Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4274C00E8A5811F08114DFB7DAE4EC9C.roa
File: 4274C00E8A5811F08114DFB7DAE4EC9C.roa (raw, json)
Hash identifier: R08ZrjITNKvHCetpS1Any75KN5Vb6dcFG00K77rjtSA=
Subject key identifier: 61:02:8D:5A:07:DD:49:C7:F3:A8:69:16:3A:65:9F:C7:18:AC:6D:F8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017925
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4274C00E8A5811F08114DFB7DAE4EC9C.roa
Signing time: Fri 05 Sep 2025 13:00:14 +0000
ROA not before: Fri 05 Sep 2025 13:00:08 +0000
ROA not after: Fri 12 Dec 2025 13:00:08 +0000
asID: 398823
IP address blocks: 156.236.192.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 21 Sep 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96549 (0x17925)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 5 13:00:08 2025 GMT
Not After : Dec 12 13:00:08 2025 GMT
Subject: CN=68badede-b840
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:11:9c:54:c3:09:e9:72:19:8d:8d:65:18:61:
9a:08:43:12:58:81:12:e5:25:df:29:53:59:89:b4:
26:25:3a:a6:bd:0d:98:fe:5d:8f:a3:c5:3c:99:9f:
1e:3a:44:69:b0:b9:fe:1f:d8:31:2a:e7:10:5c:c1:
38:53:ae:4a:b4:ba:c7:3f:ae:31:60:ee:cd:66:d5:
51:8a:e3:0b:17:da:b4:ea:b8:fc:05:5d:88:eb:6c:
df:32:13:81:2c:ca:30:00:7c:c5:2d:59:de:c2:39:
32:e7:af:31:6a:75:ea:10:40:e9:a3:e5:1e:d0:9c:
a7:02:40:c4:60:d9:ab:99:91:62:1b:85:3e:83:13:
61:f6:89:5d:a0:02:86:ff:65:99:cb:ea:8d:6a:0a:
dd:35:73:45:7c:ef:d7:28:7a:6c:0b:d7:46:68:59:
0e:a2:e8:71:36:c9:ed:b9:30:e9:31:f4:62:09:ba:
33:68:96:04:f1:85:f3:1d:ec:5b:48:95:93:fd:5f:
cc:b1:c3:bf:10:6f:89:8d:70:14:0a:aa:21:6a:a8:
96:21:63:e4:72:b7:02:e0:38:8a:e1:14:d1:e9:70:
f3:0d:65:5c:bb:f0:c0:6b:a7:8c:52:ab:f5:b0:30:
ac:fd:c5:f7:f7:3f:2e:58:9c:9d:52:56:40:c3:d8:
48:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:02:8D:5A:07:DD:49:C7:F3:A8:69:16:3A:65:9F:C7:18:AC:6D:F8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4274C00E8A5811F08114DFB7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.192.0/18
Signature Algorithm: sha256WithRSAEncryption
0a:1e:ac:82:0c:54:33:3c:b8:da:1b:36:f7:bd:45:03:35:08:
b5:8c:4d:89:ab:c0:df:82:b8:f1:25:9a:82:4b:c9:33:45:62:
c1:67:69:c6:cc:c0:47:24:37:71:21:b3:28:da:b5:cf:40:7d:
71:f6:49:cc:71:2f:9b:72:b3:a9:18:94:e8:7e:6a:d7:9c:d9:
93:c1:24:28:03:f7:a0:6a:84:91:ae:94:3f:53:12:b7:45:11:
5a:b3:07:e0:c2:8e:e9:82:29:c7:01:ee:71:a7:2e:48:f1:f3:
4c:d7:70:d3:08:f5:72:c1:48:9a:2a:23:b3:b3:19:19:90:f4:
68:d0:b1:52:a8:2d:ec:d6:53:dc:6a:3d:aa:ed:4e:ac:74:53:
20:f0:b7:7b:3b:27:a0:3f:2e:05:f0:f8:cf:af:b8:76:29:9f:
a0:3f:64:69:8a:9d:9c:cd:cd:7f:06:fc:53:98:e4:35:4d:de:
e3:ab:fe:d9:5b:fc:a5:e2:72:b4:78:67:65:14:7c:d7:b2:58:
ad:bf:38:f0:37:a8:3a:31:cd:f7:9f:80:61:9d:e0:0d:7c:cb:
30:18:84:96:be:38:fe:4c:15:9f:31:a0:b2:23:37:5f:6a:a8:
30:a3:d6:8a:59:e7:fb:5f:78:b1:32:aa:80:74:0b:8b:d8:d2:
f4:7e:4f:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 19 08:07:49 2025 by rpki-client