Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2959C440B4CC11F09BF39EB4DAE4EC9C.roa
File: 2959C440B4CC11F09BF39EB4DAE4EC9C.roa (raw, json)
Hash identifier: CExgkhc6lNnk/hUzU2qbb5Y76Lt4QNHTCnq1G/QFD7E=
Subject key identifier: B9:7A:9D:29:F5:6B:26:A9:AF:E5:51:88:F3:8D:09:AF:C9:A2:39:95
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0183C4
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2959C440B4CC11F09BF39EB4DAE4EC9C.roa
Signing time: Wed 29 Oct 2025 13:35:41 +0000
ROA not before: Wed 29 Oct 2025 13:35:36 +0000
ROA not after: Sat 06 Dec 2025 13:35:36 +0000
asID: 269816
IP address blocks: 156.248.160.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Nov 2025 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99268 (0x183c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 29 13:35:36 2025 GMT
Not After : Dec 6 13:35:36 2025 GMT
Subject: CN=6902182d-d2e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:16:67:88:e8:94:4b:6b:06:70:47:7b:1c:30:
63:84:c3:ab:af:2e:b3:4c:d2:16:12:22:fa:d8:6f:
c4:41:6e:22:4b:5d:b7:72:77:a1:24:e9:c3:16:07:
6c:a4:6e:a2:f0:fc:11:6d:78:9b:35:e8:3b:bf:36:
10:f6:c4:06:3e:ef:63:6a:d8:70:59:98:13:9f:b4:
67:6d:af:64:64:8d:f6:ac:0b:0e:5b:f5:c9:47:6e:
4c:59:97:2f:4c:b3:99:77:73:63:62:de:ba:2b:ad:
bf:66:0b:56:a0:72:94:ab:c9:ce:b7:2e:70:a7:04:
6e:17:7d:77:ac:95:ec:ce:3a:82:eb:40:21:a3:63:
39:bc:ea:59:a3:d4:71:79:2a:56:23:13:88:63:72:
47:c6:df:9b:1f:2a:9c:92:29:05:1e:c9:f2:fb:34:
bc:81:c2:05:7e:27:a7:57:3f:9b:e1:04:da:a7:a5:
36:22:73:bf:52:6c:7f:99:61:92:9b:7d:74:f9:64:
8c:ef:ab:7a:dc:af:37:d3:03:32:26:74:41:9c:f9:
3a:ac:f1:07:6d:6c:f6:97:3f:cd:25:a9:5d:63:61:
82:ee:48:b0:29:e2:ac:79:e9:bd:85:58:98:c9:40:
53:b0:24:15:13:96:31:26:49:24:0d:c9:c2:9b:fe:
ca:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:7A:9D:29:F5:6B:26:A9:AF:E5:51:88:F3:8D:09:AF:C9:A2:39:95
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2959C440B4CC11F09BF39EB4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.248.160.0/19
Signature Algorithm: sha256WithRSAEncryption
59:9e:0d:ce:ba:18:a6:36:60:c4:d6:6c:52:b8:fe:6a:b2:b1:
71:2d:cc:d7:62:48:52:3c:d8:bf:a4:a0:ba:39:7e:8c:e7:7c:
da:da:ed:fc:1c:3d:b7:79:b7:2f:72:bf:79:93:44:74:b8:4e:
6c:7e:b9:e4:18:81:ca:da:20:f4:3e:bf:5c:6d:af:ee:d0:29:
00:67:b7:76:bf:12:02:18:b3:3a:ef:d3:44:a7:4c:82:c8:70:
04:d3:b0:ca:57:4b:f8:5a:8b:1d:f6:72:15:17:b8:14:c6:d2:
a8:0d:7c:36:4e:6e:32:3e:f9:42:d5:33:e6:c8:1a:c7:fa:fd:
1d:a4:8e:50:db:35:02:99:66:43:d5:bc:2d:f1:e9:e6:f5:46:
b0:77:c2:4a:f5:c2:b1:03:a1:2a:93:34:bf:24:b2:c5:80:90:
c6:84:d8:59:03:85:9c:25:b8:7d:28:ce:2c:8b:9b:c2:12:e9:
a7:17:ca:80:96:31:23:35:90:56:26:d2:fb:d4:f1:37:43:0f:
e8:b6:5e:8a:d3:86:31:54:da:c5:1c:59:47:73:f1:fc:7c:11:
17:65:a7:b4:ee:25:3a:7e:52:c8:de:ee:b5:2b:e9:16:a5:79:
de:bd:ff:32:30:2e:3d:8a:e7:4b:63:51:f1:1d:bf:cc:dc:ac:
80:3e:8e:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 1 07:13:23 2025 by rpki-client