Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4BE0D452840E11F091D4ADBDDAE4EC9C.roa
File: 4BE0D452840E11F091D4ADBDDAE4EC9C.roa (raw, json)
Hash identifier: 6aMmMdr60US7+v6axKvohMR0pZDu7d2tP/eC1jV4jE8=
Subject key identifier: 89:05:B3:A1:69:AA:A1:D5:54:79:DE:9D:70:10:85:47:5A:6A:C0:21
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01729D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4BE0D452840E11F091D4ADBDDAE4EC9C.roa
Signing time: Thu 28 Aug 2025 12:55:39 +0000
ROA not before: Thu 28 Aug 2025 12:55:31 +0000
ROA not after: Tue 09 Sep 2025 12:55:31 +0000
asID: 61461
IP address blocks: 156.231.192.0/18 maxlen: 24
156.236.128.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94877 (0x1729d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 28 12:55:31 2025 GMT
Not After : Sep 9 12:55:31 2025 GMT
Subject: CN=68b051cb-6d8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:6a:18:3a:d7:e2:9b:59:83:d6:e7:6f:c7:1e:
34:5c:17:71:c9:8e:bd:fd:05:f0:bf:70:f4:8a:4e:
6e:20:96:a8:e2:06:99:d1:00:34:72:de:fd:97:50:
64:b5:d7:7b:d4:05:96:e5:62:38:c8:54:50:6f:a9:
49:7c:64:d5:fb:59:b7:65:75:fc:d9:08:bd:ff:6e:
83:70:64:26:c6:2f:07:84:a2:4a:3f:f7:d1:1f:57:
ec:dc:60:e9:83:50:8d:88:86:d9:4e:da:52:c6:bb:
ac:cd:2b:11:ad:16:b8:66:a3:18:45:3a:90:79:65:
47:b8:1a:f5:6b:bb:5e:34:93:4f:64:14:a7:f4:f4:
d4:6d:9f:40:dc:64:ca:0e:4b:7e:92:40:ba:cc:12:
ab:31:ee:e3:e4:7e:de:4b:2c:87:b6:2e:c0:88:c9:
4e:42:16:6a:0c:ce:67:2c:dd:1a:67:14:f4:d2:55:
ff:5b:3a:64:d2:bd:6b:a7:16:37:93:4a:10:86:d2:
34:a8:2b:19:ef:a3:bb:b3:79:fb:0a:15:1d:62:b8:
80:45:18:b7:88:86:ea:a3:b4:8f:9b:09:de:8b:fa:
b1:ec:41:e2:c0:df:a9:d1:b6:02:bb:b8:f2:bf:6b:
a2:1a:34:79:4c:6b:c8:99:2c:c3:c6:e3:50:7b:79:
49:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:05:B3:A1:69:AA:A1:D5:54:79:DE:9D:70:10:85:47:5A:6A:C0:21
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4BE0D452840E11F091D4ADBDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.231.192.0/18
156.236.128.0/18
Signature Algorithm: sha256WithRSAEncryption
a1:6c:f9:29:46:d6:43:62:19:58:ae:93:ab:88:fa:21:6e:8c:
d7:cf:57:fd:5d:c4:0e:49:35:59:e7:e9:fe:de:70:80:31:1d:
4e:66:c4:55:98:08:df:32:7a:45:88:e4:6b:14:c0:da:c6:d1:
9d:92:db:1d:27:d3:e8:93:a3:e5:86:01:c7:e0:a4:45:9e:5d:
d7:6f:f0:92:3d:55:4d:0d:67:a6:ec:22:92:2f:ca:80:07:89:
af:7f:44:d4:be:8c:89:35:cf:33:e7:8b:9e:67:1f:c0:64:c0:
8d:56:c5:c0:9a:d3:40:c9:e5:b3:12:c9:a0:61:4a:c2:1d:e9:
76:81:e6:36:b7:5a:c0:35:90:e6:94:71:24:56:eb:8b:7f:a2:
9b:09:ac:d9:91:82:7e:16:d1:9b:05:a2:25:fa:80:19:b9:a0:
81:ed:c2:fd:a5:23:d2:8c:38:c5:b0:57:00:1a:a9:d9:d1:c0:
ac:66:2f:b0:61:44:0b:71:f3:32:b6:4d:4d:48:a9:1a:3e:79:
4f:97:f2:96:38:75:9c:a0:84:f1:a1:bb:40:7c:7e:62:39:49:
79:64:45:fc:38:8f:c9:24:54:16:de:8c:36:1f:e2:4d:21:39:
75:45:72:65:88:46:ba:df:83:07:55:c2:d7:6d:d1:1e:b7:80:
e1:8b:21:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 3 18:19:32 2025 by rpki-client