Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369BF27/5800DCF491EA11E9BA56927AF8AEA228/937EE7024D6011F09A38078FDAE4EC9C.roa
File: 937EE7024D6011F09A38078FDAE4EC9C.roa (raw, json)
Hash identifier: pbBP0ntQdVgVm+KFXqo/FvwDRupvw0CtUQRgWotDjnY=
Subject key identifier: 0D:E7:09:A7:0E:7E:67:A5:D9:26:D9:B4:04:02:13:1F:AC:14:5B:4D
Certificate issuer: /CN=F369BF27AR/serialNumber=CD07D7C89ECE4C0F9D04A1B153BBC710DF016B2D
Certificate serial: 08E3
Authority key identifier: CD:07:D7:C8:9E:CE:4C:0F:9D:04:A1:B1:53:BB:C7:10:DF:01:6B:2D
Authority info access: rsync://rpki.afrinic.net/repository/arin/zQfXyJ7OTA-dBKGxU7vHEN8Bay0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369BF27/5800DCF491EA11E9BA56927AF8AEA228/937EE7024D6011F09A38078FDAE4EC9C.roa
Signing time: Thu 19 Jun 2025 22:56:04 +0000
ROA not before: Fri 20 Jun 2025 22:55:59 +0000
ROA not after: Wed 20 Jun 2035 22:55:59 +0000
asID: 37049
IP address blocks: 165.16.160.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369BF27/5800DCF491EA11E9BA56927AF8AEA228/zQfXyJ7OTA-dBKGxU7vHEN8Bay0.crl
rsync://rpki.afrinic.net/repository/member_repository/F369BF27/5800DCF491EA11E9BA56927AF8AEA228/zQfXyJ7OTA-dBKGxU7vHEN8Bay0.mft
rsync://rpki.afrinic.net/repository/arin/zQfXyJ7OTA-dBKGxU7vHEN8Bay0.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 02 Jul 2025 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2275 (0x8e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369BF27AR, serialNumber=CD07D7C89ECE4C0F9D04A1B153BBC710DF016B2D
Validity
Not Before: Jun 20 22:55:59 2025 GMT
Not After : Jun 20 22:55:59 2035 GMT
Subject: CN=68549584-26c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:41:72:0d:9a:8e:ac:05:21:76:1e:86:71:da:
9e:81:2a:45:ec:80:1f:af:d8:91:8c:31:38:e9:1a:
7c:4a:d0:79:57:08:9c:66:a9:67:53:67:76:72:85:
82:ec:a9:40:a6:09:ce:54:98:d5:df:f1:09:5b:00:
6f:72:1e:ad:4c:76:fa:33:be:a5:84:b3:a6:fe:44:
28:36:83:63:70:2d:64:40:5d:02:51:42:c2:11:42:
af:16:7d:8e:65:a6:02:ca:41:d6:42:91:f0:ec:a2:
73:96:fc:78:be:a8:ea:29:4f:06:5d:6b:58:8f:a9:
a1:74:27:d5:f1:e3:16:76:27:99:15:bb:53:88:51:
e7:67:a9:07:fe:06:25:1d:4e:78:20:d7:76:b1:2a:
13:c1:b1:ae:56:70:e8:b5:ac:0c:ed:ab:2f:f3:d6:
fa:33:38:32:ed:3b:af:06:ea:5f:70:7a:a2:07:53:
be:dc:26:a4:cd:9c:88:11:6b:39:1c:f8:91:d8:7c:
72:b4:bd:67:b9:75:e2:22:91:30:6b:97:f8:4b:90:
9a:ac:c2:ad:9f:9a:b1:7d:09:ae:34:e4:84:52:50:
e8:69:a8:0e:6c:2f:10:7a:eb:52:8b:07:c9:70:d0:
a3:26:87:de:1e:c0:05:62:7b:41:b3:43:03:6f:bf:
6c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:E7:09:A7:0E:7E:67:A5:D9:26:D9:B4:04:02:13:1F:AC:14:5B:4D
X509v3 Authority Key Identifier:
keyid:CD:07:D7:C8:9E:CE:4C:0F:9D:04:A1:B1:53:BB:C7:10:DF:01:6B:2D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369BF27/5800DCF491EA11E9BA56927AF8AEA228/zQfXyJ7OTA-dBKGxU7vHEN8Bay0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/zQfXyJ7OTA-dBKGxU7vHEN8Bay0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369BF27/5800DCF491EA11E9BA56927AF8AEA228/937EE7024D6011F09A38078FDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.16.160.0/19
Signature Algorithm: sha256WithRSAEncryption
5f:ff:bc:56:d8:60:83:20:d9:05:85:77:5b:64:9f:02:6a:60:
01:b0:e9:1f:4e:3c:a3:e9:72:73:12:2b:d0:47:1a:fc:cf:c3:
d2:21:29:fd:55:bb:1d:74:20:9b:3d:43:d9:2b:80:81:20:19:
9c:46:c9:08:17:b4:a0:60:f7:7d:d3:07:e0:c3:be:0c:08:cc:
9c:81:3c:3e:59:11:c4:7b:b8:21:e5:ee:cf:82:dc:63:ec:37:
ea:f4:7c:db:f8:1a:27:ac:44:0c:6c:a9:50:e9:ed:9a:c0:c9:
9f:d3:71:3c:30:30:6d:94:ae:b1:30:40:39:00:7c:96:0a:40:
cc:7a:e2:5c:6d:44:1b:2e:66:e2:e2:54:53:36:0e:ab:88:a9:
b0:b0:c3:ed:34:db:cb:8e:4b:9e:bf:f7:71:ef:1f:3d:e6:9b:
40:b9:6d:e7:62:a7:5b:eb:a6:30:ad:02:61:46:ac:23:de:ad:
c6:60:1f:93:e2:0c:ca:23:0a:0d:25:64:a3:be:00:6d:70:7d:
89:fa:7d:a1:1f:23:01:d8:94:c4:b6:d2:7a:ae:67:30:ac:59:
3b:7b:ce:5f:d2:96:00:c6:00:73:de:57:2c:eb:68:38:9b:cc:
6f:c5:fe:06:9e:21:e5:8d:4f:f7:6e:11:95:3d:a7:62:d9:d8:
b1:33:40:d5
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICCOMwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
OUJGMjdBUjExMC8GA1UEBRMoQ0QwN0Q3Qzg5RUNFNEMwRjlEMDRBMUIxNTNCQkM3
MTBERjAxNkIyRDAeFw0yNTA2MjAyMjU1NTlaFw0zNTA2MjAyMjU1NTlaMBgxFjAU
BgNVBAMTDTY4NTQ5NTg0LTI2YzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDQQXINmo6sBSF2HoZx2p6BKkXsgB+v2JGMMTjpGnxK0HlXCJxmqWdTZ3Zy
hYLsqUCmCc5UmNXf8QlbAG9yHq1MdvozvqWEs6b+RCg2g2NwLWRAXQJRQsIRQq8W
fY5lpgLKQdZCkfDsonOW/Hi+qOopTwZda1iPqaF0J9Xx4xZ2J5kVu1OIUednqQf+
BiUdTngg13axKhPBsa5WcOi1rAztqy/z1vozODLtO68G6l9weqIHU77cJqTNnIgR
azkc+JHYfHK0vWe5deIikTBrl/hLkJqswq2fmrF9Ca405IRSUOhpqA5sLxB661KL
B8lw0KMmh94ewAVie0GzQwNvv2y5AgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUDecJ
pw5+Z6XZJtm0BAITH6wUW00wHwYDVR0jBBgwFoAUzQfXyJ7OTA+dBKGxU7vHEN8B
ay0wDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjlCRjI3LzU4MDBEQ0Y0OTFFQTExRTlCQTU2OTI3QUY4QUVBMjI4L3pRZlh5
SjdPVEEtZEJLR3hVN3ZIRU44QmF5MC5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L3pRZlh5SjdPVEEtZEJLR3hVN3ZIRU44QmF5MC5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjlCRjI3LzU4MDBEQ0Y0OTFFQTExRTlCQTU2OTI3QUY4QUVB
MjI4LzkzN0VFNzAyNEQ2MDExRjA5QTM4MDc4RkRBRTRFQzlDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAWlEKAwDQYJKoZIhvcNAQELBQAD
ggEBAF//vFbYYIMg2QWFd1tknwJqYAGw6R9OPKPpcnMSK9BHGvzPw9IhKf1Vux10
IJs9Q9krgIEgGZxGyQgXtKBg933TB+DDvgwIzJyBPD5ZEcR7uCHl7s+C3GPsN+r0
fNv4GiesRAxsqVDp7ZrAyZ/TcTwwMG2UrrEwQDkAfJYKQMx64lxtRBsuZuLiVFM2
DquIqbCww+0028uOS56/93HvHz3mm0C5bedip1vrpjCtAmFGrCPercZgH5PiDMoj
Cg0lZKO+AG1wfYn6faEfIwHYlMS20nquZzCsWTt7zl/SlgDGAHPeVyzraDibzG/F
/gaeIeWNT/duEZU9p2LZ2LEzQNU=
-----END CERTIFICATE-----
Generated at Mon Jun 30 18:20:14 2025 by rpki-client