Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A519216C76C311F0AD54ADEBDAE4EC9C.roa
File: A519216C76C311F0AD54ADEBDAE4EC9C.roa (raw, json)
Hash identifier: HVkoXryvhmYoEPdi+qeVrv5MHadaM7mVJuhR5zukMgw=
Subject key identifier: 27:B4:E6:63:B7:6C:CF:7D:CB:99:9F:16:8A:60:83:90:F1:54:D5:2A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016A44
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A519216C76C311F0AD54ADEBDAE4EC9C.roa
Signing time: Mon 11 Aug 2025 14:58:31 +0000
ROA not before: Mon 11 Aug 2025 14:58:25 +0000
ROA not after: Wed 17 Sep 2025 14:58:25 +0000
asID: 22773
IP address blocks: 156.233.41.0/24 maxlen: 24
156.233.42.0/24 maxlen: 24
156.243.96.0/22 maxlen: 24
156.243.130.0/24 maxlen: 24
156.244.144.0/20 maxlen: 24
156.248.0.0/24 maxlen: 24
156.248.4.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92740 (0x16a44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 11 14:58:25 2025 GMT
Not After : Sep 17 14:58:25 2025 GMT
Subject: CN=689a0517-b77c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:13:0b:8f:4a:ad:77:16:aa:5f:7c:e4:8b:31:
b2:58:8f:26:2b:55:17:72:fd:c7:f6:4e:82:98:4e:
e4:a1:f9:9f:45:0a:a5:c9:74:59:fe:2f:6c:a0:ac:
0d:2a:01:69:8a:f5:40:46:d0:1c:4c:88:07:12:9b:
d2:96:18:dc:50:d2:35:d8:17:5f:0d:63:9d:2f:b8:
6d:01:67:f5:a6:e2:33:63:2d:d5:39:2a:73:c9:14:
76:dc:0c:cd:66:54:f9:10:b0:5b:68:1b:78:0a:ad:
36:77:e5:24:ee:37:cb:79:2e:0c:25:ca:86:e7:a5:
af:fe:84:61:23:9c:2c:d0:c1:03:02:02:2e:fd:cd:
5f:a7:5b:af:26:e3:3e:5d:a8:66:17:64:34:88:76:
65:94:1e:db:57:14:94:41:3f:d1:b1:58:e1:f0:d7:
57:2a:2d:2c:57:e9:a8:7c:15:b4:63:08:77:18:11:
af:02:04:dd:2a:05:21:c7:4a:0a:34:d2:f8:7a:6b:
cf:d2:49:15:e5:72:c6:ba:d6:f2:47:0c:2b:9f:8c:
53:60:97:b5:7b:80:8a:2c:21:8b:51:50:64:d2:63:
31:90:42:e5:ad:24:6a:f7:30:79:dc:86:d1:ed:67:
ac:1e:c3:16:26:8e:4b:18:62:e5:b5:99:fd:e5:24:
07:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:B4:E6:63:B7:6C:CF:7D:CB:99:9F:16:8A:60:83:90:F1:54:D5:2A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A519216C76C311F0AD54ADEBDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.41.0-156.233.42.255
156.243.96.0/22
156.243.130.0/24
156.244.144.0/20
156.248.0.0/24
156.248.4.0/24
Signature Algorithm: sha256WithRSAEncryption
77:da:53:dc:f4:f5:d5:ec:b2:fc:fe:cd:94:9c:d8:32:68:b2:
92:47:ad:5c:cc:58:8f:3e:b0:30:51:a5:7b:4e:60:29:25:62:
63:0c:fa:6e:88:60:d8:7a:b9:e8:9d:18:e2:78:34:fc:ec:14:
5d:3f:fd:42:00:cf:bd:1e:5c:ea:ed:0c:de:19:f6:24:4d:5b:
e7:b3:76:9c:a4:38:29:f2:31:85:c9:eb:8a:ea:a5:cc:f9:14:
b1:cc:59:33:a3:9e:1f:ba:9a:3c:5f:9a:ee:17:84:f2:dd:72:
9c:6c:86:c5:35:02:20:22:a6:56:0c:19:ff:f0:86:bd:06:97:
fe:92:10:7c:cd:f3:e8:bf:d2:bb:e2:0b:37:e1:76:d4:4a:bc:
e4:e8:0c:33:7b:7a:9a:e5:8f:4b:52:c1:88:05:2e:a3:ba:4a:
d9:df:ee:39:bd:15:3e:76:f3:ad:48:bc:2a:aa:96:8a:2f:a8:
f8:1d:0f:71:79:c7:c5:58:6e:b0:ea:a0:63:34:e3:cf:be:fb:
2c:82:e8:f5:e4:2f:9c:8f:89:c6:1c:ed:8d:31:4e:65:02:e6:
80:be:37:4f:76:61:49:10:e3:bd:b9:27:ad:6a:c4:ee:0d:cb:
46:14:c5:a4:06:8d:4d:e0:4d:19:70:dc:e8:76:42:b6:2f:6b:
85:9b:04:30
-----BEGIN CERTIFICATE-----
MIIFpzCCBI+gAwIBAgIDAWpEMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwODExMTQ1ODI1WhcNMjUwOTE3MTQ1ODI1WjAYMRYw
FAYDVQQDEw02ODlhMDUxNy1iNzdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtBMLj0qtdxaqX3zkizGyWI8mK1UXcv3H9k6CmE7kofmfRQqlyXRZ/i9s
oKwNKgFpivVARtAcTIgHEpvSlhjcUNI12BdfDWOdL7htAWf1puIzYy3VOSpzyRR2
3AzNZlT5ELBbaBt4Cq02d+Uk7jfLeS4MJcqG56Wv/oRhI5ws0MEDAgIu/c1fp1uv
JuM+XahmF2Q0iHZllB7bVxSUQT/RsVjh8NdXKi0sV+mofBW0Ywh3GBGvAgTdKgUh
x0oKNNL4emvP0kkV5XLGutbyRwwrn4xTYJe1e4CKLCGLUVBk0mMxkELlrSRq9zB5
3IbR7WesHsMWJo5LGGLltZn95SQHfwIDAQABo4ICyDCCAsQwHQYDVR0OBBYEFCe0
5mO3bM99y5mfFopgg5DxVNUqMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9BNTE5MjE2Qzc2QzMxMUYwQUQ1NEFERUJEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MEUGCCsGAQUFBwEHAQH/BDYwNDAyBAIAATAsMAwDBACc6SkDBACc6SoDBAKc82AD
BACc84IDBASc9JADBACc+AADBACc+AQwDQYJKoZIhvcNAQELBQADggEBAHfaU9z0
9dXssvz+zZSc2DJospJHrVzMWI8+sDBRpXtOYCklYmMM+m6IYNh6ueidGOJ4NPzs
FF0//UIAz70eXOrtDN4Z9iRNW+ezdpykOCnyMYXJ64rqpcz5FLHMWTOjnh+6mjxf
mu4XhPLdcpxshsU1AiAiplYMGf/whr0Gl/6SEHzN8+i/0rviCzfhdtRKvOToDDN7
eprlj0tSwYgFLqO6Stnf7jm9FT52861IvCqqloovqPgdD3F5x8VYbrDqoGM048++
+yyC6PXkL5yPicYc7Y0xTmUC5oC+N092YUkQ4725J61qxO4Ny0YUxaQGjU3gTRlw
3Oh2QrYva4WbBDA=
-----END CERTIFICATE-----
Generated at Sat Aug 23 09:24:09 2025 by rpki-client