Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CE830C507E8B11F0B09F6DC5DAE4EC9C.roa
File: CE830C507E8B11F0B09F6DC5DAE4EC9C.roa (raw, json)
Hash identifier: 8dIBXGv2GVeK8uXAsWUW8pExl+rmWXnyL6OU/GdQ6D0=
Subject key identifier: FA:50:31:C0:E6:D5:F4:4E:5D:16:F6:48:09:28:AB:C4:55:70:71:9A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016E39
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CE830C507E8B11F0B09F6DC5DAE4EC9C.roa
Signing time: Thu 21 Aug 2025 12:38:58 +0000
ROA not before: Thu 21 Aug 2025 12:38:53 +0000
ROA not after: Tue 21 Aug 2035 12:38:53 +0000
asID: 17561
IP address blocks: 156.231.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93753 (0x16e39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 21 12:38:53 2025 GMT
Not After : Aug 21 12:38:53 2035 GMT
Subject: CN=68a71362-95b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:9e:86:41:6c:46:a2:b6:6d:dc:4f:1a:b9:79:
34:b4:08:0c:57:12:a0:ae:d5:af:2a:05:0b:aa:62:
5e:84:f1:c8:4b:3c:08:9b:f1:6a:fc:16:e3:e4:17:
48:18:b5:b2:1c:29:bf:ab:48:d9:a0:23:e8:d9:94:
29:dc:8a:0c:74:8d:03:6b:8c:57:42:a6:ff:df:88:
37:a0:92:0e:85:98:3c:51:5d:ac:7d:35:ff:fe:ec:
a9:86:93:cd:71:1e:3d:36:db:9c:80:ec:57:8c:94:
0f:21:e6:88:02:3c:8c:c1:0c:75:45:52:c0:15:8a:
0a:19:ca:bb:6a:9f:68:b0:0c:0a:f9:7c:fd:bb:71:
77:45:e6:36:25:18:e8:ed:2f:90:d3:78:f1:cb:a3:
5d:d8:8d:bc:a8:17:87:4d:da:75:57:c9:d1:28:95:
71:3b:43:77:47:1c:64:72:67:57:41:da:5c:dc:d9:
bf:e0:09:ae:63:97:27:ad:61:98:92:fd:26:42:d7:
6e:93:c9:39:54:7f:da:8a:f9:17:2e:a1:72:cd:60:
46:39:93:b3:5a:f7:b3:45:2a:96:67:a8:a2:5d:6a:
56:49:dc:8a:70:d4:59:d8:db:fd:a1:6e:88:53:6e:
a7:67:7a:bb:45:0d:6c:8f:cd:d3:f9:76:1b:76:d7:
9d:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:50:31:C0:E6:D5:F4:4E:5D:16:F6:48:09:28:AB:C4:55:70:71:9A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CE830C507E8B11F0B09F6DC5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.231.0.0/16
Signature Algorithm: sha256WithRSAEncryption
78:80:f4:32:4e:8a:12:ca:64:92:18:34:8a:83:50:22:4e:1c:
07:93:e1:ef:40:37:e9:1f:2e:3d:1a:6d:7b:52:d8:0d:30:8d:
6d:7b:93:40:62:b2:01:24:1f:35:fd:37:65:75:12:87:42:3d:
f2:10:c0:d2:1d:27:e0:36:ba:9c:51:c2:b8:d7:cb:fd:b0:8e:
ee:dc:28:a8:03:b4:ff:28:ab:a9:e5:e1:62:80:14:fd:bc:78:
77:8e:b5:01:25:87:b1:ef:92:62:c1:4b:fe:34:b5:1f:8a:4f:
c1:80:89:44:40:fd:07:b9:55:90:a9:ec:3b:36:8d:c4:c3:63:
a6:bb:36:9e:ba:0b:f4:82:b4:fc:42:6a:28:8f:a2:4e:36:62:
37:41:33:83:97:8b:01:8c:7e:d7:3e:bb:1d:76:9d:06:97:92:
c9:44:1e:88:82:9a:9a:49:35:50:6a:2c:cd:c6:32:42:d6:fe:
b0:98:58:ec:9a:75:61:a2:f3:19:a1:42:09:5f:9a:87:5a:e0:
df:2a:e0:71:80:4d:c3:f5:f3:f0:24:6f:a4:fe:78:ad:2c:5c:
e2:ad:69:c9:49:7f:69:d5:bd:d8:21:aa:55:ea:33:cb:2c:1d:
f3:b8:6a:05:9c:27:f6:8f:c6:13:ae:3e:3e:82:15:8b:f4:e6:
29:7a:b9:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 07:18:20 2025 by rpki-client