Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/56D8C6F0993811F0846407BCDAE4EC9C.roa
File: 56D8C6F0993811F0846407BCDAE4EC9C.roa (raw, json)
Hash identifier: jSBDSFsXltrHqy8d7ygVyoesP0DTNPP3iiG7aqT3y+c=
Subject key identifier: 05:44:35:5F:66:E4:AA:36:12:62:CE:ED:0E:D6:4C:ED:D1:6D:29:42
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1C24
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/56D8C6F0993811F0846407BCDAE4EC9C.roa
Signing time: Wed 24 Sep 2025 11:19:31 +0000
ROA not before: Wed 24 Sep 2025 11:19:25 +0000
ROA not after: Fri 24 Sep 2027 11:19:25 +0000
asID: 37027
IP address blocks: 154.16.160.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7204 (0x1c24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Sep 24 11:19:25 2025 GMT
Not After : Sep 24 11:19:25 2027 GMT
Subject: CN=68d3d3c2-0ee5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:76:32:4d:a0:25:81:e1:65:11:98:3d:4c:2e:
31:e2:ed:7a:db:2d:b5:57:53:2f:1b:2d:3f:20:e7:
6d:bc:96:6a:c4:21:cd:b7:64:56:fd:ff:77:de:53:
70:6d:68:ec:60:ce:6f:e9:cf:0a:f2:85:ee:b0:0a:
9a:dd:32:9e:58:87:60:54:bc:fb:4f:1c:b5:e4:2a:
24:20:bd:21:5e:03:13:f6:0a:89:65:f6:0a:7e:8d:
af:d4:3d:7d:48:e2:b1:a6:42:12:5b:8e:ee:bd:09:
d9:48:27:c2:d0:bf:f4:c7:8c:ba:69:18:d2:33:a3:
e2:97:80:1c:2f:10:1d:a7:13:f5:9a:c2:07:02:55:
9f:ea:21:33:8a:41:7c:7b:c3:7c:a9:1c:fe:54:77:
bc:8f:a1:85:05:18:ad:a4:94:de:83:cb:07:3b:a0:
ed:98:5d:f2:07:7a:0e:2a:f7:b1:3b:9e:66:30:02:
2a:ed:b4:cf:68:ea:a8:a5:54:06:70:0a:ec:bf:01:
83:72:e2:09:79:fa:88:78:09:9b:49:75:f8:3a:18:
e2:ed:56:92:94:2e:49:4e:36:c9:c3:13:9a:3b:a5:
e7:dd:df:89:c4:7c:02:46:c0:0d:46:b5:5f:e2:0a:
7e:35:3a:74:af:7f:0b:12:ca:29:eb:74:3c:d9:8b:
ca:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:44:35:5F:66:E4:AA:36:12:62:CE:ED:0E:D6:4C:ED:D1:6D:29:42
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/56D8C6F0993811F0846407BCDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.160.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:f8:9d:8f:e5:d0:76:6f:c7:cc:9d:52:89:63:f1:ea:a3:52:
e7:13:b8:08:a2:bd:00:46:64:7f:8a:95:76:5b:76:76:7e:56:
23:02:59:8a:8c:e2:fc:58:2c:19:0c:67:f9:b8:f6:c5:6c:16:
b7:05:93:9e:51:bb:5d:4d:c3:af:a0:1d:37:ef:2c:d8:55:24:
d7:93:66:db:0a:54:55:51:25:3b:45:f1:52:ec:93:63:a3:62:
f0:27:56:10:98:55:b7:af:c1:cd:83:97:b4:e3:48:6a:b3:2a:
c5:98:b0:f3:c9:52:b6:96:8d:cf:e0:23:50:d8:5f:e2:4c:96:
75:88:0c:32:a6:a7:99:7b:b0:5f:d2:83:56:9f:13:67:be:06:
0b:37:fa:87:af:2a:35:85:b2:e7:43:fe:7a:0d:cb:b6:89:a8:
56:ee:47:5f:80:e2:0e:22:6d:6d:a7:ed:f5:f8:80:9a:2f:bc:
90:fa:29:f1:cc:63:06:56:dd:33:e2:1f:28:79:98:d8:64:1e:
46:ee:1c:7e:71:cd:96:a4:07:9d:70:02:95:77:73:e6:8f:88:
6e:47:cd:11:36:06:31:ac:bd:5f:c2:fc:a8:15:ee:7b:cb:fc:
fd:ad:ee:af:f8:83:ae:46:1b:b2:24:3e:9d:01:38:39:be:24:
d0:10:99:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 16:14:00 2025 by rpki-client