Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/611F59948D6211F0AB604DEFDAE4EC9C.roa
File: 611F59948D6211F0AB604DEFDAE4EC9C.roa (raw, json)
Hash identifier: bXhhkSX5RXQ+W7BQMn0/OxVSwpeGKZe20QDYY4jWRQ4=
Subject key identifier: CF:E0:68:5C:43:18:51:E2:E7:81:6B:50:DD:50:46:16:9E:C3:3A:C0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017A1D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/611F59948D6211F0AB604DEFDAE4EC9C.roa
Signing time: Tue 09 Sep 2025 09:50:13 +0000
ROA not before: Tue 09 Sep 2025 09:50:07 +0000
ROA not after: Thu 16 Oct 2025 09:50:07 +0000
asID: 22773
IP address blocks: 156.242.231.0/24 maxlen: 24
156.242.232.0/24 maxlen: 24
156.242.233.0/24 maxlen: 24
156.243.48.0/20 maxlen: 24
156.243.64.0/20 maxlen: 24
156.243.100.0/24 maxlen: 24
156.243.101.0/24 maxlen: 24
156.243.102.0/24 maxlen: 24
156.243.103.0/24 maxlen: 24
156.243.104.0/24 maxlen: 24
156.243.105.0/24 maxlen: 24
156.243.106.0/24 maxlen: 24
156.243.107.0/24 maxlen: 24
156.243.203.0/24 maxlen: 24
156.243.204.0/24 maxlen: 24
156.248.26.0/24 maxlen: 24
156.248.27.0/24 maxlen: 24
156.248.28.0/24 maxlen: 24
156.248.29.0/24 maxlen: 24
156.249.120.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 20 Sep 2025 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96797 (0x17a1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 9 09:50:07 2025 GMT
Not After : Oct 16 09:50:07 2025 GMT
Subject: CN=68bff855-7160
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:45:0f:3f:36:0b:ab:c8:14:6d:43:f4:7f:8b:
1e:3e:3e:84:93:49:48:c6:6c:3d:7b:48:93:18:20:
fa:00:35:b2:cc:3f:de:df:90:32:4d:7c:da:e9:73:
d9:51:fd:5a:5a:9e:07:11:71:c4:6f:69:d2:82:30:
6b:8c:df:e1:c7:11:5f:b8:64:7a:98:3c:0b:1d:a6:
c1:0e:cd:3d:4f:c5:7a:f9:34:2a:79:6d:70:31:74:
7a:d5:9a:ff:dc:22:08:8f:fe:ea:4b:73:06:c1:45:
0b:9b:98:1c:dc:f3:f8:25:cd:36:48:0a:ae:ee:a7:
62:83:6e:d9:eb:ea:e6:2b:6b:5b:ee:6d:0e:bf:5b:
bb:a5:9c:ff:81:98:1e:5b:95:ce:7b:c4:d1:a7:bd:
91:75:44:55:25:f9:1b:ab:7c:a2:34:4c:98:2a:39:
a6:c6:b0:bf:65:f9:28:78:3c:d8:13:16:31:1c:6a:
1c:3c:60:04:f2:c5:ef:60:d1:5c:2f:24:63:18:3a:
8e:b8:a7:fa:c2:9f:40:a9:51:b9:44:bd:99:b5:b8:
3d:cb:50:39:43:b3:86:f3:6f:83:76:44:8e:41:8d:
15:fd:ac:9f:c1:8c:ee:5f:c0:4f:0a:69:71:55:5c:
5e:6f:f2:38:2a:bc:58:7e:2e:ac:7a:e3:ca:12:ee:
5f:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:E0:68:5C:43:18:51:E2:E7:81:6B:50:DD:50:46:16:9E:C3:3A:C0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/611F59948D6211F0AB604DEFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.242.231.0-156.242.233.255
156.243.48.0-156.243.79.255
156.243.100.0-156.243.107.255
156.243.203.0-156.243.204.255
156.248.26.0-156.248.29.255
156.249.120.0/24
Signature Algorithm: sha256WithRSAEncryption
59:32:20:b2:d1:dc:e7:37:f0:ef:89:57:2e:c5:d0:51:fa:0a:
e8:5c:d2:d0:f3:74:1f:a5:60:d4:b2:51:b9:76:8b:73:ff:2b:
dd:2d:3d:78:59:0e:e0:ed:d2:04:45:21:93:0c:80:32:51:a4:
92:f8:d7:59:aa:3b:1d:85:5e:1a:57:85:8a:e0:84:8d:85:e9:
e9:f5:03:ec:35:cf:c3:71:2f:b1:18:60:e5:05:0e:1d:15:43:
f9:d7:65:e1:32:40:15:db:f7:ab:41:0a:42:77:df:02:57:b8:
e2:66:80:6f:30:54:0d:c4:97:7f:28:0f:36:d5:32:fe:9e:39:
9c:09:7c:bb:75:e7:35:2f:c1:7e:2f:a3:01:78:bd:86:d2:8b:
43:61:b4:05:c4:ab:f0:45:1b:36:d3:a5:82:ad:9a:2e:be:ff:
a4:87:93:6e:a2:c1:9e:08:2d:cf:a8:ce:80:e5:fa:82:4a:37:
1a:8b:f4:47:44:82:a2:80:d3:a4:1d:06:39:50:7b:fd:9b:c7:
67:10:b6:3f:2e:c9:bd:53:2f:f3:3b:c1:eb:9b:c8:bb:71:a3:
73:9e:5b:79:88:6f:ec:19:57:97:cb:10:a4:49:8d:0e:d0:18:
9d:f4:8c:35:e5:9c:99:65:e2:a7:65:83:e1:1b:2b:85:8d:06:
32:69:2e:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 18 12:27:45 2025 by rpki-client