Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/64AB31D688F911F089F34AC0DAE4EC9C.roa
File: 64AB31D688F911F089F34AC0DAE4EC9C.roa (raw, json)
Hash identifier: 3G/spXcMcHReaYcRi3dliWiIvjyFyq+AgzzyE1ayydY=
Subject key identifier: 16:75:7D:9C:31:35:30:84:AB:98:FD:11:40:A9:9D:04:A3:99:13:01
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0177C6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/64AB31D688F911F089F34AC0DAE4EC9C.roa
Signing time: Wed 03 Sep 2025 19:08:37 +0000
ROA not before: Wed 03 Sep 2025 19:08:32 +0000
ROA not after: Wed 10 Sep 2025 19:08:32 +0000
asID: 135377
IP address blocks: 156.229.16.0/21 maxlen: 24
156.229.17.0/24 maxlen: 24
156.229.18.0/24 maxlen: 24
156.229.19.0/24 maxlen: 24
156.229.20.0/24 maxlen: 24
156.229.21.0/24 maxlen: 24
156.229.22.0/24 maxlen: 24
156.229.23.0/24 maxlen: 24
156.229.24.0/23 maxlen: 24
156.229.24.0/24 maxlen: 24
156.229.25.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 07 Sep 2025 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96198 (0x177c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 3 19:08:32 2025 GMT
Not After : Sep 10 19:08:32 2025 GMT
Subject: CN=68b89235-0d30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:41:c4:07:6d:b4:b6:0c:aa:6e:a9:df:e3:72:
81:df:5b:cd:af:3f:c8:10:8f:b0:30:56:ad:e7:32:
8b:b9:dc:85:5a:dc:d9:e2:47:8f:f5:b8:dd:4b:9c:
d5:b0:51:45:20:46:b3:70:52:71:0c:7a:80:fe:c4:
be:00:18:9e:18:3a:e5:a2:9d:f8:e2:ae:3d:63:32:
a1:98:df:41:e5:88:ff:4f:12:9e:17:8a:b3:2f:6f:
1e:78:89:22:c6:dd:8e:2f:f4:72:d9:cd:99:27:e5:
4b:a0:24:72:30:cd:27:e5:18:1e:99:c4:bb:28:a9:
6b:b9:31:76:1a:07:09:5e:61:85:f4:7c:1b:c1:63:
64:25:78:09:b4:ad:ef:ae:46:45:b5:f4:87:56:54:
31:17:f6:df:9f:84:66:ab:cd:d5:0c:aa:5d:3f:fc:
83:1a:da:6b:a1:57:fc:e7:26:74:99:a9:27:8b:f5:
6b:27:83:f4:ae:82:0a:84:b7:ae:90:05:7f:79:b0:
b6:34:72:2d:63:2e:62:0f:0d:86:d0:af:f8:f2:c4:
14:e9:ba:d8:3b:7a:0c:a3:9c:1a:02:c0:f1:bc:8c:
62:f8:35:ba:4f:c8:8c:dd:d9:5d:72:df:e9:f1:9e:
7f:7a:33:b0:5b:d4:d4:c5:8e:04:84:79:44:44:58:
9b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:75:7D:9C:31:35:30:84:AB:98:FD:11:40:A9:9D:04:A3:99:13:01
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/64AB31D688F911F089F34AC0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.16.0-156.229.25.255
Signature Algorithm: sha256WithRSAEncryption
82:dc:dd:18:9c:16:ce:cb:a8:9e:dc:7b:8c:43:90:2c:69:ea:
31:dd:6d:72:d4:b3:ed:50:ca:35:6b:74:ec:38:81:ae:80:ee:
4a:5f:67:84:d0:4a:f8:7d:9e:c7:a9:7c:74:c8:85:55:ef:86:
f3:19:77:69:ca:2b:dd:08:75:f8:cd:d9:e0:ca:8b:0e:ac:df:
72:4a:70:fa:c5:6f:c0:7a:46:db:0c:f4:2e:db:24:d0:a9:5b:
e6:62:19:dc:38:b4:3d:e5:c0:fc:f8:e6:9e:86:4c:df:bc:29:
51:88:99:7a:04:a5:29:9d:06:06:25:44:76:3a:19:80:49:2d:
50:df:de:02:31:d8:02:78:63:f8:7a:a4:59:c0:be:bc:fb:27:
de:a6:d9:93:a2:33:ea:0c:e6:7e:71:d4:76:8c:3c:cf:63:79:
38:1c:63:84:8b:61:1c:8c:c0:df:4b:65:44:51:ef:cc:b2:55:
9a:66:c7:9a:19:a8:1d:74:00:2a:d3:00:35:22:a6:79:1c:9c:
f7:2d:69:72:6c:96:41:43:43:ba:5d:60:40:88:6e:2c:83:98:
49:8e:19:93:3d:0c:dd:84:74:e3:f4:7a:4e:a1:e1:3b:04:1a:
5a:fb:67:9f:df:99:b0:7e:fb:ae:c4:e5:a0:5f:69:e0:6a:72:
42:94:0f:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 09:04:03 2025 by rpki-client