Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/63AEE90887A011F090D3F280DAE4EC9C.roa
File: 63AEE90887A011F090D3F280DAE4EC9C.roa (raw, json)
Hash identifier: k9zUWNpNnXPZz5tL7AKitLGXNBjgPaP0YCTSBF02HLA=
Subject key identifier: 2F:FA:65:7C:1F:B0:EC:8F:13:F8:FA:13:5B:34:8D:E1:FC:85:8D:C1
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0175D5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/63AEE90887A011F090D3F280DAE4EC9C.roa
Signing time: Tue 02 Sep 2025 01:58:59 +0000
ROA not before: Tue 02 Sep 2025 01:58:53 +0000
ROA not after: Thu 02 Oct 2025 01:58:53 +0000
asID: 213798
IP address blocks: 156.225.46.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95701 (0x175d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 2 01:58:53 2025 GMT
Not After : Oct 2 01:58:53 2025 GMT
Subject: CN=68b64f63-dbba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b3:18:ce:ab:dd:f7:95:cf:a8:9f:c2:48:e7:
4d:7b:a9:cb:48:e1:46:29:6e:80:9e:02:f0:bd:6d:
ce:a1:d9:24:5b:b9:ea:16:44:81:bb:78:ae:bd:d1:
00:75:c5:d6:35:a9:6b:55:fe:df:8c:f2:05:a4:e1:
5c:e9:2f:40:e3:ce:41:72:f8:7a:04:39:a6:c9:24:
34:89:a3:24:d6:c8:b3:f2:83:fe:42:4c:4c:2e:3e:
f6:b8:cf:3f:28:6d:63:38:66:fd:ad:24:55:96:c3:
e3:fc:15:1f:a0:3a:db:6f:09:58:8a:f6:3a:69:d0:
7e:15:c6:7c:00:3f:1e:d6:be:30:45:8f:72:8e:4d:
45:5f:90:1d:9f:2f:a2:01:b3:20:08:b0:1f:94:6e:
3c:60:dd:64:f9:92:5c:a9:6d:34:33:66:86:86:0d:
de:06:50:6e:aa:f1:e6:ed:eb:16:1c:e6:2c:fa:88:
6c:77:2f:26:31:5f:c7:e1:15:20:dc:3b:68:de:d1:
fd:7b:c9:cf:96:a3:93:3d:ac:a3:ef:68:57:a5:b4:
2b:56:5c:a0:fe:7f:12:63:e9:e0:52:fa:01:c3:94:
b3:d7:93:6e:c5:c4:c5:f8:9c:6d:9a:46:dc:4d:a0:
63:d1:1f:67:71:ad:20:83:a9:6b:a0:a4:72:12:99:
5e:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:FA:65:7C:1F:B0:EC:8F:13:F8:FA:13:5B:34:8D:E1:FC:85:8D:C1
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/63AEE90887A011F090D3F280DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.46.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:45:73:dc:d2:b4:1a:ba:e9:87:4d:b8:39:29:a5:f9:27:8c:
d8:d6:5c:46:7d:42:98:aa:3c:78:1a:33:9f:0e:08:36:77:b0:
d7:dd:17:33:6f:51:1d:11:c5:f9:b7:2c:a6:0e:92:ad:c3:f6:
aa:f2:3e:d9:51:94:ae:72:b7:69:3f:78:43:d8:88:b0:2b:29:
0b:cf:f5:2e:76:78:86:1d:a9:bf:4d:f0:fb:2a:88:66:eb:a0:
35:a0:7c:71:f5:2c:28:fd:79:e9:73:b6:9c:3b:75:d7:7d:87:
c1:b1:2e:31:b0:b3:f4:25:1b:bb:50:9f:c2:2e:54:3a:33:d9:
f4:5f:a5:6d:d2:89:0e:b0:d7:75:4b:65:97:a7:fb:dd:16:48:
bb:41:8e:c4:7f:38:f5:42:b6:f2:47:93:47:37:02:e8:93:98:
46:4d:ee:87:12:56:45:6b:6d:4d:83:d4:4e:9e:09:49:ad:88:
11:87:cf:28:ce:6a:2c:5a:62:4a:0a:15:68:a2:15:5b:6d:db:
03:26:71:38:c7:ec:40:96:19:25:e5:c6:31:a6:da:6d:48:18:
19:8f:3d:f4:e4:85:9d:3d:0b:fb:60:f5:94:13:67:4a:93:42:
6c:d7:c8:62:c1:74:6e:43:e4:ec:fc:be:f7:cb:8a:0f:45:b9:
fc:29:14:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 3 20:15:30 2025 by rpki-client