Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B78A58BC62EA11F099BD09A7DAE4EC9C.roa
File: B78A58BC62EA11F099BD09A7DAE4EC9C.roa (raw, json)
Hash identifier: uor8heaL3dDHurnf8LfEbyuBfqDb5ZqFo1jl8Qe+PUU=
Subject key identifier: 41:56:7F:7D:C6:0A:63:37:5B:0B:D7:2C:CF:6C:26:39:A5:C5:E1:06
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0165B2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B78A58BC62EA11F099BD09A7DAE4EC9C.roa
Signing time: Thu 17 Jul 2025 08:47:49 +0000
ROA not before: Thu 17 Jul 2025 08:47:45 +0000
ROA not after: Sat 26 Jul 2025 08:47:45 +0000
asID: 38193
IP address blocks: 156.238.80.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91570 (0x165b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 17 08:47:45 2025 GMT
Not After : Jul 26 08:47:45 2025 GMT
Subject: CN=6878b8b5-45a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e4:c7:2c:08:4f:7d:9b:93:21:6d:1b:d5:a4:
72:22:57:62:2e:e0:82:f8:35:b7:85:22:6f:5c:05:
c9:92:9d:b6:f1:e0:38:1c:2f:1d:e7:f7:c7:80:94:
34:5a:65:1a:2c:05:06:56:38:f5:43:6b:38:2b:2f:
c3:40:a4:27:c8:3c:a0:58:ed:a2:87:cb:b5:14:aa:
18:42:e6:1d:e4:36:26:6f:09:f5:59:7d:2e:83:af:
6d:0d:2b:87:86:8d:d0:2a:e2:81:e2:a6:a0:bf:5f:
09:d1:b6:b6:84:12:82:72:29:6b:45:92:c9:58:e9:
1b:f1:93:49:a0:57:8d:b5:b7:71:3f:0b:bf:74:20:
26:6b:91:2d:b0:62:0b:72:fa:80:ca:40:73:87:25:
99:b1:ed:d9:ed:7a:9c:e3:c1:71:27:6b:63:08:72:
cf:b0:91:26:1d:7b:3c:e7:9d:38:ae:11:75:43:bc:
07:e5:a7:1c:2d:4d:e2:a1:b8:8e:74:2a:35:1a:47:
7c:f4:a6:74:ef:88:8a:50:c4:a4:b8:61:2e:57:24:
0c:2c:52:5b:da:43:3c:3c:ba:3f:ce:e6:6b:a0:21:
eb:29:2b:a7:b3:3c:82:94:13:44:bc:3d:92:1f:36:
09:2e:e1:43:84:70:99:b6:c9:20:d1:fd:96:7a:0c:
43:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:56:7F:7D:C6:0A:63:37:5B:0B:D7:2C:CF:6C:26:39:A5:C5:E1:06
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B78A58BC62EA11F099BD09A7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.80.0/24
Signature Algorithm: sha256WithRSAEncryption
12:d8:1c:0d:3e:a9:01:1b:de:ed:4f:a2:33:33:e5:72:26:a1:
07:de:06:c7:02:ec:0e:c3:64:40:ba:76:40:bc:50:e3:ba:fc:
f1:20:0c:ec:f9:1e:85:c5:e2:11:d8:ef:8f:34:47:03:11:cf:
47:ad:43:f5:50:ca:c1:f8:8f:5b:b1:d9:81:43:c9:59:8f:60:
39:55:d8:cd:e1:3b:2c:68:82:55:fb:ff:a7:93:7f:19:90:19:
15:91:e4:dc:e4:a8:f2:b4:2d:21:a4:a5:a9:fa:d9:c3:39:08:
7a:0a:58:b5:a4:46:9a:42:0f:e3:26:d0:80:5c:41:c3:ea:96:
05:28:0f:d9:74:fa:2a:24:17:1d:57:a4:ee:aa:cc:50:be:9a:
c8:21:31:1e:99:8d:80:b0:65:91:06:7d:bf:39:2f:09:fe:cc:
9f:08:0f:d5:75:f5:d2:5d:6a:71:d5:ea:8c:1d:e9:ee:41:9e:
c4:6e:f7:61:19:01:b3:37:61:2d:21:60:d3:f4:7f:c7:67:94:
b3:6b:69:95:38:68:0e:8e:15:56:86:48:43:04:d6:60:50:09:
e3:e7:f7:c4:a7:8a:a0:1d:88:a8:56:2f:53:c0:9c:ad:15:f3:
61:8a:f6:27:af:2f:84:cf:68:4f:5b:41:83:51:d1:a5:95:0f:
7a:2d:09:54
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAWWyMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNzE3MDg0NzQ1WhcNMjUwNzI2MDg0NzQ1WjAYMRYw
FAYDVQQDEw02ODc4YjhiNS00NWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAreTHLAhPfZuTIW0b1aRyIldiLuCC+DW3hSJvXAXJkp228eA4HC8d5/fH
gJQ0WmUaLAUGVjj1Q2s4Ky/DQKQnyDygWO2ih8u1FKoYQuYd5DYmbwn1WX0ug69t
DSuHho3QKuKB4qagv18J0ba2hBKCcilrRZLJWOkb8ZNJoFeNtbdxPwu/dCAma5Et
sGILcvqAykBzhyWZse3Z7Xqc48FxJ2tjCHLPsJEmHXs85504rhF1Q7wH5accLU3i
obiOdCo1Gkd89KZ074iKUMSkuGEuVyQMLFJb2kM8PLo/zuZroCHrKSunszyClBNE
vD2SHzYJLuFDhHCZtskg0f2WegxD0wIDAQABo4ICojCCAp4wHQYDVR0OBBYEFEFW
f33GCmM3WwvXLM9sJjmlxeEGMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9CNzhBNThCQzYyRUExMUYwOTlCRDA5QTdEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnO5QMA0GCSqGSIb3DQEBCwUA
A4IBAQAS2BwNPqkBG97tT6IzM+VyJqEH3gbHAuwOw2RAunZAvFDjuvzxIAzs+R6F
xeIR2O+PNEcDEc9HrUP1UMrB+I9bsdmBQ8lZj2A5VdjN4TssaIJV+/+nk38ZkBkV
keTc5KjytC0hpKWp+tnDOQh6Cli1pEaaQg/jJtCAXEHD6pYFKA/ZdPoqJBcdV6Tu
qsxQvprIITEemY2AsGWRBn2/OS8J/syfCA/VdfXSXWpx1eqMHenuQZ7EbvdhGQGz
N2EtIWDT9H/HZ5Sza2mVOGgOjhVWhkhDBNZgUAnj5/fEp4qgHYioVi9TwJytFfNh
ivYnry+Ez2hPW0GDUdGllQ96LQlU
-----END CERTIFICATE-----
Generated at Sun Jul 20 11:24:02 2025 by rpki-client