Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3662123/2BCF62489D2811EDB8F9258BF1222468/407424D090A611F0A752BAC4DAE4EC9C.roa
File: 407424D090A611F0A752BAC4DAE4EC9C.roa (raw, json)
Hash identifier: TH3/4mixLvf8p6rQJ/buDVDbyHxIQcv4IonGYryiTFc=
Subject key identifier: 34:9E:4F:D2:BC:0B:0C:99:C9:54:D1:5C:ED:CD:49:39:EF:16:DE:12
Certificate issuer: /CN=F3662123AR/serialNumber=33341DCA161873AE7F3A44B36E1CDB39B5C0A09A
Certificate serial: 03E3
Authority key identifier: 33:34:1D:CA:16:18:73:AE:7F:3A:44:B3:6E:1C:DB:39:B5:C0:A0:9A
Authority info access: rsync://rpki.afrinic.net/repository/arin/MzQdyhYYc65_OkSzbhzbObXAoJo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3662123/2BCF62489D2811EDB8F9258BF1222468/407424D090A611F0A752BAC4DAE4EC9C.roa
Signing time: Sat 13 Sep 2025 13:33:37 +0000
ROA not before: Sat 13 Sep 2025 13:33:32 +0000
ROA not after: Sun 13 Sep 2037 13:33:32 +0000
asID: 329129
IP address blocks: 169.239.93.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3662123/2BCF62489D2811EDB8F9258BF1222468/MzQdyhYYc65_OkSzbhzbObXAoJo.crl
rsync://rpki.afrinic.net/repository/member_repository/F3662123/2BCF62489D2811EDB8F9258BF1222468/MzQdyhYYc65_OkSzbhzbObXAoJo.mft
rsync://rpki.afrinic.net/repository/arin/MzQdyhYYc65_OkSzbhzbObXAoJo.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 18 Sep 2025 00:26:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 995 (0x3e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3662123AR, serialNumber=33341DCA161873AE7F3A44B36E1CDB39B5C0A09A
Validity
Not Before: Sep 13 13:33:32 2025 GMT
Not After : Sep 13 13:33:32 2037 GMT
Subject: CN=68c572b1-91f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:67:f9:1d:a1:b4:27:e1:7d:40:5c:c5:dc:a9:
84:55:ec:b8:30:b8:56:8a:f6:77:3c:f7:da:8c:73:
a8:2b:8c:8c:2e:94:74:e8:1d:91:ec:45:4a:92:d0:
37:bf:61:37:39:64:37:a4:bd:29:16:ae:1d:72:7d:
d1:d0:96:34:ea:fd:1e:e5:1b:1b:78:bf:d0:54:30:
68:bf:c5:a9:ad:e8:db:74:53:c5:bb:ac:60:96:42:
0e:65:bf:f3:99:50:cd:11:c4:4a:c1:0e:01:f0:5c:
d8:e2:0f:7d:d8:d5:a1:b1:28:af:97:56:70:0b:db:
b0:5b:aa:6e:dc:67:74:f9:9f:15:de:05:07:61:84:
c2:14:f7:b5:44:ec:cc:e0:c3:3f:ea:bf:15:cd:48:
db:14:1c:bf:f6:72:24:f8:09:e7:7c:b1:da:e9:79:
6a:b9:3e:19:59:ab:9c:b8:4a:b1:b2:4b:c3:35:6c:
3b:6e:c2:5f:a3:be:af:7a:4a:8f:c4:6e:82:15:f4:
22:2b:4a:74:a5:3f:30:9f:1e:31:99:92:03:00:38:
1a:7d:9b:70:07:09:2f:60:f5:1e:70:55:a9:a0:e1:
07:ff:34:9e:12:25:53:55:d6:f8:00:62:67:1d:57:
81:8e:7c:ff:a0:e8:1e:e3:5b:35:1f:28:35:7e:a8:
76:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:9E:4F:D2:BC:0B:0C:99:C9:54:D1:5C:ED:CD:49:39:EF:16:DE:12
X509v3 Authority Key Identifier:
keyid:33:34:1D:CA:16:18:73:AE:7F:3A:44:B3:6E:1C:DB:39:B5:C0:A0:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3662123/2BCF62489D2811EDB8F9258BF1222468/MzQdyhYYc65_OkSzbhzbObXAoJo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/MzQdyhYYc65_OkSzbhzbObXAoJo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3662123/2BCF62489D2811EDB8F9258BF1222468/407424D090A611F0A752BAC4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
169.239.93.0/24
Signature Algorithm: sha256WithRSAEncryption
15:8e:4e:1c:62:39:a0:70:2a:fd:d2:1e:04:42:c7:6f:0b:cd:
3c:eb:b4:ce:d7:cc:fb:9d:aa:82:8f:97:99:ec:06:ef:8a:60:
22:bf:c8:62:2c:e0:5f:3f:c8:03:ad:0f:e4:07:75:85:47:e6:
44:60:48:46:76:e9:dd:88:7b:bb:f6:95:4c:bc:0e:ce:38:bf:
8d:58:d9:8b:db:1a:c7:7c:26:93:06:dc:4b:bb:09:d8:07:b1:
25:ae:4e:76:5a:90:ae:71:5a:50:7f:c8:bc:73:ff:47:70:57:
7e:17:18:6b:c1:ca:8d:9f:c8:d3:f4:90:f8:00:5e:12:d4:38:
74:fe:e8:36:e0:6a:9b:c5:66:82:f8:ab:4d:3f:82:f0:b0:da:
f4:e4:6c:97:cd:48:bc:6d:cc:0b:b6:bd:bb:2a:be:49:71:f2:
93:9b:e8:47:62:b9:ab:07:bc:9c:f5:72:f4:7d:54:a0:42:ab:
1a:f8:30:47:43:3c:49:31:10:c7:4f:a9:f8:9a:14:11:43:f0:
12:1b:8b:ab:f3:90:a0:4a:43:4d:41:17:af:0e:6a:7c:98:fb:
21:6d:96:54:70:33:74:0e:12:15:60:ad:08:c4:1c:69:e3:98:
5c:7d:19:58:9f:7a:3d:43:3d:79:72:2e:71:8e:f3:4d:9d:97:
80:ba:7f:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 16 19:52:47 2025 by rpki-client