Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B4574FEE7CD811F09B80EEA2DAE4EC9C.roa
File: B4574FEE7CD811F09B80EEA2DAE4EC9C.roa (raw, json)
Hash identifier: qizwmV44H7rmJrup31A/sY5gFt3Wqt1TxADadURQ7no=
Subject key identifier: 00:6D:F0:69:2C:F1:D5:42:A8:3B:9B:8A:D3:8E:A0:6D:4D:55:31:0B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016BFC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B4574FEE7CD811F09B80EEA2DAE4EC9C.roa
Signing time: Tue 19 Aug 2025 08:44:23 +0000
ROA not before: Tue 19 Aug 2025 08:44:18 +0000
ROA not after: Sat 20 Sep 2025 08:44:18 +0000
asID: 214413
IP address blocks: 156.226.131.0/24 maxlen: 24
156.226.132.0/24 maxlen: 24
156.226.218.0/23 maxlen: 24
156.226.243.0/24 maxlen: 24
156.226.244.0/24 maxlen: 24
156.243.113.0/24 maxlen: 24
156.243.114.0/24 maxlen: 24
156.252.30.0/23 maxlen: 24
156.255.59.0/24 maxlen: 24
156.255.60.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93180 (0x16bfc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 19 08:44:18 2025 GMT
Not After : Sep 20 08:44:18 2025 GMT
Subject: CN=68a43967-a22e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e8:3b:79:4f:4b:8b:ee:7a:b3:a1:5f:cd:66:
9a:27:78:c4:33:6a:ef:e5:56:3e:52:13:15:27:1d:
c5:33:ef:3e:0f:b0:da:54:90:d1:6d:91:42:47:e1:
68:9c:61:86:dc:fe:8d:95:7a:c8:e9:03:4d:93:ab:
7f:32:b5:c2:ac:65:6b:af:9a:d9:49:04:4e:df:4a:
23:43:0d:3a:62:77:1b:82:ff:85:b6:31:53:5a:9e:
d0:cb:56:0b:7a:80:50:b7:91:52:cd:74:ea:f9:59:
6b:c2:ac:98:94:96:3d:25:0b:67:8d:65:b0:c1:e5:
b7:f5:ba:59:1f:08:6a:bf:e6:3f:bf:99:df:70:b7:
17:3f:6e:bf:ea:3a:30:f0:52:6d:27:16:27:eb:91:
d6:20:94:f6:38:44:0f:d2:3d:f2:42:1c:29:67:11:
83:49:9a:51:32:e2:fe:7a:21:26:ae:58:bb:df:5f:
1d:0b:a9:4a:89:df:08:20:5c:13:5b:eb:18:06:28:
18:bb:cf:e5:b8:3a:3e:e3:85:c0:9c:e7:56:4d:66:
4c:e6:41:6a:91:92:e0:fe:09:ee:c3:92:9d:60:e8:
5c:30:5d:63:b0:e7:85:fe:63:1f:65:a8:c6:4e:19:
f6:09:f9:17:38:29:a0:19:77:fa:38:76:b9:3c:92:
46:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:6D:F0:69:2C:F1:D5:42:A8:3B:9B:8A:D3:8E:A0:6D:4D:55:31:0B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B4574FEE7CD811F09B80EEA2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.226.131.0-156.226.132.255
156.226.218.0/23
156.226.243.0-156.226.244.255
156.243.113.0-156.243.114.255
156.252.30.0/23
156.255.59.0-156.255.60.255
Signature Algorithm: sha256WithRSAEncryption
a6:3b:dd:f8:5f:9b:7c:9e:14:95:84:42:fd:74:67:ea:91:ea:
c2:06:d6:23:7b:bd:31:90:07:9d:4a:c8:36:8d:23:1d:9a:b6:
19:39:5d:9c:cf:27:5b:65:13:21:95:8f:0b:65:98:d7:65:68:
0e:84:81:6b:72:4d:ff:d1:04:55:d7:94:1d:ae:00:07:de:af:
c4:eb:b5:fa:8f:68:6e:65:9e:16:75:a3:11:4d:72:97:a0:95:
6f:1e:a2:24:4c:32:e0:0f:77:46:5f:2c:a6:46:a6:61:61:13:
d7:00:43:76:66:0c:13:15:fb:81:76:cc:c0:20:9e:a8:01:13:
70:6d:05:bb:18:fd:05:6e:20:c0:3c:ab:08:d4:1b:88:5b:01:
f5:6d:37:e8:1d:36:ee:0f:80:41:a0:4e:66:cf:f4:91:cb:16:
00:43:d7:03:db:1e:00:e6:5a:bb:e8:f2:b2:21:e7:bc:10:15:
41:da:f0:e8:9e:49:cf:64:6a:21:3c:07:d7:85:5b:db:2e:64:
01:c8:12:a7:3d:a7:3c:a7:e8:73:fd:6f:e3:95:5a:1b:bc:06:
97:77:59:9c:ac:47:04:55:97:ae:80:9a:32:05:26:44:99:d6:
ea:ea:76:14:cf:dc:b8:65:e9:ce:51:86:64:93:d4:c4:80:cc:
f7:cb:e0:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:24:18 2025 by rpki-client