Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AA2F131059DA11F0A3D6AABCDAE4EC9C.roa
File: AA2F131059DA11F0A3D6AABCDAE4EC9C.roa (raw, json)
Hash identifier: Bfg8CSqYCG9QWqSpHhMDta4VLgprsO9tH136L9TsjfE=
Subject key identifier: 9F:7F:D3:10:CB:E2:6D:6B:E5:9F:49:50:6D:E2:FD:55:9E:C4:B3:9F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0161DD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AA2F131059DA11F0A3D6AABCDAE4EC9C.roa
Signing time: Sat 05 Jul 2025 20:00:14 +0000
ROA not before: Sat 05 Jul 2025 20:00:10 +0000
ROA not after: Fri 26 Jun 2026 20:00:10 +0000
asID: 137263
IP address blocks: 156.225.180.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90589 (0x161dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 5 20:00:10 2025 GMT
Not After : Jun 26 20:00:10 2026 GMT
Subject: CN=6869844e-9e20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:41:c5:9c:83:46:67:dd:4f:a9:9c:24:7b:84:
5f:d8:ca:af:94:fb:f3:92:49:5d:e6:48:44:7e:7c:
24:be:b8:f7:8d:c6:0c:aa:26:41:a8:09:52:7f:c9:
aa:84:26:c5:79:4d:bd:64:8a:b4:d5:6c:ec:32:d5:
2a:54:e3:a2:69:1a:ef:d0:e9:40:8a:46:ea:bf:91:
ec:2f:e5:ae:ff:2a:51:5d:58:68:21:83:2d:ca:00:
39:43:be:90:f7:fd:97:2c:7f:af:83:c6:ac:a7:67:
45:3d:66:44:3f:5b:26:8f:40:ae:5a:ed:89:da:80:
71:52:82:a8:de:b7:dc:78:5f:dd:5e:d5:56:15:ab:
ab:fc:03:f4:8c:6b:c6:6e:3f:08:fc:3b:08:0a:4b:
5a:01:c6:56:42:b9:09:35:96:79:d3:3a:59:fe:1b:
5a:a0:b6:fe:18:88:fb:1b:fd:22:2e:c5:5c:5b:be:
f6:b3:29:bb:bb:4b:51:f4:6a:64:ec:7c:01:b3:f8:
15:f8:05:36:de:8d:01:d1:19:f2:d5:44:63:d9:85:
7a:59:7f:c0:47:33:03:f2:af:2d:02:e4:6b:1e:ee:
6e:bc:70:e1:01:28:09:be:b0:78:2b:83:d8:7d:32:
4e:e9:28:2a:09:8b:ee:5c:b5:51:a9:c9:d5:00:40:
e7:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:7F:D3:10:CB:E2:6D:6B:E5:9F:49:50:6D:E2:FD:55:9E:C4:B3:9F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AA2F131059DA11F0A3D6AABCDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.180.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:8e:f1:71:fb:05:61:8e:bd:91:a9:ee:02:5f:a5:88:85:8a:
20:ab:59:7f:38:2d:fc:79:7a:b4:ee:bb:e7:7d:d0:a4:f4:62:
f2:86:6c:e8:f4:d4:7a:a1:b6:52:96:ee:2e:c2:7a:1e:aa:9b:
b8:ce:65:4e:92:8c:96:8f:d3:81:50:a3:03:c1:34:ac:06:46:
34:8b:60:7e:d7:3e:f3:d8:09:97:c2:06:5e:f6:60:6b:8e:f3:
d3:b5:ae:65:03:90:25:5b:c6:a4:5f:ec:38:d3:21:54:83:86:
c6:ee:b9:db:41:54:1c:27:6e:a0:82:22:f5:95:e5:88:9d:ca:
cf:04:91:29:ce:b1:d5:65:ab:b2:5a:b3:ec:48:34:5f:a9:21:
5f:1c:9c:a9:06:33:b2:7b:89:fb:c0:1b:ec:3b:e0:f2:5a:a5:
ff:42:38:22:d8:d8:90:c7:ee:1c:81:34:76:4c:95:dd:7d:03:
3f:36:c2:4a:0f:f8:a0:cf:87:37:80:ab:25:47:0e:7b:8e:1f:
a1:0c:41:2a:4a:8a:34:a9:60:24:e7:14:ef:d8:1c:43:ff:07:
7d:c8:52:4f:49:8a:a1:2e:1c:5d:d7:c0:bd:73:fe:51:50:42:
7d:d3:5a:1f:30:0c:d2:c3:f6:3d:a5:04:9c:7a:71:83:9f:df:
43:e5:92:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 13:31:56 2025 by rpki-client