Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/75A6D30A9D0811F092ADDF78DAE4EC9C.roa
File: 75A6D30A9D0811F092ADDF78DAE4EC9C.roa (raw, json)
Hash identifier: qbTofwghA4tV3yIdTj/+wdAPCevCxzFK+GyU7W7kOQI=
Subject key identifier: BD:D2:BF:FF:7A:0C:32:9E:6D:7C:64:AF:8C:83:74:35:E6:18:F6:60
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017D92
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/75A6D30A9D0811F092ADDF78DAE4EC9C.roa
Signing time: Mon 29 Sep 2025 07:46:51 +0000
ROA not before: Mon 29 Sep 2025 07:46:45 +0000
ROA not after: Thu 30 Oct 2025 07:46:45 +0000
asID: 57043
IP address blocks: 156.229.232.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97682 (0x17d92)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 29 07:46:45 2025 GMT
Not After : Oct 30 07:46:45 2025 GMT
Subject: CN=68da396b-c75c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:ab:3d:77:93:46:cf:6f:33:fd:bc:d8:d4:7b:
0b:92:c7:a4:28:87:da:bb:2b:45:36:90:45:76:e2:
74:8b:31:54:a7:e5:ed:ac:79:54:67:1e:1a:15:dc:
da:11:f4:ce:50:44:6b:bf:bc:90:87:a3:2c:89:bd:
52:e3:1a:fe:d5:ca:33:b9:94:d9:2f:57:06:09:17:
7c:ef:ff:45:ed:c5:ea:c7:28:38:b7:9f:64:a0:3e:
51:02:25:18:7f:a9:00:c8:86:68:34:91:2e:d0:7c:
3d:ff:81:f1:5b:1e:8e:04:08:b9:55:55:2d:6b:ae:
6d:8c:a6:2b:9e:07:af:62:8d:7d:50:43:90:b1:93:
0e:c6:87:80:6f:92:94:9e:75:a8:bd:e2:13:67:85:
59:2b:63:81:dd:70:ee:a6:8e:ef:b6:08:ad:64:8c:
9a:88:c7:f4:73:f7:0c:44:60:7d:13:61:1c:76:a0:
ca:2d:f0:0c:81:9e:c2:38:e5:fc:c6:68:5c:7f:df:
ec:23:fe:4d:46:46:f4:66:80:08:d2:95:03:87:6b:
b1:22:6b:ff:2b:ab:38:84:9d:de:85:1f:16:56:40:
f3:c7:70:8c:eb:18:e5:35:2b:6e:00:9b:94:44:61:
a5:48:ab:9e:aa:cd:60:ae:7c:1c:37:b4:f5:3b:5a:
f4:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:D2:BF:FF:7A:0C:32:9E:6D:7C:64:AF:8C:83:74:35:E6:18:F6:60
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/75A6D30A9D0811F092ADDF78DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.232.0/22
Signature Algorithm: sha256WithRSAEncryption
51:be:eb:09:79:57:39:97:d2:eb:8f:e7:e2:81:83:52:cc:9c:
98:d4:76:04:da:77:6a:54:8f:ef:62:b1:1c:d9:61:53:c4:1b:
8b:2e:3f:4d:5a:63:30:59:36:64:09:07:fb:02:a5:0c:a5:0a:
94:da:ad:71:fc:2b:0e:2f:5a:4b:f8:ee:d4:b7:04:b1:26:d4:
31:1e:a6:11:51:4a:e7:7d:79:a1:d1:be:1f:e3:5f:de:c8:f0:
85:49:aa:e8:14:16:d1:7f:3a:c9:d8:8a:e7:e5:bf:01:5b:f7:
c0:28:6d:aa:c5:bb:b3:71:5b:52:62:8d:68:f6:05:b8:ae:ce:
11:65:a5:d0:51:10:1f:19:9a:fc:8a:24:06:a2:1e:01:dd:82:
0a:70:96:7e:80:a5:10:1f:ed:89:17:fa:fb:59:0d:7a:0c:48:
54:e1:2e:30:8c:30:02:81:76:9b:8c:1a:2c:59:8a:62:c4:35:
d6:95:27:00:37:f9:0e:25:d2:d3:2b:05:96:90:56:c1:18:8a:
39:4f:cd:3e:4f:84:a5:e4:94:f3:6e:68:2d:67:8d:34:6b:91:
b3:cd:02:b3:4d:15:b6:9d:27:4a:8d:ae:8d:7c:81:97:36:a5:
95:fe:77:cc:c9:28:ad:65:85:9d:e2:c8:81:84:13:a0:7e:33:
3d:35:f7:2a
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAX2SMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwOTI5MDc0NjQ1WhcNMjUxMDMwMDc0NjQ1WjAYMRYw
FAYDVQQDEw02OGRhMzk2Yi1jNzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA4qs9d5NGz28z/bzY1HsLksekKIfauytFNpBFduJ0izFUp+XtrHlUZx4a
FdzaEfTOUERrv7yQh6Msib1S4xr+1cozuZTZL1cGCRd87/9F7cXqxyg4t59koD5R
AiUYf6kAyIZoNJEu0Hw9/4HxWx6OBAi5VVUta65tjKYrngevYo19UEOQsZMOxoeA
b5KUnnWoveITZ4VZK2OB3XDupo7vtgitZIyaiMf0c/cMRGB9E2EcdqDKLfAMgZ7C
OOX8xmhcf9/sI/5NRkb0ZoAI0pUDh2uxImv/K6s4hJ3ehR8WVkDzx3CM6xjlNStu
AJuURGGlSKueqs1grnwcN7T1O1r0cQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFL3S
v/96DDKebXxkr4yDdDXmGPZgMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC83NUE2RDMwQTlEMDgxMUYwOTJBRERGNzhEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCnOXoMA0GCSqGSIb3DQEBCwUA
A4IBAQBRvusJeVc5l9Lrj+figYNSzJyY1HYE2ndqVI/vYrEc2WFTxBuLLj9NWmMw
WTZkCQf7AqUMpQqU2q1x/CsOL1pL+O7UtwSxJtQxHqYRUUrnfXmh0b4f41/eyPCF
SaroFBbRfzrJ2Irn5b8BW/fAKG2qxbuzcVtSYo1o9gW4rs4RZaXQURAfGZr8iiQG
oh4B3YIKcJZ+gKUQH+2JF/r7WQ16DEhU4S4wjDACgXabjBosWYpixDXWlScAN/kO
JdLTKwWWkFbBGIo5T80+T4Sl5JTzbmgtZ400a5GzzQKzTRW2nSdKja6NfIGXNqWV
/nfMySitZYWd4siBhBOgfjM9Nfcq
-----END CERTIFICATE-----
Generated at Sun Oct 19 22:25:38 2025 by rpki-client