Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/727EFEB89D5911F09BF86C7BDAE4EC9C.roa
File: 727EFEB89D5911F09BF86C7BDAE4EC9C.roa (raw, json)
Hash identifier: aHOMT7Y66jcM1NoSgFf053wpw+qzFlu5kggj1gW2uBo=
Subject key identifier: D0:CE:17:F9:73:BC:76:2D:42:FC:B7:0A:4C:66:E8:E8:CD:72:A5:F4
Certificate issuer: /CN=F36A44EAAR/serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Certificate serial: 098E
Authority key identifier: F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
Authority info access: rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/727EFEB89D5911F09BF86C7BDAE4EC9C.roa
Signing time: Mon 29 Sep 2025 17:26:35 +0000
ROA not before: Mon 29 Sep 2025 17:26:30 +0000
ROA not after: Mon 31 Dec 2035 17:26:30 +0000
asID: 154049
IP address blocks: 165.49.78.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.mft
rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 11 Oct 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2446 (0x98e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A44EAAR, serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Validity
Not Before: Sep 29 17:26:30 2025 GMT
Not After : Dec 31 17:26:30 2035 GMT
Subject: CN=68dac14b-8b29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b4:75:9b:66:1e:3b:85:b9:9d:10:65:0f:3e:
ce:83:d6:7f:1f:79:15:f5:63:e5:7e:74:7a:8f:c6:
af:d1:bb:fe:c9:af:b8:d0:ee:3a:40:1e:3c:d4:55:
ae:d2:d1:5e:be:fa:dc:9f:a6:da:75:47:af:4b:56:
ed:b8:d8:a6:87:1c:36:ec:57:8b:7d:2e:6d:33:d1:
3d:d7:84:b8:65:14:9d:de:3d:be:c6:54:73:75:d9:
89:47:62:1f:17:53:c0:6f:3f:e9:8e:ef:e7:ed:67:
80:d0:70:ba:2c:69:5e:5e:e5:1e:1f:46:7e:c5:6c:
af:c7:7c:03:a9:ae:44:64:d4:97:ac:0e:f6:00:47:
42:18:67:ea:f2:45:0a:00:1d:54:48:04:f5:58:2f:
53:89:cd:18:99:47:36:00:b9:6d:0c:6c:0e:04:8b:
4f:a4:4d:ca:9a:6d:3e:89:8f:c4:fd:8c:85:85:f8:
a1:c7:27:9a:25:74:de:0a:dd:6b:9b:d6:73:36:5a:
68:52:55:fd:79:53:fa:bf:cc:a9:2f:ef:9b:d1:65:
39:9b:b3:e8:b4:af:cd:bb:5c:35:8e:1d:0f:30:16:
6d:34:1b:d5:95:cf:5a:55:98:8d:49:07:ed:c9:ad:
aa:a7:4a:86:61:a2:f9:69:02:29:19:34:7b:9e:ca:
8a:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:CE:17:F9:73:BC:76:2D:42:FC:B7:0A:4C:66:E8:E8:CD:72:A5:F4
X509v3 Authority Key Identifier:
keyid:F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/727EFEB89D5911F09BF86C7BDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.49.78.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:d2:32:86:11:c7:44:d4:f2:d0:cb:d7:34:ca:4b:37:16:70:
ab:10:a5:28:d9:c9:b5:14:41:14:9c:8d:c8:83:e0:60:71:2f:
19:9e:49:d7:8e:51:03:9c:f0:70:f3:9f:aa:74:8f:73:d7:98:
0c:b3:62:c2:5e:3a:7e:29:f4:bf:7b:89:ac:87:05:cb:cf:ce:
e9:c2:65:bc:9e:1e:7d:f5:81:6c:ac:a9:06:77:cd:10:47:b2:
15:3b:02:87:31:b9:78:9d:ae:d7:91:27:94:d0:d5:83:cb:91:
ad:96:63:83:d7:c4:ef:e1:d8:10:2b:d5:cc:de:1d:9b:c6:e1:
d0:d1:40:7b:66:af:ef:a9:39:95:59:13:88:e8:84:a8:f1:96:
d8:ec:b2:d9:03:8b:1c:12:19:3f:34:97:af:4d:9e:e8:63:cb:
a3:9d:3e:e0:7a:50:3f:ce:6d:c8:9f:96:cf:7d:da:03:18:22:
b0:3c:90:b1:6b:66:b7:b9:a8:3e:15:5d:e2:88:ad:b4:63:1b:
39:bc:b5:f9:eb:a6:68:28:be:59:36:e8:d3:11:2d:0f:2c:e9:
e2:76:52:f0:c5:22:e9:f6:72:d8:07:82:38:c5:16:69:53:a6:
a0:f0:9e:d6:bb:d4:0a:fd:c6:dd:85:af:b8:75:01:57:85:bb:
bb:63:05:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 9 06:22:36 2025 by rpki-client