Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369591C/4D92EC26C24711EDBF9323A0F1222468/C8A598A47F3D11F093F96AD7DAE4EC9C.roa
File: C8A598A47F3D11F093F96AD7DAE4EC9C.roa (raw, json)
Hash identifier: SX7VFRi6fja/lVzFn5u30dJTc0ojT/jkc4MDx+ibGA4=
Subject key identifier: 63:72:3E:76:15:4E:D3:78:E5:C1:D0:D9:63:32:68:9B:DF:7B:BB:40
Certificate issuer: /CN=F369591CAR/serialNumber=0728C9B8455C65977FA30987DE4941DF018C651C
Certificate serial: 03AB
Authority key identifier: 07:28:C9:B8:45:5C:65:97:7F:A3:09:87:DE:49:41:DF:01:8C:65:1C
Authority info access: rsync://rpki.afrinic.net/repository/arin/ByjJuEVcZZd_owmH3klB3wGMZRw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369591C/4D92EC26C24711EDBF9323A0F1222468/C8A598A47F3D11F093F96AD7DAE4EC9C.roa
Signing time: Fri 22 Aug 2025 09:52:59 +0000
ROA not before: Fri 22 Aug 2025 09:52:54 +0000
ROA not after: Tue 31 Dec 2030 09:52:54 +0000
asID: 15964
IP address blocks: 165.211.16.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369591C/4D92EC26C24711EDBF9323A0F1222468/ByjJuEVcZZd_owmH3klB3wGMZRw.crl
rsync://rpki.afrinic.net/repository/member_repository/F369591C/4D92EC26C24711EDBF9323A0F1222468/ByjJuEVcZZd_owmH3klB3wGMZRw.mft
rsync://rpki.afrinic.net/repository/arin/ByjJuEVcZZd_owmH3klB3wGMZRw.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 03:33:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 939 (0x3ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369591CAR, serialNumber=0728C9B8455C65977FA30987DE4941DF018C651C
Validity
Not Before: Aug 22 09:52:54 2025 GMT
Not After : Dec 31 09:52:54 2030 GMT
Subject: CN=68a83dfb-140b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:82:45:67:c6:53:53:c3:1b:20:52:c3:04:1f:
e2:62:ae:4c:54:f7:c3:9d:0b:87:66:b8:96:fb:21:
b5:97:f4:2d:f3:da:d5:f6:07:04:4f:22:4c:0c:b3:
30:75:d1:e3:ba:d7:42:93:69:29:9b:1e:8e:10:3b:
17:b1:2a:de:4a:4f:88:1c:9b:5e:42:a8:8c:7f:fc:
6a:31:c0:1d:aa:fd:ce:a7:4b:b0:49:14:46:26:8f:
e8:ba:9c:38:57:7f:04:44:ed:f8:61:f1:56:48:a6:
51:fa:38:84:cd:c4:bc:91:ec:a4:47:ab:5b:1d:7c:
1a:dc:db:8b:5e:c0:97:b4:00:2d:59:ee:7e:0f:df:
8e:55:33:bc:e0:dd:75:c5:bc:e5:ca:42:4d:84:24:
5a:dd:87:ad:de:36:f1:cd:e7:ea:11:01:6d:cb:d0:
b5:8a:3b:12:9d:8a:a7:cf:cd:67:25:3b:a1:cb:5a:
8a:7f:9b:f3:64:67:a1:02:16:a5:a2:7c:18:12:cd:
22:e7:db:29:9f:96:0e:eb:c8:49:92:a6:1e:8e:21:
82:a0:a6:c2:cd:b9:ba:04:2f:75:4c:6b:fb:ec:3e:
08:d2:a2:2e:13:b1:e2:ff:57:fe:a4:c1:50:b1:db:
d7:47:b9:dd:67:25:92:38:90:1e:2e:26:37:ac:34:
ed:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:72:3E:76:15:4E:D3:78:E5:C1:D0:D9:63:32:68:9B:DF:7B:BB:40
X509v3 Authority Key Identifier:
keyid:07:28:C9:B8:45:5C:65:97:7F:A3:09:87:DE:49:41:DF:01:8C:65:1C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369591C/4D92EC26C24711EDBF9323A0F1222468/ByjJuEVcZZd_owmH3klB3wGMZRw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/ByjJuEVcZZd_owmH3klB3wGMZRw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369591C/4D92EC26C24711EDBF9323A0F1222468/C8A598A47F3D11F093F96AD7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.211.16.0/24
Signature Algorithm: sha256WithRSAEncryption
93:88:ec:34:66:9a:c1:55:3e:31:3b:55:1e:6a:e6:be:97:f0:
92:0d:8d:0f:7e:dd:bc:43:4f:bb:68:5e:7f:84:73:3c:e5:71:
6c:ab:7b:24:04:16:45:14:6c:64:c9:60:39:30:30:1c:14:e0:
1d:6e:eb:d8:86:3b:68:07:2b:82:67:bb:10:d3:5c:82:8b:17:
77:13:c4:8a:bb:c5:96:f7:e9:e6:02:28:1b:5e:57:70:5f:93:
36:87:b2:86:71:ec:b8:a1:bb:56:8d:bf:4f:14:65:19:52:c2:
88:5d:cb:cd:7a:cd:fa:cb:7e:1b:d4:bb:29:55:d1:9c:a8:91:
1c:f3:76:25:5c:e2:9f:fb:65:40:70:88:60:bc:45:5e:fb:0a:
c6:be:51:71:f6:42:b2:a4:f5:c8:9e:fb:d4:3a:c6:68:5d:77:
05:3e:f2:c6:ab:5a:74:22:86:b2:84:30:99:47:8e:0a:31:5c:
25:60:39:27:06:fb:7d:51:a6:2a:ac:42:d8:11:d0:b4:f5:0a:
85:0a:ba:41:43:67:6d:c4:ee:31:ba:16:c0:82:8f:f7:e2:36:
cc:ea:1e:f0:0d:6f:57:0b:99:37:3a:6d:15:86:0f:b5:85:17:
32:c8:31:0d:96:a5:de:f4:70:6a:f2:6e:49:b8:00:6f:0d:9d:
ce:17:27:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 04:24:30 2025 by rpki-client