Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3662123/2BCF62489D2811EDB8F9258BF1222468/C8482A8890A511F09A249AC2DAE4EC9C.roa
File: C8482A8890A511F09A249AC2DAE4EC9C.roa (raw, json)
Hash identifier: YU+s4UvMmcAg4MELqrvjtd9+g7rExQPJik+26Y7x314=
Subject key identifier: C8:85:55:4E:67:B9:11:7A:3A:FA:C8:4F:CA:45:81:96:4C:DC:1B:11
Certificate issuer: /CN=F3662123AR/serialNumber=33341DCA161873AE7F3A44B36E1CDB39B5C0A09A
Certificate serial: 03E1
Authority key identifier: 33:34:1D:CA:16:18:73:AE:7F:3A:44:B3:6E:1C:DB:39:B5:C0:A0:9A
Authority info access: rsync://rpki.afrinic.net/repository/arin/MzQdyhYYc65_OkSzbhzbObXAoJo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3662123/2BCF62489D2811EDB8F9258BF1222468/C8482A8890A511F09A249AC2DAE4EC9C.roa
Signing time: Sat 13 Sep 2025 13:30:16 +0000
ROA not before: Sat 13 Sep 2025 13:30:11 +0000
ROA not after: Sat 01 Aug 2037 13:30:11 +0000
asID: 329129
IP address blocks: 169.239.92.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3662123/2BCF62489D2811EDB8F9258BF1222468/MzQdyhYYc65_OkSzbhzbObXAoJo.crl
rsync://rpki.afrinic.net/repository/member_repository/F3662123/2BCF62489D2811EDB8F9258BF1222468/MzQdyhYYc65_OkSzbhzbObXAoJo.mft
rsync://rpki.afrinic.net/repository/arin/MzQdyhYYc65_OkSzbhzbObXAoJo.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 18 Sep 2025 00:26:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 993 (0x3e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3662123AR, serialNumber=33341DCA161873AE7F3A44B36E1CDB39B5C0A09A
Validity
Not Before: Sep 13 13:30:11 2025 GMT
Not After : Aug 1 13:30:11 2037 GMT
Subject: CN=68c571e7-0339
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:fc:11:bc:a3:82:91:f4:e4:ed:ee:c1:c5:0c:
fb:6f:0b:f9:d9:b1:7f:6a:d1:b7:9b:df:49:6a:00:
eb:0b:a8:6e:da:4d:4a:03:5c:cc:aa:5e:00:12:44:
a2:93:cd:f9:d6:ba:27:7c:7c:6d:92:c5:29:1f:4c:
fd:ef:1e:25:75:f0:74:01:d3:04:1e:1f:df:ae:0b:
ef:c9:87:01:6a:08:54:8d:8d:dd:be:44:c5:c6:ee:
63:30:98:10:16:a7:3f:d8:c1:c0:cb:b4:7e:fe:96:
91:28:2f:07:06:f7:c4:e9:af:7a:19:8e:e6:21:6c:
8a:e1:20:01:1a:69:82:78:f2:6a:d1:88:31:a5:62:
e2:06:8f:8c:b5:ab:bb:2b:27:02:2c:b6:d2:7a:5f:
34:28:20:69:c3:14:38:4e:5b:fc:e6:aa:d5:3e:2b:
0d:82:8f:60:5f:d9:36:1a:97:a4:aa:ae:90:e1:89:
56:ed:86:c7:6f:18:12:bc:50:0e:4e:25:f5:a8:5b:
4d:13:63:11:80:fc:eb:64:54:a2:3f:3a:f5:58:4e:
a9:e1:f4:62:a5:ac:19:52:3a:1f:0a:2f:bb:2e:5f:
92:ac:eb:b5:52:25:6d:8e:d4:04:f8:e8:43:5b:b2:
7d:2f:dc:9c:73:52:80:c6:2d:a9:e1:02:7f:2d:a2:
86:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:85:55:4E:67:B9:11:7A:3A:FA:C8:4F:CA:45:81:96:4C:DC:1B:11
X509v3 Authority Key Identifier:
keyid:33:34:1D:CA:16:18:73:AE:7F:3A:44:B3:6E:1C:DB:39:B5:C0:A0:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3662123/2BCF62489D2811EDB8F9258BF1222468/MzQdyhYYc65_OkSzbhzbObXAoJo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/MzQdyhYYc65_OkSzbhzbObXAoJo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3662123/2BCF62489D2811EDB8F9258BF1222468/C8482A8890A511F09A249AC2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
169.239.92.0/24
Signature Algorithm: sha256WithRSAEncryption
41:b3:40:70:23:4b:04:fb:5b:c4:af:09:25:64:9a:8d:c3:31:
fb:2f:f8:3c:e9:eb:5d:a0:f3:0b:67:f5:6d:25:aa:33:8a:be:
d4:1e:00:6e:a6:97:f3:f3:07:9b:ed:63:15:00:7b:8e:58:a5:
89:6c:94:7d:00:9f:e7:63:8c:0f:bd:90:2b:58:a7:b1:08:a4:
e1:a6:cf:4d:81:17:ab:fc:b8:67:78:bc:62:8a:52:89:86:13:
b5:9d:da:e7:4d:4e:ab:4d:2e:48:aa:35:93:12:39:50:2a:b6:
a4:ec:32:83:e8:c0:15:c9:8c:9a:fe:c4:89:ca:8e:cd:9f:ba:
f1:0d:a0:d1:d7:3c:68:9b:b2:86:af:da:3b:b8:9d:26:31:d7:
ac:05:c1:12:46:0a:c1:2d:4f:3d:d2:eb:6b:36:37:41:c0:5c:
d7:d0:fb:3b:d5:89:ec:e4:6e:5a:c3:40:9f:76:d8:e2:5b:c5:
1d:b6:ab:af:33:20:4a:78:49:7a:d3:80:10:99:4c:13:1a:81:
42:55:0d:f9:03:62:b2:22:c2:75:4f:58:1c:83:41:e7:f4:67:
56:c3:40:b6:01:9e:9b:9e:b9:72:74:0a:35:4b:c0:ba:3d:58:
b8:01:80:87:fa:58:73:c6:15:fb:d5:c3:86:a8:a0:62:63:3a:
59:71:b6:6e
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICA+EwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
NjIxMjNBUjExMC8GA1UEBRMoMzMzNDFEQ0ExNjE4NzNBRTdGM0E0NEIzNkUxQ0RC
MzlCNUMwQTA5QTAeFw0yNTA5MTMxMzMwMTFaFw0zNzA4MDExMzMwMTFaMBgxFjAU
BgNVBAMTDTY4YzU3MWU3LTAzMzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDC/BG8o4KR9OTt7sHFDPtvC/nZsX9q0beb30lqAOsLqG7aTUoDXMyqXgAS
RKKTzfnWuid8fG2SxSkfTP3vHiV18HQB0wQeH9+uC+/JhwFqCFSNjd2+RMXG7mMw
mBAWpz/YwcDLtH7+lpEoLwcG98Tpr3oZjuYhbIrhIAEaaYJ48mrRiDGlYuIGj4y1
q7srJwIsttJ6XzQoIGnDFDhOW/zmqtU+Kw2Cj2Bf2TYal6SqrpDhiVbthsdvGBK8
UA5OJfWoW00TYxGA/OtkVKI/OvVYTqnh9GKlrBlSOh8KL7suX5Ks67VSJW2O1AT4
6ENbsn0v3JxzUoDGLanhAn8toob3AgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUyIVV
Tme5EXo6+shPykWBlkzcGxEwHwYDVR0jBBgwFoAUMzQdyhYYc65/OkSzbhzbObXA
oJowDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjYyMTIzLzJCQ0Y2MjQ4OUQyODExRURCOEY5MjU4QkYxMjIyNDY4L016UWR5
aFlZYzY1X09rU3piaHpiT2JYQW9Kby5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L016UWR5aFlZYzY1X09rU3piaHpiT2JYQW9Kby5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjYyMTIzLzJCQ0Y2MjQ4OUQyODExRURCOEY5MjU4QkYxMjIy
NDY4L0M4NDgyQTg4OTBBNTExRjA5QTI0OUFDMkRBRTRFQzlDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACp71wwDQYJKoZIhvcNAQELBQAD
ggEBAEGzQHAjSwT7W8SvCSVkmo3DMfsv+Dzp612g8wtn9W0lqjOKvtQeAG6ml/Pz
B5vtYxUAe45YpYlslH0An+djjA+9kCtYp7EIpOGmz02BF6v8uGd4vGKKUomGE7Wd
2udNTqtNLkiqNZMSOVAqtqTsMoPowBXJjJr+xInKjs2fuvENoNHXPGibsoav2ju4
nSYx16wFwRJGCsEtTz3S62s2N0HAXNfQ+zvViezkblrDQJ922OJbxR22q68zIEp4
SXrTgBCZTBMagUJVDfkDYrIiwnVPWByDQef0Z1bDQLYBnpueuXJ0CjVLwLo9WLgB
gIf6WHPGFfvVw4aooGJjOllxtm4=
-----END CERTIFICATE-----
Generated at Tue Sep 16 19:49:31 2025 by rpki-client