Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B5B2B4A5AC011F0B9FEB490DAE4EC9C.roa
File: 8B5B2B4A5AC011F0B9FEB490DAE4EC9C.roa (raw, json)
Hash identifier: tp78/ktp+bb0ByUoxvP+QLos7UuT45316KMI+cA+N6s=
Subject key identifier: 5A:7C:A4:F0:D9:8C:FE:77:42:E8:C7:0B:4D:ED:00:5E:04:BB:CA:13
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016293
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B5B2B4A5AC011F0B9FEB490DAE4EC9C.roa
Signing time: Sun 06 Jul 2025 23:25:47 +0000
ROA not before: Sun 06 Jul 2025 23:25:40 +0000
ROA not after: Fri 17 Jul 2026 23:25:40 +0000
asID: 398823
IP address blocks: 156.227.160.0/20 maxlen: 24
156.227.176.0/20 maxlen: 24
156.229.176.0/20 maxlen: 24
156.229.192.0/19 maxlen: 24
156.245.64.0/18 maxlen: 24
156.252.96.0/19 maxlen: 24
156.252.144.0/20 maxlen: 24
156.252.160.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90771 (0x16293)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 6 23:25:40 2025 GMT
Not After : Jul 17 23:25:40 2026 GMT
Subject: CN=686b05fb-1eca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:12:95:1a:ac:85:fe:80:3d:1c:7c:37:b3:90:
7b:6d:b2:11:93:8e:93:e6:81:d5:89:86:8f:d3:02:
3e:7c:aa:a1:98:fc:0e:f3:b2:0d:91:3c:ec:ec:03:
fc:27:89:4b:36:ef:15:97:9e:a2:cf:3e:4a:68:4a:
5e:09:24:22:3c:ef:04:4f:4c:5a:9d:1a:e4:e1:18:
27:b2:b0:f4:de:b4:5a:ca:00:e1:d8:cb:1a:6f:4e:
0a:6b:09:d5:bd:90:54:d4:d3:3f:b5:10:ca:26:0e:
ce:a3:fa:42:20:83:83:41:7d:e6:60:06:23:2b:88:
44:02:97:a9:ae:79:1f:1d:47:c7:40:84:21:9f:bf:
3a:b2:aa:f4:fe:37:4f:50:39:bc:cc:5d:ca:19:3f:
c7:8d:5f:3b:98:70:38:92:92:ae:07:23:03:d3:10:
63:1b:99:0d:fc:9f:b7:85:a4:1b:9e:15:be:41:8e:
7e:fe:32:ae:58:84:f2:95:f8:3b:7f:fe:16:fe:67:
83:21:14:c4:ea:16:b3:6e:52:47:80:56:3e:84:64:
73:f5:86:3f:af:16:16:80:3b:90:b1:a4:74:b0:66:
c7:47:7b:56:e6:5c:5a:f8:6d:58:ab:ad:b5:6d:46:
9c:5a:15:39:ee:63:06:a9:6c:3f:89:34:48:2d:c5:
e2:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:7C:A4:F0:D9:8C:FE:77:42:E8:C7:0B:4D:ED:00:5E:04:BB:CA:13
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B5B2B4A5AC011F0B9FEB490DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.160.0/19
156.229.176.0-156.229.223.255
156.245.64.0/18
156.252.96.0/19
156.252.144.0-156.252.175.255
Signature Algorithm: sha256WithRSAEncryption
b8:da:92:a9:75:94:9c:77:dd:c3:38:54:47:7e:c4:f7:08:d2:
d1:77:2e:93:5a:39:4e:68:2d:20:e6:e6:a8:ea:f4:59:9b:2c:
b1:1e:30:e0:d0:b5:58:b1:19:b2:54:9a:8a:d4:b7:90:eb:23:
70:37:ba:e0:1e:22:88:38:c2:5a:95:c0:93:af:bf:42:36:7c:
2e:76:89:9d:1c:2b:45:ff:e2:8d:d4:40:ab:45:ba:53:65:10:
c9:fd:3e:53:ef:c7:b1:19:11:26:84:6e:38:09:e8:de:b5:83:
0b:32:03:20:c9:3f:23:cc:92:b6:c0:92:4e:a1:c6:8f:8e:b9:
da:4e:bf:76:c0:b8:56:0f:48:d2:df:78:21:78:fa:04:b1:b3:
3e:51:cc:af:a0:79:40:31:42:e5:f5:f3:ad:79:d6:64:c5:5c:
25:49:79:7b:5f:b5:80:72:bb:ca:95:b3:9f:b5:1b:94:6c:74:
2f:4e:75:4c:bb:4e:c3:fe:ef:2d:2c:6d:0b:17:e8:cc:fa:ef:
50:d0:cb:33:0a:1c:8c:e8:02:0f:d9:54:f0:d2:dc:cd:76:d8:
fc:17:f1:4d:5f:02:41:3a:20:4f:83:e1:7b:d0:37:72:8e:12:
20:5c:f7:73:97:d7:79:41:4a:60:60:7e:59:18:e8:83:43:59:
46:2b:4f:ff
-----BEGIN CERTIFICATE-----
MIIFqTCCBJGgAwIBAgIDAWKTMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNzA2MjMyNTQwWhcNMjYwNzE3MjMyNTQwWjAYMRYw
FAYDVQQDEw02ODZiMDVmYi0xZWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA7RKVGqyF/oA9HHw3s5B7bbIRk46T5oHViYaP0wI+fKqhmPwO87INkTzs
7AP8J4lLNu8Vl56izz5KaEpeCSQiPO8ET0xanRrk4RgnsrD03rRaygDh2Msab04K
awnVvZBU1NM/tRDKJg7Oo/pCIIODQX3mYAYjK4hEApeprnkfHUfHQIQhn786sqr0
/jdPUDm8zF3KGT/HjV87mHA4kpKuByMD0xBjG5kN/J+3haQbnhW+QY5+/jKuWITy
lfg7f/4W/meDIRTE6hazblJHgFY+hGRz9YY/rxYWgDuQsaR0sGbHR3tW5lxa+G1Y
q621bUacWhU57mMGqWw/iTRILcXiKwIDAQABo4ICyjCCAsYwHQYDVR0OBBYEFFp8
pPDZjP53QujHC03tAF4Eu8oTMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC84QjVCMkI0QTVBQzAxMUYwQjlGRUI0OTBEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MEcGCCsGAQUFBwEHAQH/BDgwNjA0BAIAATAuAwQFnOOgMAwDBASc5bADBAWc5cAD
BAac9UADBAWc/GAwDAMEBJz8kAMEBJz8oDANBgkqhkiG9w0BAQsFAAOCAQEAuNqS
qXWUnHfdwzhUR37E9wjS0Xcuk1o5TmgtIObmqOr0WZsssR4w4NC1WLEZslSaitS3
kOsjcDe64B4iiDjCWpXAk6+/QjZ8LnaJnRwrRf/ijdRAq0W6U2UQyf0+U+/HsRkR
JoRuOAno3rWDCzIDIMk/I8yStsCSTqHGj4652k6/dsC4Vg9I0t94IXj6BLGzPlHM
r6B5QDFC5fXzrXnWZMVcJUl5e1+1gHK7ypWzn7UblGx0L051TLtOw/7vLSxtCxfo
zPrvUNDLMwocjOgCD9lU8NLczXbY/BfxTV8CQTogT4Phe9A3co4SIFz3c5fXeUFK
YGB+WRjog0NZRitP/w==
-----END CERTIFICATE-----
Generated at Sun Jul 20 13:36:01 2025 by rpki-client