84:81:1e:d2:6f:
ee:d2:cb:d7:47:f6:96:b1:46:d7:a5:73:4f:5c:ef:e6:00:66:
f7:c4:cd:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 07:16:03 2025 by rpki-client