Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DFC8729E79C111F09A577D7ADAE4EC9C.roa
File: DFC8729E79C111F09A577D7ADAE4EC9C.roa (raw, json)
Hash identifier: kVCg8+TkiDsRK3HS4bd6FcE2RTTi+1rxC6OrqtvhpPM=
Subject key identifier: F5:2B:71:77:24:58:33:D3:2B:50:68:21:98:E2:5E:7B:CE:2F:06:D6
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016B48
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DFC8729E79C111F09A577D7ADAE4EC9C.roa
Signing time: Fri 15 Aug 2025 10:23:24 +0000
ROA not before: Fri 15 Aug 2025 10:23:19 +0000
ROA not after: Tue 23 Sep 2025 10:23:19 +0000
asID: 138648
IP address blocks: 156.247.62.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93000 (0x16b48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 15 10:23:19 2025 GMT
Not After : Sep 23 10:23:19 2025 GMT
Subject: CN=689f0a9c-7976
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:d0:ec:79:7a:96:d8:b2:b8:0e:21:a1:a3:83:
7c:f3:3a:00:59:36:f2:aa:5b:a6:f6:5e:00:59:01:
a7:f0:9a:90:74:de:70:45:d5:2b:41:16:30:7a:1a:
07:75:b1:35:fc:02:3b:cc:dd:80:fa:62:5b:72:f9:
6c:2c:1d:60:39:bd:57:50:dc:69:e5:f0:68:ac:4c:
17:b8:56:7a:07:48:bc:42:26:6e:0b:03:9f:0f:95:
fa:e9:a0:87:9e:47:6c:b6:ab:f8:c1:16:5c:a1:d2:
66:47:bd:d1:a5:46:88:bf:19:ca:7d:e1:cc:e1:14:
ea:c9:6c:32:3e:93:09:d4:1e:62:51:2a:d8:3c:b3:
35:61:fe:36:fb:41:b4:d4:c9:d7:d8:90:63:8f:ae:
28:c3:81:17:b1:96:80:10:39:99:73:c9:f0:04:02:
a7:a5:72:24:c5:8f:2e:4c:3d:1c:25:4f:f3:1d:39:
c0:ef:a3:9f:c7:c8:b3:08:7e:86:e6:6c:cf:4e:89:
47:8e:ab:7b:3a:41:a5:bd:97:7e:78:0f:b5:78:08:
4b:4d:9d:0a:86:a7:97:09:81:4f:7f:fe:7b:cd:93:
59:48:95:6d:cb:c4:7d:38:9e:0b:fc:af:fe:3e:a8:
03:e0:43:a2:a8:4f:55:b5:3f:14:e0:b6:ba:8a:a3:
6d:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:2B:71:77:24:58:33:D3:2B:50:68:21:98:E2:5E:7B:CE:2F:06:D6
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DFC8729E79C111F09A577D7ADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.62.0/24
Signature Algorithm: sha256WithRSAEncryption
88:30:d3:9e:b2:5d:37:4b:a4:49:37:0a:53:17:0f:88:df:e7:
ad:69:95:a9:07:9f:b3:ca:c2:6a:7e:3a:b4:5c:ac:e2:50:22:
2d:fe:f2:b8:84:6b:13:c0:82:98:90:17:ed:73:04:66:d2:d7:
60:08:cf:f3:64:08:64:2e:ff:c6:f2:87:6f:79:d8:2d:0c:61:
4d:ab:17:e2:b7:2c:ae:f9:29:ed:d9:83:fc:05:57:10:8e:c3:
be:6b:86:36:10:da:80:3f:43:b6:e6:5c:67:1a:a4:2c:3f:a0:
56:d9:24:a2:27:22:62:34:e3:27:b8:f2:51:3a:7b:75:18:da:
d1:20:cd:c0:69:15:46:5e:51:70:2d:88:0e:14:b4:25:20:5e:
c6:bb:e5:53:12:5c:ea:97:c6:4b:0e:68:7e:ce:29:33:3f:59:
44:21:2a:7b:2e:5b:75:eb:e6:78:a1:0a:dd:17:16:9e:82:70:
d7:49:0f:61:63:55:8c:60:10:67:2a:f7:81:0a:af:b5:b2:b8:
da:d8:64:79:6a:b7:03:43:a8:1f:9b:6d:98:65:cc:d8:fe:5e:
26:56:78:e2:71:ec:3c:18:fc:fc:05:ec:d6:01:70:75:1d:b7:
8e:09:53:96:39:a9:e1:7b:00:e4:0c:37:37:95:16:76:0b:ca:
f1:e8:6d:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:00:16 2025 by rpki-client