Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5B8C04B0910311F088BD2393DAE4EC9C.roa
File: 5B8C04B0910311F088BD2393DAE4EC9C.roa (raw, json)
Hash identifier: JkHOifqE/w59JlJqOwLjUPZV6gdADrbeygnnCSMAXyM=
Subject key identifier: DE:5B:39:22:B6:6E:82:5C:1E:9E:DE:9B:80:08:83:6B:32:01:30:39
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017B0B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5B8C04B0910311F088BD2393DAE4EC9C.roa
Signing time: Sun 14 Sep 2025 00:40:06 +0000
ROA not before: Sun 14 Sep 2025 00:00:01 +0000
ROA not after: Tue 21 Oct 2025 00:00:01 +0000
asID: 30781
IP address blocks: 156.233.176.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:00:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97035 (0x17b0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 14 00:00:01 2025 GMT
Not After : Oct 21 00:00:01 2025 GMT
Subject: CN=68c60ee6-959c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ab:79:05:ff:b9:7b:36:a2:86:6f:cb:8d:68:
6b:91:ce:07:00:24:bd:3f:5d:da:3b:33:da:d2:41:
78:a1:a0:b3:95:b7:06:83:a0:1d:99:f3:b1:da:6a:
23:d2:14:0b:09:7d:ef:50:22:31:ad:cf:97:00:c5:
dd:b1:ca:75:7d:34:4d:14:10:04:45:b3:d2:68:38:
63:93:8e:0d:7b:f3:55:ad:4d:59:a0:0e:5c:b3:68:
4d:49:79:33:47:1b:76:56:9c:f7:87:fa:33:71:51:
00:9a:c3:ff:b3:1f:71:73:fb:31:44:78:7c:c6:25:
0d:cb:1b:dd:b0:f5:5e:7e:3f:83:5a:59:67:1d:94:
47:1f:88:7c:3d:ab:7e:64:05:dd:3a:56:6e:42:20:
fa:69:b5:83:ff:44:9a:42:84:65:7d:92:f7:f1:b3:
be:26:17:ef:76:0b:f2:40:51:7b:c5:1e:54:53:8b:
36:56:a7:35:b7:58:37:2e:1e:46:1f:28:2d:7a:c1:
ae:7b:5b:64:8a:25:56:6a:37:0c:71:8c:5b:3f:ab:
bf:87:3e:9f:6f:50:20:b2:ae:39:b0:3d:77:46:3f:
d8:47:82:a6:33:c5:d9:54:49:11:d9:2b:d4:e6:11:
53:0d:8d:fb:bb:9d:74:ee:c2:2d:e8:0c:80:5e:a5:
61:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:5B:39:22:B6:6E:82:5C:1E:9E:DE:9B:80:08:83:6B:32:01:30:39
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5B8C04B0910311F088BD2393DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.176.0/22
Signature Algorithm: sha256WithRSAEncryption
ad:85:a6:fa:f0:42:f8:e6:fd:a2:24:85:47:0a:96:9f:80:59:
5e:bb:67:de:75:05:c1:7c:23:7f:e7:1d:5c:a6:4d:be:03:29:
28:38:61:5c:63:37:11:f4:3e:84:a3:13:48:73:7d:b3:4a:7c:
5d:b1:56:17:cc:ae:7f:02:f4:67:ae:20:e3:a7:d1:85:63:d3:
28:5c:5b:59:8a:b6:73:ef:4e:0b:b1:ca:1f:60:aa:17:97:b2:
6a:15:0b:9c:0e:83:74:b3:85:8c:9e:0b:a7:b7:cb:df:46:e6:
f9:01:3e:6d:bb:48:f1:f4:8a:40:72:3f:37:4c:ca:ef:cb:05:
5e:3f:af:55:9f:90:77:17:13:51:95:7b:39:41:7a:da:c0:4a:
37:71:66:84:15:eb:31:b3:04:b9:af:1b:b5:19:4a:c4:32:54:
a5:08:64:df:74:d1:8c:89:73:3e:6b:05:db:57:2c:68:60:6a:
d2:2a:84:98:26:9d:a9:28:ea:90:a2:4a:2d:dc:50:71:cf:d3:
15:f1:9a:4c:c4:ff:0a:27:bd:b7:02:2e:2d:ba:ee:ef:25:21:
9b:56:98:ac:84:66:9b:3f:fe:09:16:2a:a4:32:06:7e:5a:c6:
d5:fe:51:74:4f:ea:dd:6c:b7:67:68:37:d3:61:1d:0c:af:7a:
84:8a:fb:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:50:48 2025 by rpki-client