Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/E77705027C5811F0ABADBED7DAE4EC9C.roa
File: E77705027C5811F0ABADBED7DAE4EC9C.roa (raw, json)
Hash identifier: aIs4ZsbtrPgy90N4ZA+Hm5PO6wogJGLlxXmnXBTTuhI=
Subject key identifier: F9:A5:5E:09:FF:CA:71:58:21:B1:39:B3:F4:14:7A:51:77:3B:2A:8C
Certificate issuer: /CN=F36A44EAAR/serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Certificate serial: 0938
Authority key identifier: F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
Authority info access: rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/E77705027C5811F0ABADBED7DAE4EC9C.roa
Signing time: Mon 18 Aug 2025 17:29:33 +0000
ROA not before: Mon 18 Aug 2025 17:29:28 +0000
ROA not after: Mon 31 Dec 2035 17:29:28 +0000
asID: 5511
IP address blocks: 165.49.65.0/24 maxlen: 24
165.49.66.0/24 maxlen: 24
165.49.72.0/24 maxlen: 24
165.49.74.0/24 maxlen: 24
165.49.77.0/24 maxlen: 24
165.49.80.0/24 maxlen: 24
165.49.88.0/24 maxlen: 24
165.49.103.0/24 maxlen: 24
165.49.119.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.mft
rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2360 (0x938)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A44EAAR, serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Validity
Not Before: Aug 18 17:29:28 2025 GMT
Not After : Dec 31 17:29:28 2035 GMT
Subject: CN=68a362fd-9d5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:c6:b0:a6:cf:70:fb:9f:df:f3:e0:3d:0e:f9:
d2:c8:d6:95:d9:8a:cf:62:2f:b3:08:f8:33:5a:45:
90:05:11:c1:9d:2e:21:7f:38:1f:6e:62:6e:9b:e6:
56:68:f4:48:be:14:b5:3f:72:d2:74:68:fc:0d:93:
05:4e:37:b5:63:38:eb:a8:d3:95:9c:25:51:1b:d4:
a0:27:28:aa:c2:df:c6:7a:e9:20:d3:71:ef:44:69:
4d:0b:96:5b:ab:72:cb:b4:85:2f:19:68:7e:28:85:
59:49:fb:63:ce:99:66:11:cf:21:0e:7a:29:fd:17:
a3:4c:d4:b9:c5:d4:8f:97:34:4c:0e:a5:ff:59:1b:
16:62:87:e4:f5:c5:82:95:c8:31:33:e5:b5:5d:b7:
d5:7d:52:4c:4c:8f:cc:8d:2c:88:c2:40:f6:a8:3c:
4e:f6:ea:36:24:c0:4d:68:e9:8d:da:96:9d:70:81:
0a:68:74:68:24:15:4c:4c:7c:af:ba:f5:76:2f:35:
c6:d1:ca:7c:42:22:b7:dd:78:76:ab:a9:b9:24:35:
5b:cf:d2:88:8f:46:c5:42:d2:10:d0:26:6f:e1:2f:
60:b8:4b:de:81:6d:57:f3:71:92:da:c8:87:24:1b:
8a:1c:77:ab:5d:18:ee:e5:fe:8b:51:54:3e:c5:08:
71:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:A5:5E:09:FF:CA:71:58:21:B1:39:B3:F4:14:7A:51:77:3B:2A:8C
X509v3 Authority Key Identifier:
keyid:F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/E77705027C5811F0ABADBED7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.49.65.0-165.49.66.255
165.49.72.0/24
165.49.74.0/24
165.49.77.0/24
165.49.80.0/24
165.49.88.0/24
165.49.103.0/24
165.49.119.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:61:02:8a:de:7b:a3:ab:43:b2:97:ab:52:b8:74:9b:5d:36:
a1:d7:71:03:9d:ac:85:5c:60:e9:05:ea:95:b4:44:c1:ed:d5:
91:03:07:65:24:0e:17:84:28:1a:df:ff:83:ba:cd:11:19:c4:
97:31:ad:0a:88:af:5b:6f:cd:eb:70:52:84:05:06:40:59:36:
7b:9e:a8:02:b5:df:ff:ba:65:4e:26:2d:c3:a5:3c:a7:16:a0:
6a:ba:9f:ae:1f:6c:cd:3e:c1:ad:48:a7:39:91:c4:49:81:2f:
90:67:fd:5a:ac:32:6a:fd:6d:7d:0b:86:3d:04:8a:9b:da:59:
df:8e:d1:a5:f7:ca:1c:e6:12:38:ff:38:7c:7c:7b:bb:e5:ad:
ad:3b:64:ac:4e:65:ea:8a:92:6d:80:5e:29:ae:30:da:4d:48:
b8:ee:7e:ed:bf:f7:06:e4:8d:bb:55:80:c9:93:22:63:57:a8:
2e:cd:06:85:e1:bd:cd:77:e4:25:b8:0b:42:ec:d2:1c:07:ca:
bd:d9:5c:1f:2c:a5:31:d2:90:c1:2c:c6:01:ab:9f:16:87:f3:
f3:52:06:03:1e:34:1d:de:dd:cb:64:ca:a9:09:b6:4d:0f:b7:
b5:f3:32:55:e5:5f:f0:f4:bb:4a:b6:8f:87:96:73:34:5b:e9:
fa:2a:7c:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 23:25:14 2025 by rpki-client