Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/61DDBC2487ED11F098F6B284DAE4EC9C.roa
File: 61DDBC2487ED11F098F6B284DAE4EC9C.roa (raw, json)
Hash identifier: bQpyCZRgSujIV/kiXhC9gDfD2yqBPWKraqngnk/szuM=
Subject key identifier: 18:42:D0:C1:63:B7:2D:84:00:2A:24:7B:83:F3:59:69:FA:5A:86:08
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017660
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/61DDBC2487ED11F098F6B284DAE4EC9C.roa
Signing time: Tue 02 Sep 2025 11:10:07 +0000
ROA not before: Tue 02 Sep 2025 11:10:01 +0000
ROA not after: Fri 10 Oct 2025 11:10:01 +0000
asID: 401696
IP address blocks: 156.233.224.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95840 (0x17660)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 2 11:10:01 2025 GMT
Not After : Oct 10 11:10:01 2025 GMT
Subject: CN=68b6d08f-51b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:e6:b0:a0:f9:4d:db:9c:53:c3:f4:00:38:ac:
67:94:b8:87:99:f7:11:43:cd:58:b4:dc:e4:c2:cf:
3d:d1:4d:7c:17:63:35:36:1e:6e:51:57:b1:f1:a3:
4d:70:c9:ec:f8:e1:ad:07:cf:d2:a0:2f:5d:2e:aa:
28:66:f5:01:af:9e:82:8a:0a:21:4c:08:45:be:46:
34:ff:23:85:38:4a:db:57:65:27:37:90:0a:8b:fd:
0d:45:f0:b3:c9:8e:76:4a:1d:cf:db:e4:74:80:ca:
e3:5d:8d:6b:ec:6e:ca:68:2f:ef:6b:a9:fb:d4:a1:
cb:39:85:69:44:58:3e:88:d8:1c:77:17:f0:24:3d:
d0:8e:7a:24:ea:ea:56:6c:18:68:b9:55:1b:c4:37:
55:5b:ca:e2:ee:d4:fe:03:88:cb:de:8d:ac:27:bd:
13:0e:21:3e:65:74:f4:a6:4b:64:b7:07:78:d4:05:
20:14:5b:76:13:57:1e:44:bc:1c:30:4e:b1:d7:58:
8f:f4:96:77:ac:05:c2:2a:37:84:4a:5f:75:51:1d:
b0:49:53:82:fb:b4:18:e5:c6:f1:ea:c4:15:f9:f4:
01:e1:07:e8:83:bf:e5:44:46:cb:f8:57:a7:8e:82:
d0:6f:b2:e5:e0:fd:d2:04:ad:2e:5e:ed:25:ad:ae:
a0:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:42:D0:C1:63:B7:2D:84:00:2A:24:7B:83:F3:59:69:FA:5A:86:08
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/61DDBC2487ED11F098F6B284DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.224.0/20
Signature Algorithm: sha256WithRSAEncryption
0c:77:7c:79:e4:30:32:d4:b7:85:26:82:de:56:ee:dc:cd:be:
18:01:c2:83:fc:b5:cd:24:62:5a:c4:2e:54:97:53:43:fe:8e:
f3:1a:14:34:d3:49:9b:21:ee:e9:da:35:23:f0:be:94:b7:11:
0d:34:08:34:8b:10:2d:cf:e1:e2:56:27:36:e7:e9:5f:5b:03:
89:83:2e:3c:63:74:14:e7:e3:7a:35:21:d5:01:c9:90:71:7c:
e5:16:d3:bb:97:91:bc:5f:e3:09:02:13:0b:72:c6:7c:4d:98:
67:8d:99:8a:e0:5f:e7:22:be:83:49:bf:9f:4b:6c:9f:c2:7d:
f4:72:97:d8:b0:96:bd:44:d1:de:3a:d7:17:60:c3:f2:d4:3b:
26:73:50:03:bf:2a:1a:0e:f9:9c:78:51:71:11:6f:49:39:8c:
2b:ef:0d:46:3d:ab:e5:0f:95:5c:ef:38:de:ca:7e:fb:22:cd:
9d:70:04:9e:2f:0b:2b:82:af:ba:7b:27:db:df:f1:f5:be:f7:
9a:7e:97:c7:19:ee:87:07:33:75:16:ad:20:a2:5c:d2:d6:87:
e1:4f:d9:64:57:d2:de:fe:a3:4c:98:83:e3:de:0c:87:62:2c:
9d:f3:65:ff:80:96:ed:9f:c8:60:5f:99:d5:df:f5:61:b0:06:
d2:64:0f:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 3 18:21:58 2025 by rpki-client