Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6E7C21F684A911F099B497B8DAE4EC9C.roa
File: 6E7C21F684A911F099B497B8DAE4EC9C.roa (raw, json)
Hash identifier: MyxZ11Iy4cf9PXiCX4sGUfy/LJWxPERF7gx/pjtp0f8=
Subject key identifier: 83:44:DA:3A:F4:56:51:83:AE:ED:F5:56:3A:D8:6B:93:B6:7E:11:E3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0172FC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6E7C21F684A911F099B497B8DAE4EC9C.roa
Signing time: Fri 29 Aug 2025 07:26:09 +0000
ROA not before: Fri 29 Aug 2025 07:26:01 +0000
ROA not after: Tue 30 Sep 2025 07:26:01 +0000
asID: 137547
IP address blocks: 156.245.242.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94972 (0x172fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 29 07:26:01 2025 GMT
Not After : Sep 30 07:26:01 2025 GMT
Subject: CN=68b15611-3a6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:d9:2e:bc:95:e2:42:9e:ce:be:96:98:6f:e5:
ec:b1:1f:78:86:21:21:44:09:9c:6c:09:68:ac:89:
4c:a6:39:b1:c9:f3:98:09:0e:d3:a5:9a:41:3a:20:
bc:8c:58:ac:f0:fb:1f:c0:26:5f:ff:51:66:4e:cf:
82:b7:23:0d:b3:0d:2f:e1:c2:42:69:b7:40:37:91:
20:bd:2c:6b:af:77:1c:30:fc:0c:ea:b3:fb:05:c1:
46:01:1c:d7:15:72:25:9b:3b:b5:ba:75:b7:4a:79:
de:09:ec:52:a3:71:5c:24:bb:c8:e8:d2:15:5d:1f:
a4:cf:03:2e:ea:7f:01:85:cb:04:64:01:d5:13:c7:
d6:06:07:b1:8e:66:a6:19:75:38:a2:90:5a:68:ae:
87:cf:b2:ef:1a:58:c1:75:09:02:a4:07:17:10:cf:
9b:6e:05:2d:51:b7:43:8c:e4:24:36:d7:96:10:52:
4c:9a:1c:8d:45:50:91:0d:a9:82:85:fd:37:e5:c9:
05:79:54:cc:7c:d2:09:73:e3:c4:fb:84:1c:f8:47:
48:99:99:d7:77:9f:39:f3:4d:27:a2:4c:67:cd:84:
ef:4f:61:a1:6b:b2:b1:1c:b2:67:7c:1c:08:cf:03:
9b:fb:1b:53:b9:82:52:81:dc:11:59:d4:4b:72:80:
f7:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:44:DA:3A:F4:56:51:83:AE:ED:F5:56:3A:D8:6B:93:B6:7E:11:E3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6E7C21F684A911F099B497B8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.242.0/23
Signature Algorithm: sha256WithRSAEncryption
a3:b7:f2:49:a1:86:df:b2:ec:02:81:76:75:74:70:cb:bd:b3:
7c:a2:f1:c5:39:9c:62:a9:c0:a8:1a:00:85:f3:e1:62:b2:bd:
f4:15:f9:40:f1:a4:e8:5a:44:31:4a:17:98:db:58:9c:c0:fd:
7e:67:a6:44:26:4f:aa:93:f4:f8:aa:21:3c:8b:c0:0f:ff:f6:
47:f2:31:d5:1c:dd:b8:be:fa:a7:00:5a:b2:63:37:b3:db:4e:
93:e3:b5:72:10:d0:09:84:ab:72:bd:82:01:43:cc:28:bb:44:
88:c8:ab:fc:42:4e:10:3c:fa:c9:32:83:5d:c6:49:e7:8c:6b:
74:ac:53:cc:20:2e:ab:a5:72:ae:a6:3d:81:20:4a:3e:e7:2f:
01:3d:d5:e9:c8:27:d7:94:0a:89:c5:64:f7:11:fe:6c:00:8f:
2f:29:02:75:63:79:64:39:ae:ec:25:d0:fd:7f:48:5a:8c:2c:
77:80:e2:b8:72:a8:ff:67:42:d4:41:44:3b:9e:1f:4b:89:ca:
97:38:14:08:de:a8:57:31:e4:e5:bc:3e:8f:18:92:a8:1b:c8:
4e:7f:46:19:c6:0e:e6:5f:e7:f5:e7:98:e6:52:94:bf:d7:c2:
2b:a9:c1:7b:c8:7d:15:ca:67:67:c8:2f:4d:ea:9a:3d:0c:7f:
9d:cb:72:4e
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAXL8MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwODI5MDcyNjAxWhcNMjUwOTMwMDcyNjAxWjAYMRYw
FAYDVQQDEw02OGIxNTYxMS0zYTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA+NkuvJXiQp7OvpaYb+XssR94hiEhRAmcbAlorIlMpjmxyfOYCQ7TpZpB
OiC8jFis8PsfwCZf/1FmTs+CtyMNsw0v4cJCabdAN5EgvSxrr3ccMPwM6rP7BcFG
ARzXFXIlmzu1unW3SnneCexSo3FcJLvI6NIVXR+kzwMu6n8BhcsEZAHVE8fWBgex
jmamGXU4opBaaK6Hz7LvGljBdQkCpAcXEM+bbgUtUbdDjOQkNteWEFJMmhyNRVCR
DamChf035ckFeVTMfNIJc+PE+4Qc+EdImZnXd585800nokxnzYTvT2Gha7KxHLJn
fBwIzwOb+xtTuYJSgdwRWdRLcoD3xQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFINE
2jr0VlGDru31VjrYa5O2fhHjMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC82RTdDMjFGNjg0QTkxMUYwOTlCNDk3QjhEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnPXyMA0GCSqGSIb3DQEBCwUA
A4IBAQCjt/JJoYbfsuwCgXZ1dHDLvbN8ovHFOZxiqcCoGgCF8+Fisr30FflA8aTo
WkQxSheY21icwP1+Z6ZEJk+qk/T4qiE8i8AP//ZH8jHVHN24vvqnAFqyYzez206T
47VyENAJhKtyvYIBQ8wou0SIyKv8Qk4QPPrJMoNdxknnjGt0rFPMIC6rpXKupj2B
IEo+5y8BPdXpyCfXlAqJxWT3Ef5sAI8vKQJ1Y3lkOa7sJdD9f0hajCx3gOK4cqj/
Z0LUQUQ7nh9LicqXOBQI3qhXMeTlvD6PGJKoG8hOf0YZxg7mX+f155jmUpS/18Ir
qcF7yH0VymdnyC9N6po9DH+dy3JO
-----END CERTIFICATE-----
Generated at Wed Sep 3 20:25:27 2025 by rpki-client