Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C11E4/27C53A0883AD11EE98E566324AD9E6FC/A63D027E979E11F09DB3CAE4DAE4EC9C.roa
File: A63D027E979E11F09DB3CAE4DAE4EC9C.roa (raw, json)
Hash identifier: iP4i79x1Be3HQt6r3SQOulhKxPXkvEn8M2cU7ZuN8JU=
Subject key identifier: 57:CE:0D:FC:97:74:83:88:D2:31:51:55:91:33:76:77:96:AB:35:EB
Certificate issuer: /CN=F36C11E4AR/serialNumber=1D272E7593565ACA3DB486EFBDD01F197454C983
Certificate serial: 02BD
Authority key identifier: 1D:27:2E:75:93:56:5A:CA:3D:B4:86:EF:BD:D0:1F:19:74:54:C9:83
Authority info access: rsync://rpki.afrinic.net/repository/arin/HScudZNWWso9tIbvvdAfGXRUyYM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C11E4/27C53A0883AD11EE98E566324AD9E6FC/A63D027E979E11F09DB3CAE4DAE4EC9C.roa
Signing time: Mon 22 Sep 2025 10:26:50 +0000
ROA not before: Mon 22 Sep 2025 10:26:46 +0000
ROA not after: Tue 22 Sep 2026 10:26:46 +0000
asID: 328169
IP address blocks: 165.73.134.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36C11E4/27C53A0883AD11EE98E566324AD9E6FC/HScudZNWWso9tIbvvdAfGXRUyYM.crl
rsync://rpki.afrinic.net/repository/member_repository/F36C11E4/27C53A0883AD11EE98E566324AD9E6FC/HScudZNWWso9tIbvvdAfGXRUyYM.mft
rsync://rpki.afrinic.net/repository/arin/HScudZNWWso9tIbvvdAfGXRUyYM.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 03:54:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 701 (0x2bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C11E4AR, serialNumber=1D272E7593565ACA3DB486EFBDD01F197454C983
Validity
Not Before: Sep 22 10:26:46 2025 GMT
Not After : Sep 22 10:26:46 2026 GMT
Subject: CN=68d1246a-5ac6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:7e:02:1f:cc:3c:ea:04:28:69:e4:01:d5:15:
c3:9d:be:6d:db:83:d3:0e:85:a8:67:5d:b3:c7:75:
57:86:cd:8b:84:57:a7:b8:17:34:05:a8:f4:68:86:
e2:39:15:9c:79:4a:94:4b:f7:5e:8b:b3:2e:36:28:
01:e2:42:f2:81:7e:05:b5:f7:3b:db:c5:4c:57:4a:
8a:3d:71:03:9c:7c:d5:8a:75:8e:ba:7c:e5:f2:2c:
7f:83:48:13:75:91:b9:5e:d5:8b:51:73:8e:c8:78:
ab:3b:b7:d0:c2:08:fd:d9:28:fb:f8:24:12:ee:f7:
eb:45:28:01:a5:06:c1:a9:51:e5:a4:e5:ae:ba:ce:
ac:e1:bc:71:24:90:26:8a:ee:64:9a:ee:01:ca:06:
1e:bd:07:78:f4:b4:e4:96:61:11:7f:c4:00:bf:17:
20:15:a9:d7:02:e2:68:9a:bd:aa:6f:5d:d7:a4:02:
71:64:c9:b3:79:b4:30:b3:5b:4b:15:b7:c3:f1:a0:
da:35:fe:b5:06:6c:ab:61:56:c6:29:2e:7e:34:4e:
23:0d:86:0b:04:03:af:02:fc:17:fc:91:55:15:2a:
b8:bb:28:b5:c9:f6:c1:64:59:f8:ab:dc:6c:f5:30:
a8:14:db:66:bc:ec:37:b2:34:cc:28:83:e0:ec:a8:
a0:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:CE:0D:FC:97:74:83:88:D2:31:51:55:91:33:76:77:96:AB:35:EB
X509v3 Authority Key Identifier:
keyid:1D:27:2E:75:93:56:5A:CA:3D:B4:86:EF:BD:D0:1F:19:74:54:C9:83
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C11E4/27C53A0883AD11EE98E566324AD9E6FC/HScudZNWWso9tIbvvdAfGXRUyYM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/HScudZNWWso9tIbvvdAfGXRUyYM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C11E4/27C53A0883AD11EE98E566324AD9E6FC/A63D027E979E11F09DB3CAE4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.73.134.0/23
Signature Algorithm: sha256WithRSAEncryption
37:85:9a:71:a3:de:ea:83:aa:11:c4:31:1e:4c:60:00:28:b1:
b6:94:9f:2d:02:55:7d:47:68:37:64:dc:cc:2d:d7:25:ef:c1:
46:92:8c:ae:87:f0:93:57:45:12:c1:a4:47:f7:1e:42:db:1d:
72:c5:55:fc:3a:e8:31:ea:0f:5e:b8:cf:af:69:5b:d6:08:d7:
e6:4c:1e:ca:f3:32:a4:2d:d7:97:5a:91:77:5c:47:4d:b2:fd:
4d:f7:70:dc:88:f8:70:5c:c5:29:38:03:7c:c6:a4:c8:2b:0a:
3e:9f:89:31:87:d9:90:01:8e:5b:ce:d5:18:9e:d5:a4:68:66:
24:ac:fe:47:6a:5b:d2:37:fc:2d:26:a7:ad:03:01:4a:b5:48:
9e:1e:f5:e7:06:0a:cb:b5:e3:de:81:6c:1b:46:01:46:2a:db:
84:05:70:9e:21:47:24:e2:c0:05:91:e4:07:00:f6:0f:7f:40:
2d:ee:ee:8b:d4:61:95:ab:f0:61:bb:1f:1d:b8:c4:a6:2b:ba:
e6:5e:3a:13:dd:74:fa:3c:0e:f5:cf:26:66:d2:b5:6f:10:51:
e1:3c:ef:44:44:e2:d6:e0:b8:b8:8e:f4:92:a6:05:de:ab:76:
1d:c2:cf:83:e4:3a:43:01:71:e4:07:d1:ca:81:60:ed:fa:bf:
84:27:e4:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 03:15:49 2025 by rpki-client