Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/80D2CAF2753C11F08A603F79DAE4EC9C.roa
File: 80D2CAF2753C11F08A603F79DAE4EC9C.roa (raw, json)
Hash identifier: 1860sNsNqhTFMpSqbIYnDBit9calbh17vYAkTOy4Twc=
Subject key identifier: B9:A6:83:91:92:5D:13:CC:D0:1A:3F:04:55:67:1E:4E:29:9E:58:49
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016A02
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/80D2CAF2753C11F08A603F79DAE4EC9C.roa
Signing time: Sat 09 Aug 2025 16:18:37 +0000
ROA not before: Sat 09 Aug 2025 16:18:32 +0000
ROA not after: Mon 22 Sep 2025 16:18:32 +0000
asID: 401701
IP address blocks: 156.225.16.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92674 (0x16a02)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 9 16:18:32 2025 GMT
Not After : Sep 22 16:18:32 2025 GMT
Subject: CN=689774dd-8499
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d0:34:8e:76:ad:2a:92:bc:b6:8f:aa:98:fe:
5e:bf:d8:17:79:cb:a5:4a:6f:6e:1f:c1:05:d4:fa:
77:af:5c:5b:8f:ef:9e:eb:a2:86:b1:32:6d:01:ea:
16:c0:43:ea:c7:27:a3:84:6c:5c:d0:73:b8:19:b5:
e0:b6:52:b5:59:70:fc:cc:4c:56:ad:9c:b7:c3:2b:
ef:d1:61:ac:87:82:4f:a1:4c:52:85:98:88:f5:dc:
7f:87:2e:66:58:b8:9f:db:9d:b8:67:8b:cb:2a:d6:
a2:3d:07:36:01:75:8b:04:76:42:5f:91:b5:0c:21:
de:1c:d5:c9:44:ea:6d:99:7a:eb:72:c3:0e:5e:6a:
47:f2:80:c1:6d:69:c6:c4:75:44:a1:6e:bc:41:dc:
ae:91:91:64:b4:2a:d5:6a:17:c2:59:55:48:ea:62:
fc:54:b2:b1:3f:87:21:e6:d5:4e:fa:e1:67:c3:e7:
4b:30:35:92:4c:de:48:cf:ba:08:e6:44:cb:74:14:
5b:64:d9:90:ed:f8:9d:9b:ec:ad:27:b4:0e:3e:ab:
ed:88:f7:12:8b:d4:63:27:91:ad:9a:d9:87:99:99:
14:c1:7b:a6:f5:fd:83:20:c0:a2:8d:60:e9:3d:df:
fa:1f:b0:d4:36:c3:6e:eb:37:66:87:3e:bd:e9:ec:
5f:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:A6:83:91:92:5D:13:CC:D0:1A:3F:04:55:67:1E:4E:29:9E:58:49
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/80D2CAF2753C11F08A603F79DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.16.0/20
Signature Algorithm: sha256WithRSAEncryption
6d:9f:de:01:94:06:15:52:19:03:1a:7f:d0:f1:17:9d:32:c6:
64:dc:09:41:f6:ad:a0:78:9d:cd:5c:59:68:73:cc:ec:d6:29:
e7:ec:9f:e8:a2:81:cb:9e:12:12:9d:67:9c:33:9d:20:14:7b:
d2:48:7d:13:bb:6e:b7:c1:18:06:72:44:5f:e6:bc:d2:9e:6b:
15:02:46:80:7b:77:a1:5c:f1:d9:ef:e1:5c:94:03:07:ed:5c:
b1:2d:23:45:b1:45:55:f1:7e:f0:90:07:24:f6:c2:73:b9:18:
9c:b1:07:a0:a8:5f:4d:7d:76:99:03:fd:dd:3d:d1:b8:c5:7f:
5e:bd:46:e1:8a:a2:03:0b:03:ad:08:14:e8:f5:12:8b:d0:e3:
a3:cb:bf:51:fb:1a:34:18:57:d7:b4:14:85:ea:ee:40:37:02:
ef:1f:16:44:c6:86:e7:c2:8f:42:30:0a:55:7a:e0:f1:d9:98:
de:57:99:7f:76:11:fe:e6:77:fe:5b:6c:fd:48:ff:89:63:31:
f6:59:7c:04:f4:b9:cd:19:36:68:69:8b:df:08:45:46:6d:c4:
cb:df:27:5c:24:31:12:72:2e:f2:82:99:29:89:71:b5:77:ad:
67:aa:6c:bf:bd:ee:a3:3a:25:af:ce:44:86:90:ee:5d:b3:12:
80:d9:09:be
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAWoCMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwODA5MTYxODMyWhcNMjUwOTIyMTYxODMyWjAYMRYw
FAYDVQQDEw02ODk3NzRkZC04NDk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtNA0jnatKpK8to+qmP5ev9gXeculSm9uH8EF1Pp3r1xbj++e66KGsTJt
AeoWwEPqxyejhGxc0HO4GbXgtlK1WXD8zExWrZy3wyvv0WGsh4JPoUxShZiI9dx/
hy5mWLif2524Z4vLKtaiPQc2AXWLBHZCX5G1DCHeHNXJROptmXrrcsMOXmpH8oDB
bWnGxHVEoW68QdyukZFktCrVahfCWVVI6mL8VLKxP4ch5tVO+uFnw+dLMDWSTN5I
z7oI5kTLdBRbZNmQ7fidm+ytJ7QOPqvtiPcSi9RjJ5GtmtmHmZkUwXum9f2DIMCi
jWDpPd/6H7DUNsNu6zdmhz696exfwQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFLmm
g5GSXRPM0Bo/BFVnHk4pnlhJMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC84MEQyQ0FGMjc1M0MxMUYwOEE2MDNGNzlEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEnOEQMA0GCSqGSIb3DQEBCwUA
A4IBAQBtn94BlAYVUhkDGn/Q8RedMsZk3AlB9q2geJ3NXFloc8zs1inn7J/oooHL
nhISnWecM50gFHvSSH0Tu263wRgGckRf5rzSnmsVAkaAe3ehXPHZ7+FclAMH7Vyx
LSNFsUVV8X7wkAck9sJzuRicsQegqF9NfXaZA/3dPdG4xX9evUbhiqIDCwOtCBTo
9RKL0OOjy79R+xo0GFfXtBSF6u5ANwLvHxZExobnwo9CMApVeuDx2ZjeV5l/dhH+
5nf+W2z9SP+JYzH2WXwE9LnNGTZoaYvfCEVGbcTL3ydcJDESci7ygpkpiXG1d61n
qmy/ve6jOiWvzkSGkO5dsxKA2Qm+
-----END CERTIFICATE-----
Generated at Sat Aug 23 09:04:45 2025 by rpki-client