Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/82A9AC5C5A8311F090A0918BDAE4EC9C.roa
File: 82A9AC5C5A8311F090A0918BDAE4EC9C.roa (raw, json)
Hash identifier: 4KoeMCGCtqdDph8ywCzt/xB5kdDb2ASS/JS5eRUjmWY=
Subject key identifier: DA:1D:C1:E0:3B:F1:CD:F0:F6:65:5F:9C:64:C1:E2:84:EA:0D:77:C2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01624F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/82A9AC5C5A8311F090A0918BDAE4EC9C.roa
Signing time: Sun 06 Jul 2025 16:08:53 +0000
ROA not before: Sun 06 Jul 2025 16:08:48 +0000
ROA not after: Fri 10 Oct 2025 16:08:48 +0000
asID: 272018
IP address blocks: 156.235.90.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90703 (0x1624f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 6 16:08:48 2025 GMT
Not After : Oct 10 16:08:48 2025 GMT
Subject: CN=686a9f95-ebc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a1:1c:01:e9:8b:2e:65:ac:0e:19:85:16:34:
b3:57:27:98:d1:36:79:6a:eb:41:08:8d:42:84:c2:
91:f6:39:3e:76:b2:0a:09:e5:f7:aa:3f:96:b6:f2:
11:37:75:c5:a1:50:74:a4:58:1a:29:7a:2b:99:a1:
2b:82:d6:4d:c7:a9:30:33:38:89:b3:30:ff:bc:7d:
f2:45:71:f4:b1:78:40:7d:4f:c0:89:e6:a6:c6:16:
de:5d:3d:eb:06:13:2f:a9:d0:57:29:89:c4:b1:3d:
3f:ca:31:60:c5:04:cf:fc:28:99:15:9d:77:42:47:
6f:41:1f:66:d0:0b:9b:49:5b:4c:cf:43:b7:52:fa:
a8:53:40:47:4b:04:d9:d1:c4:ef:dd:bf:d0:70:af:
ee:83:73:7b:35:ae:09:1f:d8:72:06:20:27:d8:dc:
c3:2f:a6:8a:a6:08:5d:78:19:03:fa:81:49:c9:30:
58:64:60:6b:53:8f:cb:78:f0:af:40:d6:9e:8d:96:
89:88:ac:cd:ad:2c:60:1c:61:b4:bd:69:30:e8:49:
52:5a:f0:76:5e:eb:8e:ce:65:ce:7b:ed:cb:75:86:
83:57:f8:ee:28:59:26:6f:15:96:8b:11:3b:0e:a1:
56:0d:5d:1f:2f:ac:01:4d:c2:57:e3:9b:dc:1d:f1:
7d:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:1D:C1:E0:3B:F1:CD:F0:F6:65:5F:9C:64:C1:E2:84:EA:0D:77:C2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/82A9AC5C5A8311F090A0918BDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.235.90.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:53:2c:bd:84:99:00:48:05:76:ce:5e:30:25:a6:77:94:1f:
cb:2f:ec:b8:2b:f0:37:e0:c4:0a:b1:20:2e:9d:a8:1b:cd:99:
95:3e:01:60:a1:02:d0:43:9f:36:29:c7:5b:7e:2e:69:77:c7:
3c:50:29:2e:16:66:37:c5:07:9f:27:78:11:15:d1:ab:1b:1e:
ef:97:52:0d:43:7e:c4:5f:a1:ab:39:af:ef:0b:07:f6:72:a8:
4e:cc:87:f7:54:53:9a:74:43:d2:5e:a3:1b:6f:cd:77:8a:57:
6d:5b:42:60:de:42:cb:29:1c:0b:43:f4:3a:86:04:36:1e:7c:
e0:03:b0:3d:39:3b:64:90:df:db:77:ee:c8:b6:04:e0:47:bf:
b8:cb:4d:48:18:2a:80:70:b2:46:8f:05:6a:e7:f6:89:d8:74:
75:26:39:66:03:f0:7e:43:b6:c5:f5:24:2a:6c:85:02:2f:4a:
c1:7e:e1:35:a8:06:2c:9a:49:e0:33:7a:2b:9c:dd:f5:a1:2f:
b5:11:22:67:9e:fe:78:11:f9:b8:cd:10:ce:3b:47:5b:9e:1a:
03:74:78:17:6f:44:3f:93:11:6c:64:5c:9b:2b:cd:e1:9e:34:
d6:c5:2d:11:74:05:60:01:e8:57:28:6c:53:c8:03:bd:7b:e5:
cf:20:8b:ca
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAWJPMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNzA2MTYwODQ4WhcNMjUxMDEwMTYwODQ4WjAYMRYw
FAYDVQQDEw02ODZhOWY5NS1lYmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAwKEcAemLLmWsDhmFFjSzVyeY0TZ5autBCI1ChMKR9jk+drIKCeX3qj+W
tvIRN3XFoVB0pFgaKXormaErgtZNx6kwMziJszD/vH3yRXH0sXhAfU/Aieamxhbe
XT3rBhMvqdBXKYnEsT0/yjFgxQTP/CiZFZ13QkdvQR9m0AubSVtMz0O3UvqoU0BH
SwTZ0cTv3b/QcK/ug3N7Na4JH9hyBiAn2NzDL6aKpghdeBkD+oFJyTBYZGBrU4/L
ePCvQNaejZaJiKzNrSxgHGG0vWkw6ElSWvB2XuuOzmXOe+3LdYaDV/juKFkmbxWW
ixE7DqFWDV0fL6wBTcJX45vcHfF9bQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFNod
weA78c3w9mVfnGTB4oTqDXfCMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC84MkE5QUM1QzVBODMxMUYwOTBBMDkxOEJEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnOtaMA0GCSqGSIb3DQEBCwUA
A4IBAQAaUyy9hJkASAV2zl4wJaZ3lB/LL+y4K/A34MQKsSAunagbzZmVPgFgoQLQ
Q582Kcdbfi5pd8c8UCkuFmY3xQefJ3gRFdGrGx7vl1INQ37EX6GrOa/vCwf2cqhO
zIf3VFOadEPSXqMbb813ildtW0Jg3kLLKRwLQ/Q6hgQ2HnzgA7A9OTtkkN/bd+7I
tgTgR7+4y01IGCqAcLJGjwVq5/aJ2HR1JjlmA/B+Q7bF9SQqbIUCL0rBfuE1qAYs
mkngM3ornN31oS+1ESJnnv54Efm4zRDOO0dbnhoDdHgXb0Q/kxFsZFybK83hnjTW
xS0RdAVgAehXKGxTyAO9e+XPIIvK
-----END CERTIFICATE-----
Generated at Sun Jul 20 13:38:44 2025 by rpki-client