Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/277954748EDE11F0948D7BC4DAE4EC9C.roa
File: 277954748EDE11F0948D7BC4DAE4EC9C.roa (raw, json)
Hash identifier: aUO6jfNqsRv7eNHtWr1gOitkJ6MMbCXL46bcwbrHgZ4=
Subject key identifier: 63:21:6F:CF:87:A1:7B:CA:DD:BE:D2:E0:58:7B:F5:0B:6A:FA:FB:CD
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017A7E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/277954748EDE11F0948D7BC4DAE4EC9C.roa
Signing time: Thu 11 Sep 2025 07:08:45 +0000
ROA not before: Thu 11 Sep 2025 07:08:40 +0000
ROA not after: Sun 07 Dec 2025 07:08:40 +0000
asID: 135377
IP address blocks: 156.229.18.0/24 maxlen: 24
156.229.19.0/24 maxlen: 24
156.229.20.0/24 maxlen: 24
156.229.21.0/24 maxlen: 24
156.229.22.0/24 maxlen: 24
156.229.23.0/24 maxlen: 24
156.229.24.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96894 (0x17a7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 11 07:08:40 2025 GMT
Not After : Dec 7 07:08:40 2025 GMT
Subject: CN=68c2757d-b744
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c8:0d:73:48:a5:88:8f:51:36:c3:1e:3e:8f:
7e:11:ab:28:91:3c:08:2c:ce:ba:d9:c5:c3:06:86:
3f:55:05:2f:7b:5e:96:a0:29:5e:78:48:fc:b6:9f:
8a:f7:74:ce:b7:ef:80:21:d6:14:45:ce:6b:f3:cb:
1a:b8:3b:29:75:cf:de:bf:c6:ae:34:58:34:80:f0:
40:e3:2a:7e:db:79:b8:c2:b3:14:92:30:8c:ac:94:
11:2e:da:ac:20:9d:4c:ee:75:1e:c1:cb:9a:59:2c:
63:0e:45:6f:8c:3d:36:ec:6e:e0:7a:6f:33:2d:34:
7b:2d:4c:ec:7c:a8:fc:81:7e:c4:de:5d:29:a5:a2:
62:1e:42:54:6e:8f:1c:36:bb:26:92:55:c1:42:37:
c8:4b:ed:85:18:86:0a:48:41:5a:bb:fb:2b:26:1f:
d6:ce:e6:9b:20:60:d7:fc:7c:f2:68:d7:4c:75:71:
fa:8d:e6:9d:ac:23:d6:0d:74:c6:04:d3:d9:98:35:
20:f3:11:a5:43:e7:b7:3e:31:9d:93:b8:62:bb:f6:
c5:70:11:c3:08:4f:6c:70:79:e2:e5:37:00:7f:9c:
31:c1:73:01:60:06:20:7a:18:8f:10:2e:12:db:13:
a8:f4:0b:f3:14:c0:71:a8:e8:d0:27:0b:52:d5:78:
aa:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:21:6F:CF:87:A1:7B:CA:DD:BE:D2:E0:58:7B:F5:0B:6A:FA:FB:CD
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/277954748EDE11F0948D7BC4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.18.0-156.229.25.255
Signature Algorithm: sha256WithRSAEncryption
ad:d9:47:79:67:68:41:05:89:91:03:84:d8:08:3d:a5:0c:4c:
0b:36:41:d9:49:c5:ad:b9:d1:6f:83:43:98:84:b3:ed:37:28:
7f:d6:bf:85:45:7c:8b:65:47:16:7d:5a:cb:e7:a1:ae:1e:32:
e2:74:8b:58:f5:a9:3e:f5:e1:51:af:29:72:d6:77:af:13:f1:
c8:70:e4:99:00:b2:4a:04:ea:fd:c1:00:f9:65:55:e7:fe:e6:
25:42:27:67:fb:a8:ee:92:e3:3e:2a:d2:96:c3:e1:9c:b5:93:
61:a8:13:33:5e:07:da:b8:ac:dd:e0:86:01:42:a4:3e:e6:b7:
24:1e:d5:7b:6c:1b:00:38:e0:d8:b6:86:67:ea:0a:57:20:13:
8e:14:9d:90:d8:ef:0e:6a:95:32:33:fb:9a:e3:7e:47:30:37:
83:de:72:5d:bd:f6:06:dc:60:f5:c0:98:d8:d8:db:bd:37:52:
b5:72:5d:e0:4c:9d:0f:ca:16:3a:c0:cc:b4:23:b1:f5:1a:29:
3f:17:bf:05:1e:fb:d2:3c:81:c6:8c:38:b5:00:62:10:da:23:
c2:e0:53:67:7e:68:bc:c4:40:df:fb:46:cc:84:97:7a:f6:e8:
a9:82:fd:cc:74:5d:01:cf:ec:85:ee:80:56:a6:6a:9c:ed:31:
0c:e7:b1:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 11:33:53 2025 by rpki-client