Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/10E7AC52837011F0B9440BA8DAE4EC9C.roa
File: 10E7AC52837011F0B9440BA8DAE4EC9C.roa (raw, json)
Hash identifier: m9ZnIeRy9VSl2xS0q3dt2X3lrNg7SO2U9tqSCR8S5+0=
Subject key identifier: 6A:F9:A5:75:5B:D8:AC:3E:73:29:31:E0:4B:A5:FF:B9:60:2F:1A:C5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0171EC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/10E7AC52837011F0B9440BA8DAE4EC9C.roa
Signing time: Wed 27 Aug 2025 18:02:59 +0000
ROA not before: Wed 27 Aug 2025 18:02:54 +0000
ROA not after: Sun 26 Oct 2025 18:02:54 +0000
asID: 63139
IP address blocks: 156.225.121.0/24 maxlen: 24
156.227.14.0/24 maxlen: 24
156.227.192.0/24 maxlen: 24
156.227.193.0/24 maxlen: 24
156.227.194.0/23 maxlen: 24
156.227.196.0/24 maxlen: 24
156.227.197.0/24 maxlen: 24
156.227.198.0/24 maxlen: 24
156.227.199.0/24 maxlen: 24
156.227.220.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94700 (0x171ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 27 18:02:54 2025 GMT
Not After : Oct 26 18:02:54 2025 GMT
Subject: CN=68af4853-3b4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:c6:cd:66:68:97:fc:66:03:f7:a8:c8:98:d8:
bb:db:c0:05:2e:c9:84:50:f7:c9:0a:c8:31:48:c0:
f1:fe:56:68:f0:fa:eb:37:01:9d:ff:bb:fa:80:56:
14:1e:7f:dd:8f:92:7d:c7:d6:ea:8e:ac:3a:34:28:
d3:47:7e:0c:07:82:2f:eb:16:70:09:f0:e4:73:4e:
86:18:b1:0f:e6:53:a8:a6:53:89:18:6e:31:e3:bf:
c0:38:a1:fe:14:09:56:5e:40:56:57:d3:de:b6:c6:
91:b1:a1:d3:32:2d:b3:00:55:c5:e5:a2:96:eb:21:
a2:cf:64:cf:f3:73:66:97:de:d5:eb:56:2d:f4:63:
0f:6d:38:69:a1:23:ae:65:e5:9e:9e:13:2b:f0:b6:
c3:d9:db:86:52:5e:d3:c6:64:7a:8f:78:06:5f:2c:
63:04:e5:0b:85:bd:7a:c8:a2:4a:15:c8:5e:a7:f5:
bc:15:5a:f1:3b:50:7c:09:85:ef:cc:10:30:36:66:
b2:9b:39:d0:d3:3e:d5:22:3c:56:c7:0a:d9:09:28:
09:73:e6:ac:69:1a:c4:13:6d:38:74:d0:f9:d3:14:
b5:22:e8:3e:e7:c1:d8:5d:99:2a:ea:71:59:f6:48:
aa:76:eb:16:4d:1f:d0:a0:93:fa:2e:c5:8b:4f:df:
23:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:F9:A5:75:5B:D8:AC:3E:73:29:31:E0:4B:A5:FF:B9:60:2F:1A:C5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/10E7AC52837011F0B9440BA8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.121.0/24
156.227.14.0/24
156.227.192.0/21
156.227.220.0/22
Signature Algorithm: sha256WithRSAEncryption
43:f0:e6:bf:83:c0:d8:d7:d3:b4:bf:5b:b2:43:e8:aa:0e:b4:
5d:9a:04:84:89:9a:83:37:85:76:2d:e3:84:55:0c:ef:b7:d2:
4f:d7:f7:47:f3:ae:a8:19:1c:58:4a:30:a3:f0:ca:39:23:e7:
3a:4c:ce:aa:68:f9:3b:70:1b:0b:76:aa:02:fa:d8:71:f8:50:
0f:9e:b9:b1:bb:c6:d4:f9:9d:8b:9a:25:51:59:d4:68:35:99:
4b:54:ff:53:bb:80:36:3e:6a:5b:4a:8a:b2:2d:cb:cb:f0:b3:
ea:d1:f5:10:40:8b:b6:0f:c8:fa:2d:4b:66:19:18:c0:b6:b7:
20:d3:72:03:81:96:aa:e0:72:05:2a:fa:92:f6:32:66:35:77:
77:35:12:99:4c:fa:f6:2d:a1:4e:31:34:6c:99:1a:b6:08:c1:
c2:dd:20:fd:67:1f:d2:87:23:75:54:0c:c4:66:4a:fa:af:2e:
69:8d:1c:95:aa:8d:5e:14:35:0b:c2:5c:ff:70:0f:f0:d8:f4:
0b:a4:88:6b:ef:f2:1e:86:55:d9:02:2f:a1:dc:a2:0c:c7:bb:
b9:b2:b0:23:c1:cc:8c:58:eb:f8:8b:7b:a9:60:70:49:69:e5:
42:d1:8f:7c:26:0b:4d:f8:08:2b:86:a8:b5:9f:a4:93:25:69:
5d:67:d5:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 3 20:25:26 2025 by rpki-client