Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/08C20C728CA111F09A90AC88DAE4EC9C.roa
File: 08C20C728CA111F09A90AC88DAE4EC9C.roa (raw, json)
Hash identifier: UyFHNLd7Z0aH2B1qjX0ZY9tuGsuJE5hNxoixKdWNAjM=
Subject key identifier: 9F:1E:AB:83:C3:1D:F3:87:E0:E5:13:CC:A8:D8:27:EF:54:44:13:EB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0179BD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/08C20C728CA111F09A90AC88DAE4EC9C.roa
Signing time: Mon 08 Sep 2025 10:46:12 +0000
ROA not before: Mon 08 Sep 2025 10:46:07 +0000
ROA not after: Wed 22 Oct 2025 10:46:07 +0000
asID: 137899
IP address blocks: 156.225.16.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96701 (0x179bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 8 10:46:07 2025 GMT
Not After : Oct 22 10:46:07 2025 GMT
Subject: CN=68beb3f4-4b79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:2a:3a:f1:87:b6:e4:a9:c7:2e:eb:c6:00:45:
0f:96:c0:e4:7e:73:74:e1:fa:dd:10:5f:1f:90:44:
6d:8e:05:ba:92:48:f7:c3:4d:07:49:63:5b:bc:11:
5f:38:31:a8:6a:cb:09:0a:a3:5a:65:8f:fd:f6:e8:
d5:24:c4:e2:0a:37:0e:ab:cd:7f:49:94:12:6e:5e:
b2:7b:73:8f:b1:73:89:43:47:f0:79:d4:3e:24:ab:
18:49:63:fe:f4:18:bd:c7:d9:e0:81:c1:4b:13:54:
08:60:8a:52:ac:af:9e:09:ac:bc:e1:e9:c2:87:bb:
03:a8:da:53:e9:bd:8d:e2:51:75:35:f2:a0:b0:78:
8c:1e:01:08:21:77:db:31:c6:ab:6b:c5:9f:6f:c6:
58:cd:a5:64:db:6d:ed:01:94:5d:c5:91:80:c9:3e:
62:f1:9a:cf:62:b1:bb:3c:49:51:1b:30:52:c0:9d:
7b:a6:95:b2:e5:d0:08:be:6e:06:28:3c:7a:6a:05:
80:1e:84:45:1d:a5:79:f4:12:1f:72:8f:9e:66:7b:
6e:e0:cf:eb:b7:f9:26:d5:be:ce:72:f9:ce:85:77:
e7:9d:35:3e:eb:ae:a3:38:32:25:8b:7d:94:d3:a3:
3f:af:3d:92:15:3b:ef:b7:9e:e8:6e:f9:01:ed:49:
32:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:1E:AB:83:C3:1D:F3:87:E0:E5:13:CC:A8:D8:27:EF:54:44:13:EB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/08C20C728CA111F09A90AC88DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.16.0/20
Signature Algorithm: sha256WithRSAEncryption
46:dd:4a:2e:69:61:ae:46:28:15:bc:5a:86:cd:15:8a:54:8c:
73:89:64:0f:24:0f:41:27:06:83:02:b7:ed:24:25:a6:bb:25:
b6:6e:46:75:41:44:a1:4d:0c:a7:45:65:74:c2:ee:72:ac:a9:
3a:56:0a:08:bc:b2:7b:dc:a5:ed:c7:2f:0a:61:50:27:70:98:
17:f9:c6:50:4d:f0:47:e1:b7:04:2c:37:bb:4f:3f:fc:7e:63:
b9:a2:29:05:37:c9:0d:05:ec:33:6d:26:73:22:fd:0f:9b:b0:
a8:4d:55:f9:59:7c:fd:41:f3:54:a9:d8:cd:f5:a0:96:94:a7:
b1:ed:9c:06:4d:2e:c3:ec:be:c6:96:e3:d6:49:ad:89:b5:2d:
85:c7:ba:09:79:0d:01:0e:69:ab:0e:b0:1b:18:e5:c6:12:12:
fe:45:ac:c8:1b:43:53:18:08:f7:33:60:23:dd:dd:5c:cb:0a:
04:d3:fb:58:e3:6d:e0:32:62:61:c5:aa:9a:ca:1e:fa:f2:a7:
16:36:1b:37:ea:5b:b8:5b:02:04:6d:cc:14:82:e0:88:30:c6:
b0:dd:af:12:9e:f2:fe:a8:dd:0c:27:6c:29:1e:8c:03:9d:a3:
e8:cd:f2:d3:e6:de:f3:18:b8:ad:15:f6:0e:0a:ff:1a:ca:63:
b6:9e:71:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:51:14 2025 by rpki-client