Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/13153EB6A50511F0B09FB5C1DAE4EC9C.roa
File: 13153EB6A50511F0B09FB5C1DAE4EC9C.roa (raw, json)
Hash identifier: LDjPKvUl50bDWBVPFSxHClfy5KsllDvcSJH+hKoaa48=
Subject key identifier: EE:77:69:8F:CD:A2:1B:AD:D2:1B:59:05:6E:27:AB:CB:5A:73:1A:DE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017FCF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/13153EB6A50511F0B09FB5C1DAE4EC9C.roa
Signing time: Thu 09 Oct 2025 11:42:47 +0000
ROA not before: Thu 09 Oct 2025 11:42:42 +0000
ROA not after: Sun 16 Nov 2025 11:42:42 +0000
asID: 22773
IP address blocks: 156.242.231.0/24 maxlen: 24
156.242.232.0/24 maxlen: 24
156.242.233.0/24 maxlen: 24
156.243.101.0/24 maxlen: 24
156.243.102.0/24 maxlen: 24
156.243.103.0/24 maxlen: 24
156.243.104.0/24 maxlen: 24
156.243.105.0/24 maxlen: 24
156.243.106.0/24 maxlen: 24
156.243.107.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98255 (0x17fcf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 9 11:42:42 2025 GMT
Not After : Nov 16 11:42:42 2025 GMT
Subject: CN=68e79fb6-f1d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ee:84:de:9c:2b:ae:5f:f2:71:37:71:9e:f8:
59:04:89:c3:8c:0a:f2:3b:39:e2:92:98:a9:59:be:
cd:f4:26:3c:ac:f0:58:82:f2:c2:18:49:22:06:94:
5d:bf:de:c7:e6:8c:3b:9b:6e:2d:9f:b7:ee:30:92:
48:99:a7:59:4d:3e:81:34:28:f4:2a:52:0a:9a:86:
6d:17:bf:ee:3b:13:fb:77:fc:50:bd:7e:95:7a:04:
cd:58:12:35:66:7d:ee:00:c3:98:54:80:7d:19:59:
8d:5f:51:da:d4:7a:e8:1f:ab:fe:8d:96:4e:51:ec:
3e:1f:48:82:0d:c3:e6:d7:9d:fd:fc:50:69:f7:6e:
ac:22:03:56:71:66:a6:56:36:21:d1:2f:13:7f:64:
4a:92:c8:b0:49:9e:d5:35:85:5d:73:a0:d7:fc:b3:
24:82:e4:ea:27:3f:2d:57:ee:f0:26:ed:00:ed:9f:
dc:6b:07:4c:b4:29:ed:14:31:5e:2c:0f:11:30:99:
78:5a:62:50:2d:07:b1:f1:27:30:f7:43:aa:66:21:
77:9a:2a:38:3d:cd:ae:7d:91:fd:a7:c2:c5:ba:b9:
0c:5f:40:0e:ae:d2:bd:cb:5d:d4:2b:46:19:89:c9:
0f:a3:0e:45:1b:71:67:69:4b:6f:f3:57:fc:59:40:
12:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:77:69:8F:CD:A2:1B:AD:D2:1B:59:05:6E:27:AB:CB:5A:73:1A:DE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/13153EB6A50511F0B09FB5C1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.242.231.0-156.242.233.255
156.243.101.0-156.243.107.255
Signature Algorithm: sha256WithRSAEncryption
5d:b7:39:80:5f:4f:5f:80:aa:6e:de:63:0b:2f:d3:38:b8:da:
d9:f5:1b:5b:67:69:0d:75:d4:fd:da:f1:22:08:fe:8f:21:6a:
60:74:20:d3:51:ed:e5:19:19:b6:05:1f:4a:22:b2:dd:15:a5:
3a:3e:72:a0:18:aa:ab:41:6d:86:74:89:5e:f4:a9:93:3d:0f:
11:5d:c6:b2:2c:60:41:f7:b8:dc:7a:53:a5:89:3d:6b:79:63:
b8:e1:ce:a5:35:0e:62:6c:f5:1a:99:b6:86:41:91:21:37:41:
5b:23:28:1c:48:66:cf:5a:01:14:81:5b:bf:ca:25:bd:fd:be:
8d:73:1b:c0:61:2e:5d:5f:f9:82:f6:3f:7a:80:8c:b0:2b:91:
2a:7f:0c:b5:93:04:69:12:ff:84:5a:d0:52:cd:23:ee:dd:ca:
e5:74:26:66:cb:a9:6a:18:72:0c:79:7a:82:2d:60:49:d9:c8:
9d:35:51:8c:2d:cc:a4:cd:97:a6:f8:c3:a1:41:99:31:38:e8:
b3:b6:a1:fa:c8:f7:61:a2:92:af:86:b6:08:45:03:7d:95:a5:
1f:1e:c7:b2:58:7d:a1:9c:09:89:cb:6c:86:f1:a5:20:23:ce:
ff:94:15:ad:fe:35:99:3c:38:af:3d:8b:72:7b:7f:78:43:7b:
e5:d1:d4:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 11:34:03 2025 by rpki-client