Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3662123/2BCF62489D2811EDB8F9258BF1222468/A58DD09690A611F0BAABE5C8DAE4EC9C.roa
File: A58DD09690A611F0BAABE5C8DAE4EC9C.roa (raw, json)
Hash identifier: WRkcJOJs2/U9E6K9MGQG8K0I2p0FY0LDJQ9GxZH1JLE=
Subject key identifier: 53:44:30:C5:DE:B8:F0:03:AB:9E:D3:65:99:89:A6:AA:59:D9:08:4F
Certificate issuer: /CN=F3662123AR/serialNumber=33341DCA161873AE7F3A44B36E1CDB39B5C0A09A
Certificate serial: 03E7
Authority key identifier: 33:34:1D:CA:16:18:73:AE:7F:3A:44:B3:6E:1C:DB:39:B5:C0:A0:9A
Authority info access: rsync://rpki.afrinic.net/repository/arin/MzQdyhYYc65_OkSzbhzbObXAoJo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3662123/2BCF62489D2811EDB8F9258BF1222468/A58DD09690A611F0BAABE5C8DAE4EC9C.roa
Signing time: Sat 13 Sep 2025 13:36:27 +0000
ROA not before: Sat 13 Sep 2025 13:36:22 +0000
ROA not after: Sun 13 Sep 2037 13:36:22 +0000
asID: 329129
IP address blocks: 169.239.95.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3662123/2BCF62489D2811EDB8F9258BF1222468/MzQdyhYYc65_OkSzbhzbObXAoJo.crl
rsync://rpki.afrinic.net/repository/member_repository/F3662123/2BCF62489D2811EDB8F9258BF1222468/MzQdyhYYc65_OkSzbhzbObXAoJo.mft
rsync://rpki.afrinic.net/repository/arin/MzQdyhYYc65_OkSzbhzbObXAoJo.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 18 Sep 2025 00:26:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 999 (0x3e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3662123AR, serialNumber=33341DCA161873AE7F3A44B36E1CDB39B5C0A09A
Validity
Not Before: Sep 13 13:36:22 2025 GMT
Not After : Sep 13 13:36:22 2037 GMT
Subject: CN=68c5735b-f25a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:4b:33:74:29:92:b1:e4:54:77:28:43:af:8b:
47:43:bb:9d:d4:61:d5:07:ca:25:7e:b2:12:5b:47:
29:f5:a9:2d:d9:d7:f2:ec:bc:91:42:75:fd:2e:cb:
48:7f:83:03:44:44:0c:cb:e1:fb:6c:6d:2e:3c:26:
dc:75:de:1d:c2:4a:81:8d:23:e0:79:de:19:72:79:
51:e1:58:5f:a8:e4:3f:10:5b:3e:fa:0c:7a:3d:a3:
9e:b7:64:53:aa:30:44:a9:fb:90:20:b1:cb:93:91:
c7:82:7a:fc:99:9e:c6:5f:69:d6:41:a9:ec:27:df:
e3:da:e1:f4:9c:e4:bb:38:c0:a1:04:e5:59:67:1a:
f1:3c:44:ce:2d:28:d4:d9:f2:26:89:51:cf:bb:87:
ea:a3:ab:52:b5:fd:f6:d8:1f:b4:ac:b6:17:fa:e6:
5a:09:9a:9a:68:78:76:2b:ba:92:a1:21:b4:43:65:
41:51:9c:cc:ec:1e:64:58:04:d9:a9:89:69:b3:d3:
21:cd:84:cf:07:d6:ff:95:92:f1:41:18:5e:e6:14:
a4:79:0c:60:0b:77:53:6b:6a:c3:da:dd:84:d3:d7:
91:4d:8f:4e:0a:7f:f4:aa:e2:a1:94:9c:ed:fc:4d:
4f:9f:8f:8e:01:44:ee:18:39:f3:36:cf:9a:f9:cb:
fa:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:44:30:C5:DE:B8:F0:03:AB:9E:D3:65:99:89:A6:AA:59:D9:08:4F
X509v3 Authority Key Identifier:
keyid:33:34:1D:CA:16:18:73:AE:7F:3A:44:B3:6E:1C:DB:39:B5:C0:A0:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3662123/2BCF62489D2811EDB8F9258BF1222468/MzQdyhYYc65_OkSzbhzbObXAoJo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/MzQdyhYYc65_OkSzbhzbObXAoJo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3662123/2BCF62489D2811EDB8F9258BF1222468/A58DD09690A611F0BAABE5C8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
169.239.95.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:5d:51:25:85:9f:27:7a:1e:34:7c:be:74:03:e3:10:13:9a:
20:1c:50:db:18:fd:24:8b:dd:52:af:26:12:19:8e:49:73:50:
c2:ed:a5:9a:bb:a2:84:64:aa:4d:8b:c0:60:eb:39:95:4d:3f:
d6:83:b6:0a:86:6f:d5:aa:d2:f1:2a:d6:8b:9d:a0:c1:86:e4:
a0:ad:98:f6:92:65:fd:71:36:35:5a:bd:64:01:42:50:83:81:
9a:ab:30:4e:72:42:08:97:d8:79:84:72:ca:d0:7c:7c:c4:d0:
74:c2:ca:7d:8d:33:cf:4b:92:c8:c9:7a:64:8c:a7:87:b2:4c:
5b:7f:8a:5d:ee:49:2a:07:b9:2d:eb:ac:f5:da:30:ea:5e:0c:
ba:9e:12:ec:25:06:87:d3:f7:40:ce:09:40:24:e3:4a:be:06:
75:9d:0f:49:3e:a7:a7:eb:a5:0a:d1:00:50:f4:cf:cd:05:05:
71:88:aa:b6:34:39:ba:93:76:25:18:fe:e8:0c:83:99:7f:08:
20:9d:25:f4:41:82:ed:68:0e:e8:6e:08:42:38:fb:c2:70:b5:
76:86:f4:8a:9f:df:7a:ff:18:a5:da:ff:55:51:44:59:e3:32:
9e:fb:f7:38:26:a1:50:13:f7:07:64:78:4b:6d:2a:6c:bd:7f:
3e:59:ef:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 16 19:50:58 2025 by rpki-client