Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/272C9350BAFD11F09AAAA4AFDAE4EC9C.roa
File: 272C9350BAFD11F09AAAA4AFDAE4EC9C.roa (raw, json)
Hash identifier: Syb89Rg6gNqAGLras+XvLDZGmxXLpo7Gwp2BJEsQOXk=
Subject key identifier: EF:0B:5D:6F:AD:91:6A:03:49:38:63:B3:B7:4E:70:7F:FD:B0:81:DE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 018525
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/272C9350BAFD11F09AAAA4AFDAE4EC9C.roa
Signing time: Thu 06 Nov 2025 10:41:30 +0000
ROA not before: Thu 06 Nov 2025 10:41:25 +0000
ROA not after: Tue 23 Dec 2025 10:41:25 +0000
asID: 138648
IP address blocks: 156.247.62.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 08 Nov 2025 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99621 (0x18525)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 6 10:41:25 2025 GMT
Not After : Dec 23 10:41:25 2025 GMT
Subject: CN=690c7b5a-8418
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:9e:8d:5b:4c:c7:c1:7b:0e:23:3a:e2:12:fd:
8f:77:51:2f:20:d5:d1:e7:40:e0:e9:6b:6c:5a:25:
d5:07:49:b4:0e:96:1f:e4:fc:d1:86:51:99:95:48:
72:0c:d8:2a:02:dc:20:46:d5:53:a2:cf:67:79:3b:
07:b5:06:69:f0:c0:c8:0f:ca:86:ae:cc:c8:55:2c:
1e:7a:67:79:ef:9b:fe:7d:50:a9:9f:4d:1a:8e:a8:
8e:9c:2b:c1:95:1c:01:e6:0b:78:e1:75:6e:d0:95:
7c:45:67:57:0a:b4:96:ed:d9:34:fa:f0:08:7b:b5:
6e:23:61:b2:42:1b:79:21:7e:c0:4e:c9:53:26:87:
b1:36:8b:fe:e6:56:8a:77:2d:67:4d:13:3c:37:ee:
66:12:51:c4:08:d8:71:63:db:30:53:20:7b:d0:31:
79:7d:a5:52:f1:bc:82:36:4d:0a:aa:b0:d2:35:c3:
3e:e6:85:fb:c6:40:c7:56:54:dd:d4:78:f1:ac:40:
25:00:d8:be:c8:36:18:cd:d5:3c:4f:85:42:61:24:
4d:88:b4:ee:5c:7e:c4:fe:6c:92:d6:c6:e7:07:d5:
99:9e:45:47:4d:39:78:c2:28:21:d0:a1:0b:46:34:
b8:e7:9e:70:36:75:af:aa:cd:e4:ef:88:41:12:25:
63:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:0B:5D:6F:AD:91:6A:03:49:38:63:B3:B7:4E:70:7F:FD:B0:81:DE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/272C9350BAFD11F09AAAA4AFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.62.0/24
Signature Algorithm: sha256WithRSAEncryption
89:71:d1:51:bc:76:00:aa:11:4e:b2:7f:b8:69:77:a5:e3:d5:
6a:b2:d6:39:1a:63:c7:41:f2:ad:39:15:68:9b:1f:c3:80:34:
5c:93:6a:74:33:25:23:26:b6:0b:ff:7b:76:39:c3:20:55:8a:
a2:4f:82:6b:c8:e1:ea:e2:df:86:35:d1:b1:12:22:dc:1f:67:
2f:6c:c6:be:5c:00:9f:77:bf:dd:10:ea:71:25:f1:ea:b3:6e:
79:ee:0e:fd:dc:24:a8:7c:8d:e2:59:2c:ae:d2:93:70:c4:2d:
13:a8:fb:3a:d1:23:3d:8b:69:02:d2:5d:4b:db:cd:91:2e:8f:
03:96:1a:71:6d:f6:da:8b:43:44:02:ae:97:a9:a7:28:c8:06:
56:ac:e0:70:cf:fe:73:22:bb:bd:53:da:d9:20:57:40:0e:09:
7c:ae:38:85:10:de:0a:61:f3:81:10:45:08:80:4e:d7:1b:b6:
e1:f7:74:36:db:b8:b9:fa:c0:32:cd:c0:f1:de:6f:6d:56:d2:
6d:15:14:1b:5d:ac:24:80:93:73:d6:6d:7b:2f:49:54:cf:8c:
3d:3a:8e:e9:99:be:6c:ba:21:e5:ad:12:e8:34:50:8a:4d:16:
98:89:11:36:ae:98:1c:8b:d1:88:6b:d3:12:e8:97:a9:9c:b7:
da:64:61:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 6 22:54:36 2025 by rpki-client