Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/5F7B6C6C783211F0B18AF9CBDAE4EC9C.roa
File: 5F7B6C6C783211F0B18AF9CBDAE4EC9C.roa (raw, json)
Hash identifier: H7F52WTCzysmkcTha3pOXGA0ZZYYWbPigHPqZVs51ZU=
Subject key identifier: 6B:48:1F:26:35:CD:BA:C4:DD:86:9D:C8:49:D3:8F:52:42:9E:EF:ED
Certificate issuer: /CN=F36A44EAAR/serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Certificate serial: 0925
Authority key identifier: F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
Authority info access: rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/5F7B6C6C783211F0B18AF9CBDAE4EC9C.roa
Signing time: Wed 13 Aug 2025 10:43:40 +0000
ROA not before: Wed 13 Aug 2025 10:43:35 +0000
ROA not after: Mon 31 Dec 2035 10:43:35 +0000
asID: 214432
IP address blocks: 165.49.127.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.mft
rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2341 (0x925)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A44EAAR, serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Validity
Not Before: Aug 13 10:43:35 2025 GMT
Not After : Dec 31 10:43:35 2035 GMT
Subject: CN=689c6c5c-6f4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:86:94:8f:af:aa:6d:74:89:13:fb:ce:d3:02:
b6:2e:44:c6:32:21:31:9d:b9:f0:5a:bc:10:28:84:
f9:18:26:ed:79:53:d0:7b:e3:ba:1b:7e:a7:4b:d7:
f7:53:4f:72:39:23:6a:f1:79:bf:97:be:a6:d2:a1:
8d:ed:c8:16:7a:66:b3:d1:f2:86:c3:90:2a:39:47:
c5:73:a8:a5:25:3f:23:f0:3d:12:6a:6f:5f:ba:a1:
81:fe:25:af:0c:8f:90:4c:a2:8b:cf:53:9a:73:e5:
d9:12:ff:06:b4:5b:46:f7:d3:31:f8:2e:85:bd:2a:
3d:a0:ba:16:be:55:ea:e7:7d:f5:4d:04:69:8a:71:
89:c8:e7:c6:05:f0:04:ce:78:2f:7e:af:b5:92:79:
fe:62:2f:93:45:58:bf:e3:67:b1:57:dd:64:1e:be:
05:bc:74:42:0b:0c:3f:3b:36:6d:38:3c:10:3b:ce:
22:da:aa:cd:f7:4d:02:18:ef:92:27:22:d6:64:6f:
1a:47:49:90:98:5c:c4:80:cf:d7:a6:af:62:48:8c:
b3:75:51:8d:04:92:06:73:84:f0:4c:50:3a:d6:18:
e2:b1:b1:f2:d9:ed:a8:1c:96:fd:68:ad:6c:e6:b9:
9e:bf:5a:df:f8:11:de:88:e6:66:78:69:12:fc:06:
6d:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:48:1F:26:35:CD:BA:C4:DD:86:9D:C8:49:D3:8F:52:42:9E:EF:ED
X509v3 Authority Key Identifier:
keyid:F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/5F7B6C6C783211F0B18AF9CBDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.49.127.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:ff:d5:f0:3d:f5:55:61:9f:6f:aa:98:ed:0b:8c:4f:7b:dd:
af:ed:82:af:26:dd:57:68:51:c6:55:df:cb:3f:99:22:d3:5a:
cb:d8:cb:73:41:74:12:a7:ff:f9:f1:12:23:5f:5a:4e:f4:3d:
69:70:72:f9:75:7f:36:ee:30:5e:56:dc:33:1c:f8:d3:0e:19:
ed:c1:43:7c:0e:59:79:62:de:e9:cf:d1:4f:00:b3:8e:ce:f1:
21:c8:0c:16:25:da:b6:88:73:7a:9f:7f:d5:90:3e:fd:b2:c1:
06:4f:92:8f:62:b3:7b:16:bd:fd:1d:04:7e:8c:ce:72:40:06:
81:d5:2d:1f:58:12:cf:a4:e2:70:5d:64:4a:a1:41:7c:21:53:
60:25:b8:c2:8a:6e:37:52:dd:f7:d0:97:51:64:9d:73:8d:6a:
24:0b:b1:52:aa:fe:9e:e0:bc:54:f1:db:2b:06:b3:d9:6e:ac:
c8:e2:20:ae:93:1e:bf:ba:7f:d8:a5:6a:0b:d2:40:33:d7:de:
3e:7f:65:ff:63:c5:be:11:f9:f6:4b:30:ac:30:12:5e:9b:53:
1b:94:56:ed:34:7e:b0:c2:4d:28:26:a3:85:25:a4:09:f1:d8:
c9:c2:40:f4:c2:bb:94:38:97:88:58:68:48:6f:83:d0:1a:89:
b9:7d:79:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:42:21 2025 by rpki-client