Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9FEA4242622E11F094B3ABD2DAE4EC9C.roa
File: 9FEA4242622E11F094B3ABD2DAE4EC9C.roa (raw, json)
Hash identifier: oL7nDFAnK2i+mVezqCo2TFaV4A0z9VbVB3UyXDWCfFs=
Subject key identifier: 52:DB:E9:50:3F:BC:96:F3:56:71:19:1A:F8:C7:6F:85:5F:9B:18:A2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016577
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9FEA4242622E11F094B3ABD2DAE4EC9C.roa
Signing time: Wed 16 Jul 2025 10:21:24 +0000
ROA not before: Wed 16 Jul 2025 10:21:20 +0000
ROA not after: Tue 22 Jul 2025 10:21:20 +0000
asID: 398465
IP address blocks: 156.255.24.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91511 (0x16577)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 16 10:21:20 2025 GMT
Not After : Jul 22 10:21:20 2025 GMT
Subject: CN=68777d24-32fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:9a:b5:68:0b:e1:0d:0c:f5:85:4a:83:f7:92:
68:10:d4:cd:9b:4a:c2:fe:4c:a9:8e:55:07:39:37:
3b:e8:d0:f5:34:b0:c0:10:b8:0c:02:9a:e2:f5:2e:
75:93:43:ab:c6:d2:69:b9:5a:80:1d:16:85:64:a3:
61:23:f8:cc:93:48:75:bf:2c:d3:76:fd:93:1f:5b:
da:1b:85:46:34:9e:0a:dd:c2:93:1e:d3:ce:43:f1:
8f:4d:41:d9:bb:bb:d3:a7:3c:93:9c:b5:e7:ac:9f:
12:ad:25:dd:d2:fe:dd:8d:7a:b7:c2:dd:68:58:56:
4a:45:23:f1:96:a7:eb:d3:bf:d7:27:3c:30:f2:dd:
48:e1:45:b2:7f:d9:3c:fc:f7:03:e6:20:be:21:f3:
0a:36:da:47:6f:bf:fb:97:c3:ae:04:32:4c:b8:a5:
bb:f8:d5:0c:3c:a6:e1:1a:c3:bd:71:5c:ca:52:9d:
dc:28:09:df:16:61:f6:88:6c:4f:ad:49:fd:07:ec:
c6:f7:43:b1:70:23:a6:19:1b:a8:fb:46:fc:8c:e6:
bb:52:22:15:91:c6:e9:df:9e:01:61:22:83:ff:3f:
e6:9c:7b:19:23:c7:6a:3f:29:bd:76:47:49:d0:e5:
e9:3b:23:3f:08:c5:2e:d5:91:ef:66:c4:75:41:6e:
61:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:DB:E9:50:3F:BC:96:F3:56:71:19:1A:F8:C7:6F:85:5F:9B:18:A2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9FEA4242622E11F094B3ABD2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.255.24.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:23:ed:d4:65:52:70:10:87:e0:d4:42:8a:93:22:f5:ee:49:
c0:31:52:34:02:ab:c4:01:45:d5:7f:a7:97:a5:1b:4f:9b:8a:
b3:a5:43:89:01:11:0b:cd:c5:23:f2:51:cd:82:d3:3f:7e:e4:
2a:42:59:23:81:4c:48:85:88:fd:1c:b2:bc:e3:63:4a:70:33:
9e:ca:5b:01:7b:e1:6a:4f:cc:01:84:8d:ab:88:2b:6b:35:d8:
21:1e:45:ac:63:4c:6b:9f:3d:8b:fb:5a:43:71:b9:8d:33:19:
76:3e:6c:18:2b:9e:f3:f4:d3:52:f5:cf:30:91:7d:23:6a:21:
a5:0c:be:d4:8e:4f:ac:fb:76:c8:0b:3f:e1:d2:c3:3e:e6:cb:
35:bd:a5:d8:48:a2:c9:9f:72:10:6d:2f:78:6c:10:1b:cf:01:
0a:36:2e:2a:5a:31:c5:43:b4:26:09:57:7c:b2:2c:f0:c9:1e:
c8:31:20:34:ed:e7:14:29:a5:cd:d4:9d:90:4c:cb:63:56:17:
49:79:10:a8:7e:82:d0:7a:b1:2c:a1:86:c7:d7:19:f8:31:b1:
f9:66:94:f5:82:6e:a0:23:4b:a2:46:0f:fb:01:33:0a:3d:f4:
49:bb:12:de:84:ce:b4:46:65:0a:f6:22:b2:4a:24:ab:f1:1a:
8b:36:d3:11
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAWV3MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNzE2MTAyMTIwWhcNMjUwNzIyMTAyMTIwWjAYMRYw
FAYDVQQDEw02ODc3N2QyNC0zMmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA8Zq1aAvhDQz1hUqD95JoENTNm0rC/kypjlUHOTc76ND1NLDAELgMApri
9S51k0OrxtJpuVqAHRaFZKNhI/jMk0h1vyzTdv2TH1vaG4VGNJ4K3cKTHtPOQ/GP
TUHZu7vTpzyTnLXnrJ8SrSXd0v7djXq3wt1oWFZKRSPxlqfr07/XJzww8t1I4UWy
f9k8/PcD5iC+IfMKNtpHb7/7l8OuBDJMuKW7+NUMPKbhGsO9cVzKUp3cKAnfFmH2
iGxPrUn9B+zG90OxcCOmGRuo+0b8jOa7UiIVkcbp354BYSKD/z/mnHsZI8dqPym9
dkdJ0OXpOyM/CMUu1ZHvZsR1QW5hZQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFFLb
6VA/vJbzVnEZGvjHb4VfmxiiMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC85RkVBNDI0MjYyMkUxMUYwOTRCM0FCRDJEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCnP8YMA0GCSqGSIb3DQEBCwUA
A4IBAQAfI+3UZVJwEIfg1EKKkyL17knAMVI0AqvEAUXVf6eXpRtPm4qzpUOJAREL
zcUj8lHNgtM/fuQqQlkjgUxIhYj9HLK842NKcDOeylsBe+FqT8wBhI2riCtrNdgh
HkWsY0xrnz2L+1pDcbmNMxl2PmwYK57z9NNS9c8wkX0jaiGlDL7Ujk+s+3bICz/h
0sM+5ss1vaXYSKLJn3IQbS94bBAbzwEKNi4qWjHFQ7QmCVd8sizwyR7IMSA07ecU
KaXN1J2QTMtjVhdJeRCofoLQerEsoYbH1xn4MbH5ZpT1gm6gI0uiRg/7ATMKPfRJ
uxLehM60RmUK9iKySiSr8RqLNtMR
-----END CERTIFICATE-----
Generated at Sun Jul 20 13:48:35 2025 by rpki-client