Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F32BF030A4DD11F0819285C8DAE4EC9C.roa
File: F32BF030A4DD11F0819285C8DAE4EC9C.roa (raw, json)
Hash identifier: InKiXkeYSTiANgnRhe+9p5OFcwwKurvbyxh0z70ONU0=
Subject key identifier: F1:39:C4:2B:CE:B8:B8:63:B4:14:4C:C1:23:B4:DF:24:B1:EB:5B:9A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017F9B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F32BF030A4DD11F0819285C8DAE4EC9C.roa
Signing time: Thu 09 Oct 2025 07:02:43 +0000
ROA not before: Thu 09 Oct 2025 07:02:36 +0000
ROA not after: Thu 30 Oct 2025 07:02:36 +0000
asID: 137547
IP address blocks: 156.245.242.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98203 (0x17f9b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 9 07:02:36 2025 GMT
Not After : Oct 30 07:02:36 2025 GMT
Subject: CN=68e75e12-428f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c1:c6:df:60:a6:10:68:82:df:37:db:72:83:
66:9b:15:1d:1a:a9:b6:af:36:57:d5:70:c6:7f:cc:
92:de:f6:66:32:ff:e6:4b:ba:b0:f3:9a:1a:e2:ba:
c7:bc:7d:5a:1f:99:32:db:3f:43:78:13:36:df:8c:
75:9e:d6:03:7f:57:11:8a:f6:b6:fe:07:26:e3:bb:
78:6b:b4:44:83:c0:8d:be:c3:6b:7a:ff:17:3c:68:
44:57:61:49:cf:79:6c:2a:9f:6c:f4:bd:67:96:6a:
67:72:a0:f9:02:ac:fb:cf:da:4f:aa:4b:ee:36:10:
f3:1b:de:2d:14:0d:96:08:11:fb:d4:21:b6:13:ac:
cc:fa:75:63:b1:7e:07:1e:b9:c3:25:91:90:fb:3f:
c6:7d:f7:50:c6:e0:b2:2a:43:58:10:06:3f:d3:e3:
d0:ae:64:69:35:39:e7:56:d5:1a:c1:18:ca:95:28:
c9:73:cd:e8:4f:8d:fa:7f:a3:fa:ef:a6:d1:2a:80:
ad:93:40:da:02:74:d0:2f:37:6a:7f:48:d2:6b:13:
df:59:7d:87:1b:8a:6f:5b:2a:e4:5e:b1:be:70:55:
b3:c8:da:db:fa:c9:03:85:cd:b6:2f:6d:ce:ab:63:
be:1c:7a:be:af:de:e7:97:44:6a:11:67:95:7f:3d:
52:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:39:C4:2B:CE:B8:B8:63:B4:14:4C:C1:23:B4:DF:24:B1:EB:5B:9A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F32BF030A4DD11F0819285C8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.242.0/23
Signature Algorithm: sha256WithRSAEncryption
33:dd:72:1d:7f:a1:f8:a0:5d:72:18:54:56:5f:ba:a3:89:ac:
46:94:20:38:99:7d:e0:df:ff:9b:52:5f:24:f9:9b:7f:a4:ff:
f1:4e:53:ad:e3:1e:73:d4:19:f3:2d:0c:46:48:fd:cc:cd:38:
6f:38:0f:b9:a7:31:76:16:72:f5:00:db:61:a0:3d:34:21:73:
74:ad:de:a6:d2:83:b1:73:78:82:ab:55:3c:bd:1f:79:d9:4a:
53:61:28:90:d5:76:ff:53:de:7d:36:5a:f8:d6:7d:d9:45:3c:
ff:5d:07:1d:a0:53:07:b3:6d:33:37:f0:77:5c:c1:ae:dc:82:
17:8e:d3:fe:bd:b4:ac:56:c2:db:b2:a0:c2:e7:bb:43:ab:11:
b4:a3:b3:cf:d5:da:3a:38:20:38:ba:86:4c:35:14:54:b3:dc:
46:b7:fd:09:57:38:6c:1f:3f:8e:75:87:67:84:ff:fb:9f:dc:
c4:c8:fa:6e:f5:8f:e4:7f:c2:d3:09:0f:6c:6a:1f:17:25:24:
0c:97:13:fb:4a:89:81:1d:20:52:00:22:1c:72:65:77:ab:01:
5a:29:33:8c:65:1c:d7:68:87:7a:4d:1e:30:a6:49:37:53:ac:
8a:0f:6b:9c:8b:4e:1a:18:57:90:4f:76:45:9b:d2:2b:a3:ab:
eb:d4:77:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 22:25:35 2025 by rpki-client