Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F2F78AD27ACD11F0865A5EC1DAE4EC9C.roa
File: F2F78AD27ACD11F0865A5EC1DAE4EC9C.roa (raw, json)
Hash identifier: F2CiaAEoheb0AJPbmAFd5LpqCwd5BEZzIoJCDvmIOjU=
Subject key identifier: DB:A4:48:DF:A6:6E:0C:1F:B7:53:01:FF:7D:FF:77:75:BF:93:75:56
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016B91
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F2F78AD27ACD11F0865A5EC1DAE4EC9C.roa
Signing time: Sat 16 Aug 2025 18:22:21 +0000
ROA not before: Sat 16 Aug 2025 18:22:17 +0000
ROA not after: Sat 04 Oct 2025 18:22:17 +0000
asID: 138195
IP address blocks: 156.234.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93073 (0x16b91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 16 18:22:17 2025 GMT
Not After : Oct 4 18:22:17 2025 GMT
Subject: CN=68a0cc5d-90a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:3e:9d:18:f2:04:9d:0a:e1:38:82:0a:f1:bb:
47:81:1c:41:ee:41:bf:90:79:9e:65:c4:64:25:0d:
e1:0f:6a:71:31:ea:03:7b:26:14:9e:d8:59:5e:bd:
89:a6:0b:99:dc:96:8a:19:7e:ea:f9:f1:5a:25:34:
a2:39:76:43:87:75:68:d6:4d:30:97:42:dd:be:4c:
67:93:1a:d8:91:4d:79:06:6f:af:ce:26:54:b2:72:
b4:9c:ce:19:19:cd:3d:fb:15:8d:87:bc:b5:26:b4:
76:2f:e3:76:f4:cb:3e:e6:de:89:aa:df:b3:89:42:
25:28:c3:e6:a9:4e:47:6f:87:67:28:82:ef:16:00:
0a:14:0a:f2:95:01:e0:e0:e6:2a:20:33:10:49:3c:
e3:80:94:7a:46:ba:96:fd:9f:10:e1:d3:cf:0c:6e:
ff:7f:d3:5c:dc:40:15:b3:d0:2d:ee:1a:09:73:66:
09:5f:41:75:97:4f:16:81:e4:37:c2:9f:35:8d:22:
8f:8d:18:b6:b6:22:e3:ea:9f:54:36:f4:c2:48:f1:
c4:e5:95:5f:0e:09:01:99:c7:d4:36:49:44:e8:70:
8a:0e:08:79:72:a9:4a:ee:bf:82:d9:9e:5d:ec:ee:
31:00:d9:ce:cd:44:f6:de:19:91:cb:b4:75:bd:df:
c8:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:A4:48:DF:A6:6E:0C:1F:B7:53:01:FF:7D:FF:77:75:BF:93:75:56
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F2F78AD27ACD11F0865A5EC1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.234.0.0/16
Signature Algorithm: sha256WithRSAEncryption
6d:01:41:65:88:51:1d:c5:ee:79:e0:28:f8:0e:18:ec:79:93:
d1:f0:a0:89:5b:ff:29:cb:49:d0:a2:84:24:8d:f7:9a:fa:95:
71:cd:5b:2a:24:7a:4b:f5:65:43:ac:3d:b7:8f:8d:8a:6e:a8:
fe:a2:79:d5:72:a3:06:56:19:5b:34:7a:df:bb:5a:72:09:98:
77:9b:1c:2d:0c:c1:07:ac:fd:5f:b4:d9:71:71:99:4b:20:fd:
74:af:26:ff:ad:f2:67:c5:0a:79:35:95:9d:b9:80:25:5e:a5:
cd:08:c3:22:91:84:c1:8e:3c:ab:ec:4d:dd:18:da:41:77:c1:
b0:e1:f0:a0:c8:7e:b5:e3:b0:86:25:f7:62:82:dd:73:42:21:
04:8f:b6:99:20:76:78:da:38:d5:e0:3c:21:f7:6d:3d:9d:83:
b1:a0:4a:f5:82:58:7f:7e:8c:cd:1b:ef:a4:9f:f9:dc:ad:01:
b1:f4:2a:b9:c7:80:59:9e:01:20:bc:3a:ce:92:c5:d4:f8:e1:
cb:e3:bc:05:36:ea:41:79:9e:5b:cc:f4:f2:f5:92:dc:12:35:
da:c9:cc:65:cb:92:a8:0b:34:81:fb:b2:34:60:e2:e5:b1:80:
34:a1:4f:a0:73:3a:e4:6d:67:4e:f5:50:a5:dc:a4:ca:e2:a2:
10:ad:07:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:04:30 2025 by rpki-client