Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7659206C7C1C11F0BA308ED3DAE4EC9C.roa
File: 7659206C7C1C11F0BA308ED3DAE4EC9C.roa (raw, json)
Hash identifier: Zt5c4jBfoB7gqMWxxxRLAVClk5XZo2/LYBcNp5LjUAg=
Subject key identifier: 2E:5B:A0:96:B1:5A:73:54:A6:80:7F:5F:C3:65:72:9C:A8:21:B6:17
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016BCC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7659206C7C1C11F0BA308ED3DAE4EC9C.roa
Signing time: Mon 18 Aug 2025 10:16:54 +0000
ROA not before: Mon 18 Aug 2025 10:16:49 +0000
ROA not after: Fri 03 Oct 2025 10:16:49 +0000
asID: 138195
IP address blocks: 156.234.0.0/16 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93132 (0x16bcc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 18 10:16:49 2025 GMT
Not After : Oct 3 10:16:49 2025 GMT
Subject: CN=68a2fd96-fc5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:73:ec:52:8c:f7:ae:37:78:aa:09:b9:90:35:
d2:c1:a7:25:5f:f1:70:4e:0f:c1:96:e7:63:02:f1:
e5:79:db:9b:23:ca:5f:94:70:6d:5c:bc:d8:5d:da:
90:26:ad:99:6d:c0:4a:01:73:38:9e:b8:95:19:f0:
11:66:63:c3:f7:f6:d1:db:f8:00:ad:1c:0e:c7:2a:
68:64:5d:13:07:77:75:ba:ea:01:d8:e6:2e:1a:ad:
70:47:2f:e8:2f:a3:e3:15:39:62:df:4c:be:be:f6:
2b:b5:0f:af:78:8b:44:a7:ff:78:e5:a0:68:16:dd:
84:f2:29:82:cf:d2:d3:39:4c:a8:fd:b0:e5:01:60:
c4:d6:06:19:e5:cf:3e:57:bf:03:4a:9d:1e:2a:dc:
b9:68:bf:db:8e:f2:23:5d:32:37:2a:18:c0:94:e7:
ca:60:47:81:e1:c6:e2:81:59:d5:ef:2a:28:f4:ea:
e6:61:e8:f1:af:99:43:2d:5d:96:47:d8:2b:5f:75:
36:2b:4d:7a:37:46:11:54:32:16:ee:e6:ed:d4:da:
c6:6a:28:ed:5c:08:9c:0c:5f:04:c0:7a:b7:d2:78:
cc:c7:4c:de:0c:17:22:f9:b6:84:2e:75:fe:d1:fc:
8d:13:33:71:55:8a:7b:d7:ff:3a:f6:8c:c8:dc:6e:
25:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:5B:A0:96:B1:5A:73:54:A6:80:7F:5F:C3:65:72:9C:A8:21:B6:17
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7659206C7C1C11F0BA308ED3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.234.0.0/16
Signature Algorithm: sha256WithRSAEncryption
9d:d5:2e:a6:6b:fe:2d:1f:85:fb:48:e0:27:a9:ca:0f:55:1a:
0c:b9:a1:ba:ca:27:78:f6:4a:9f:e8:76:ed:13:19:79:87:48:
57:72:72:de:df:5f:59:3a:5d:ac:1a:e1:fe:65:05:bb:d1:bd:
0e:e4:ca:20:26:c5:12:55:e3:b0:1b:de:ab:c4:8f:c6:3e:de:
cd:6c:94:00:0e:d7:04:84:f3:1b:bb:82:d5:44:b1:70:96:50:
d4:cb:3f:aa:c0:04:5c:a0:50:be:d3:b2:f7:3d:a3:8a:18:74:
46:26:e2:ae:f6:44:67:03:dd:28:ab:f7:f6:e2:9f:6d:aa:cc:
d7:fb:e3:dd:c2:6e:05:5c:6a:3b:0a:c4:13:bc:ab:ba:4a:ae:
9a:8c:50:dd:32:fe:a5:c6:88:82:bd:cf:5c:ac:44:b7:bf:b1:
ac:cf:b1:0b:f0:3f:2d:e2:2c:eb:be:15:db:d1:3a:58:f1:19:
ad:b0:de:dd:91:53:db:cd:e9:53:2f:12:56:25:81:75:0c:ad:
34:d9:0a:77:5c:9a:d8:cb:e0:85:da:86:94:b7:2d:2d:e7:b4:
db:02:4b:8b:1e:13:b5:6d:02:c3:7b:35:33:75:02:c5:11:d5:
d6:20:35:5c:2d:64:7e:3e:fb:b5:5a:78:65:c0:7b:95:36:7b:
f8:d3:c1:5d
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgIDAWvMMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwODE4MTAxNjQ5WhcNMjUxMDAzMTAxNjQ5WjAYMRYw
FAYDVQQDEw02OGEyZmQ5Ni1mYzVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAknPsUoz3rjd4qgm5kDXSwaclX/FwTg/BludjAvHledubI8pflHBtXLzY
XdqQJq2ZbcBKAXM4nriVGfARZmPD9/bR2/gArRwOxypoZF0TB3d1uuoB2OYuGq1w
Ry/oL6PjFTli30y+vvYrtQ+veItEp/945aBoFt2E8imCz9LTOUyo/bDlAWDE1gYZ
5c8+V78DSp0eKty5aL/bjvIjXTI3KhjAlOfKYEeB4cbigVnV7yoo9OrmYejxr5lD
LV2WR9grX3U2K016N0YRVDIW7ubt1NrGaijtXAicDF8EwHq30njMx0zeDBci+baE
LnX+0fyNEzNxVYp71/869ozI3G4lpQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFC5b
oJaxWnNUpoB/X8NlcpyoIbYXMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC83NjU5MjA2QzdDMUMxMUYwQkEzMDhFRDNEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAnOowDQYJKoZIhvcNAQELBQAD
ggEBAJ3VLqZr/i0fhftI4Cepyg9VGgy5obrKJ3j2Sp/odu0TGXmHSFdyct7fX1k6
Xawa4f5lBbvRvQ7kyiAmxRJV47Ab3qvEj8Y+3s1slAAO1wSE8xu7gtVEsXCWUNTL
P6rABFygUL7Tsvc9o4oYdEYm4q72RGcD3Sir9/bin22qzNf7493CbgVcajsKxBO8
q7pKrpqMUN0y/qXGiIK9z1ysRLe/sazPsQvwPy3iLOu+FdvROljxGa2w3t2RU9vN
6VMvElYlgXUMrTTZCndcmtjL4IXahpS3LS3ntNsCS4seE7VtAsN7NTN1AsUR1dYg
NVwtZH4++7VaeGXAe5U2e/jTwV0=
-----END CERTIFICATE-----
Generated at Sat Aug 23 07:19:46 2025 by rpki-client