Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9B3349687AB311F0A0A0379CDAE4EC9C.roa
File: 9B3349687AB311F0A0A0379CDAE4EC9C.roa (raw, json)
Hash identifier: ca6gqS3+5vaybSZKln1N5IjrJ+KbZVFEayLZIxsnYug=
Subject key identifier: B6:52:59:EB:DD:2E:BF:87:A3:0C:FD:95:02:06:F0:60:0B:B4:7A:F5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016B59
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9B3349687AB311F0A0A0379CDAE4EC9C.roa
Signing time: Sat 16 Aug 2025 15:13:47 +0000
ROA not before: Sat 16 Aug 2025 15:13:42 +0000
ROA not after: Thu 16 Oct 2025 15:13:42 +0000
asID: 64013
IP address blocks: 156.247.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93017 (0x16b59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 16 15:13:42 2025 GMT
Not After : Oct 16 15:13:42 2025 GMT
Subject: CN=68a0a02b-6f06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:72:47:a4:76:2d:53:61:dd:2f:2f:2d:a8:42:
68:6d:df:c6:2e:f5:21:68:2d:88:11:9b:85:a3:8b:
42:3f:d0:51:79:f7:76:71:eb:30:58:9c:2d:c6:32:
f6:b9:8c:f4:4a:02:f8:61:74:be:b6:1b:f1:e8:a5:
ae:20:0b:78:10:b0:d1:c5:db:00:90:fb:49:4c:9e:
c5:16:11:b1:ff:3e:d6:65:5d:81:31:9c:59:fe:c3:
e3:be:1c:dc:1e:cc:c7:fa:82:63:a7:0f:80:ed:64:
9c:05:67:ae:b2:ae:fa:3a:3d:f4:6d:aa:87:8d:d3:
87:a3:26:2f:20:74:f0:ff:8d:8c:0d:5e:3f:72:95:
15:0f:24:87:6f:5b:79:2a:6d:33:6f:97:e1:21:9d:
f9:f7:6e:27:a3:9e:76:5e:75:e2:17:88:5c:f2:96:
e0:e9:0f:5f:fd:70:e8:a1:ed:49:5d:ef:75:2b:0a:
0b:5f:27:72:cf:f3:59:5a:f0:4b:93:29:fa:40:3c:
74:08:c1:e8:ac:4b:b7:2e:f1:f4:93:2e:f2:f8:3f:
ea:59:73:66:d5:b4:cf:54:1b:a8:a0:71:63:51:cb:
66:77:b7:dd:7d:7c:51:44:69:41:2b:26:52:8c:f3:
c4:71:91:50:59:6c:95:d8:f7:db:ac:f4:eb:f9:43:
c6:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:52:59:EB:DD:2E:BF:87:A3:0C:FD:95:02:06:F0:60:0B:B4:7A:F5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9B3349687AB311F0A0A0379CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.32.0/19
Signature Algorithm: sha256WithRSAEncryption
2d:fa:c0:ae:5a:75:61:c7:44:46:82:f2:54:ad:28:e5:ce:38:
49:a7:9b:34:9d:8b:4a:de:33:fa:6e:5c:3d:36:5c:26:1b:b0:
3d:2d:3b:63:39:6d:02:e9:d5:79:25:40:3f:e0:b1:6c:ec:90:
5c:d1:8a:48:94:94:99:23:fc:60:b1:1f:75:97:9b:15:bb:45:
e5:79:c6:c8:35:6b:5d:dd:60:85:a7:f3:15:41:a8:f4:33:84:
5c:4e:5e:f5:69:b0:8f:07:c5:51:d5:cb:41:ee:e4:a8:25:1c:
11:99:bd:d4:41:21:a0:d5:7b:e6:fa:92:51:73:17:cc:24:c5:
2a:17:0d:d6:1c:c4:6d:c3:8e:75:e5:dc:3a:36:a6:d0:a9:9c:
28:a4:41:7c:11:ff:20:77:4c:d3:43:0b:31:67:a4:70:16:dd:
08:53:c5:10:e7:db:d7:bb:58:a5:83:db:75:c4:3e:3a:49:cf:
59:59:86:cf:52:83:0b:c9:27:21:fe:2d:30:21:47:f0:32:99:
55:24:ff:d2:b9:2c:9a:0d:3e:9e:76:08:06:57:66:fd:9a:d6:
42:a6:b8:3a:44:f9:6c:ce:6c:23:3f:c6:7b:1d:b4:41:b1:fb:
6c:d8:ec:ee:c0:6f:33:83:71:87:0a:5e:ea:2f:1c:48:70:7b:
2c:01:16:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:15:46 2025 by rpki-client