Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2E077DC6803711F0A918F4B7DAE4EC9C.roa
File: 2E077DC6803711F0A918F4B7DAE4EC9C.roa (raw, json)
Hash identifier: 1CIcgrhL5luqXLkHz3TwEdrrXVBqeLuLZDB2QjNz75Y=
Subject key identifier: B0:1A:9D:80:FD:97:38:AA:9D:30:A9:84:45:79:6B:06:8D:A8:A0:B4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016F33
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2E077DC6803711F0A918F4B7DAE4EC9C.roa
Signing time: Sat 23 Aug 2025 15:38:14 +0000
ROA not before: Sat 23 Aug 2025 15:38:09 +0000
ROA not after: Sat 06 Sep 2025 15:38:09 +0000
asID: 54801
IP address blocks: 156.245.204.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94003 (0x16f33)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 23 15:38:09 2025 GMT
Not After : Sep 6 15:38:09 2025 GMT
Subject: CN=68a9e065-fb58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:66:35:9b:d2:c8:18:6f:eb:d7:3a:a2:f3:38:
2a:e2:d5:3d:4c:2d:1f:e4:9a:4e:e5:ba:e6:1c:3a:
0d:de:e5:1d:ee:7e:a9:e2:9b:ed:59:e7:c3:c3:7b:
6a:51:ea:27:7a:e3:27:e6:ef:8b:66:6c:da:95:96:
32:87:16:28:3b:71:6f:59:3e:56:55:da:22:d7:91:
97:98:28:29:91:57:9a:4f:7a:f3:1b:9a:48:2c:1f:
9a:bf:d7:61:a4:1a:af:a0:5f:4d:63:e4:91:af:bd:
7d:38:02:fd:31:84:9c:61:08:62:d9:79:06:07:39:
8c:69:14:b1:a4:6f:00:a3:7d:6f:bd:9c:9d:9f:cd:
7c:a7:9b:17:e1:64:1e:ad:f5:bf:89:a9:77:ef:fa:
2f:de:0d:57:4d:18:35:ba:cf:26:a2:2e:4b:36:b3:
4c:45:b7:7a:de:90:4e:19:68:66:a4:10:05:c8:7a:
33:e5:30:5a:6a:b5:4d:d4:41:59:a2:72:43:67:bc:
72:40:e5:f1:21:47:c4:52:31:45:ef:b2:67:12:b4:
de:a9:32:0f:98:99:50:c6:23:2d:69:7e:62:c4:28:
c1:be:5d:45:42:1e:01:e1:f1:bf:ef:3a:51:eb:03:
d1:10:b6:dd:ac:b6:96:d2:dc:ff:f3:33:b5:45:1c:
d1:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:1A:9D:80:FD:97:38:AA:9D:30:A9:84:45:79:6B:06:8D:A8:A0:B4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2E077DC6803711F0A918F4B7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.204.0/22
Signature Algorithm: sha256WithRSAEncryption
27:94:59:00:7e:59:5e:70:43:52:59:ce:7f:e1:1d:08:4b:31:
6d:b6:78:04:96:2a:fc:7b:d9:b7:9b:95:3c:93:36:c6:de:1e:
72:a7:75:7e:f4:a7:df:f6:47:d5:6b:8e:56:4b:b7:2a:70:91:
5e:ef:44:fc:f1:ef:b5:ae:4f:69:31:59:d0:a0:a7:f7:76:b1:
6e:b2:47:6e:ab:fc:bd:57:d8:5d:83:e4:d5:97:1f:31:85:79:
1a:63:48:e7:a2:1e:62:7c:73:b8:a9:a2:82:99:43:da:5d:25:
94:7c:e4:8a:4b:f1:40:c4:41:a5:06:9b:f6:32:62:34:1b:13:
c7:34:47:58:8b:f2:bd:63:a9:12:4e:a5:3c:ee:08:8b:a4:7b:
4c:f7:74:81:fb:fa:4c:ef:fc:c2:61:87:28:93:de:a5:47:4c:
d5:0a:10:5f:ec:d4:3b:4b:c0:1d:50:6b:8e:9a:4d:0f:16:f1:
ec:e6:5f:b2:2e:8a:59:ce:10:74:ed:fb:d8:84:76:ef:cc:d4:
06:e6:6e:db:d6:99:74:5a:64:ad:44:8a:17:6e:ac:0c:49:b4:
6f:0f:bc:01:25:85:1a:ef:eb:29:63:81:04:eb:91:7a:23:88:
ba:54:0a:42:09:0f:13:76:8f:4b:12:6d:0c:bb:73:5b:d5:cc:
78:04:54:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 3 18:22:17 2025 by rpki-client