Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D5B67C98AD9111F0B35F19E6DAE4EC9C.roa
File: D5B67C98AD9111F0B35F19E6DAE4EC9C.roa (raw, json)
Hash identifier: pwtZQrbtPb0hvZHFsSPR5aeJBXx3d/MRKoOCr6UpLUQ=
Subject key identifier: B4:65:A4:45:65:9E:A7:45:20:3B:2A:35:7D:7C:6F:EC:59:4B:85:FF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 018197
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D5B67C98AD9111F0B35F19E6DAE4EC9C.roa
Signing time: Mon 20 Oct 2025 08:50:32 +0000
ROA not before: Mon 20 Oct 2025 08:50:25 +0000
ROA not after: Wed 26 Nov 2025 08:50:25 +0000
asID: 140869
IP address blocks: 156.225.80.0/24 maxlen: 24
156.225.81.0/24 maxlen: 24
156.225.82.0/24 maxlen: 24
156.225.83.0/24 maxlen: 24
156.225.84.0/24 maxlen: 24
156.225.85.0/24 maxlen: 24
156.225.86.0/24 maxlen: 24
156.225.87.0/24 maxlen: 24
156.225.88.0/24 maxlen: 24
156.225.89.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 22 Oct 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98711 (0x18197)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 20 08:50:25 2025 GMT
Not After : Nov 26 08:50:25 2025 GMT
Subject: CN=68f5f7d8-aa96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ff:22:88:bd:5c:a8:62:5e:ad:06:7b:d1:7a:
e3:74:1c:0f:be:29:c0:3e:70:a7:9f:c5:e4:0a:98:
01:9f:89:d7:4f:de:bc:54:86:12:b1:e9:10:95:8f:
53:f1:b1:2d:95:12:9f:91:3d:59:93:dc:8b:3f:6b:
0a:84:42:98:a3:39:aa:75:ca:7f:d1:bc:b9:c3:87:
63:6f:49:31:44:81:81:9d:05:61:24:36:ed:f7:f0:
08:c9:92:cd:90:06:00:5b:65:87:f2:d1:2f:26:8d:
4d:9a:d0:77:a2:49:9b:f6:73:8e:be:bd:2b:c4:49:
58:52:63:99:93:9a:bd:b2:33:e6:fd:05:df:7c:e7:
4d:c0:b1:8e:61:3e:c2:58:c0:f9:8f:28:0d:48:5b:
6c:54:4b:11:93:b1:24:06:a1:e4:8b:68:ca:37:d7:
3b:c5:44:ab:91:e4:8c:69:a9:ae:08:5a:d6:ef:b4:
08:af:1f:7f:e2:59:c2:13:af:f6:ae:e6:00:f2:04:
f3:85:d2:75:e9:dc:37:8f:87:c2:d8:d1:51:e4:64:
13:4b:f0:6b:1a:ec:27:3c:f2:36:02:b1:fb:16:f5:
96:69:6d:1a:0f:fa:01:e0:8b:35:9b:57:99:db:03:
30:88:e7:ff:aa:f5:da:1d:cb:8c:3f:66:a1:f9:38:
f2:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:65:A4:45:65:9E:A7:45:20:3B:2A:35:7D:7C:6F:EC:59:4B:85:FF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D5B67C98AD9111F0B35F19E6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.80.0-156.225.89.255
Signature Algorithm: sha256WithRSAEncryption
23:e6:7a:59:41:37:02:20:b2:e7:b9:dc:e6:05:e9:61:b9:e9:
af:b2:c8:15:d8:20:b7:33:85:4b:a3:7c:bb:90:86:55:20:b4:
ba:a7:15:69:81:a1:c1:70:23:53:42:d1:81:b7:6b:4f:9b:d6:
f1:97:ca:e7:f9:b3:e2:9e:d9:25:f0:cd:e5:f6:8a:52:e8:54:
12:b6:c0:d2:cb:36:5c:62:f3:8c:02:04:33:d5:79:ba:a4:b4:
16:a4:47:a4:d1:f8:22:c8:9f:71:8d:87:c9:12:18:a8:32:5d:
8b:90:25:e9:f6:cd:33:73:91:01:19:2e:96:cf:f7:5d:55:77:
a2:0d:84:59:27:7d:2c:0f:fa:c6:90:bb:ca:bd:ca:92:c9:07:
10:cc:6a:2b:44:59:bd:41:20:55:f5:8b:86:16:2c:2a:d2:5e:
74:b1:51:ad:5f:6d:17:d0:30:1d:86:2f:be:5b:6a:58:ea:22:
c2:6b:87:93:11:4d:72:ea:95:ba:b8:a3:f7:3f:c7:7e:8b:6b:
fb:48:6c:88:e9:54:9c:d6:70:9f:af:d1:59:b7:8a:78:ac:38:
a0:d6:3d:62:a3:5c:22:7d:fa:34:ea:dc:79:ea:10:fe:66:71:
76:bf:3c:cf:58:e0:95:b4:ec:b2:49:7f:8d:2d:3c:6c:02:53:
3c:e0:5c:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 21 01:12:40 2025 by rpki-client