Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/72C685F09E9211F0AA5D33F2DAE4EC9C.roa
File: 72C685F09E9211F0AA5D33F2DAE4EC9C.roa (raw, json)
Hash identifier: sNcPkaFPqCngkzBwkrnUwiDu/V7YklgVaLrnk2aFnDg=
Subject key identifier: 0D:A5:9F:3D:EE:78:5D:97:3B:62:05:78:67:D2:63:FD:EF:A3:8E:56
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017E38
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/72C685F09E9211F0AA5D33F2DAE4EC9C.roa
Signing time: Wed 01 Oct 2025 06:47:08 +0000
ROA not before: Wed 01 Oct 2025 06:47:03 +0000
ROA not after: Thu 30 Oct 2025 06:47:03 +0000
asID: 137547
IP address blocks: 156.245.242.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97848 (0x17e38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 1 06:47:03 2025 GMT
Not After : Oct 30 06:47:03 2025 GMT
Subject: CN=68dcce6c-4385
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:44:0b:7f:c0:1d:bc:39:27:2d:f5:3e:98:fb:
7f:83:2a:13:5a:dc:8d:f9:7e:8f:b8:bb:56:c5:77:
e4:b9:d8:bd:82:8a:e1:30:65:45:f3:21:30:4f:22:
5c:6d:5f:f4:8e:65:72:f9:a9:e0:5d:61:12:c5:8e:
59:70:b9:1f:0d:64:ec:a9:72:4f:1c:c3:54:d1:a1:
ec:29:f1:de:8d:82:1c:b5:1d:02:f7:cb:40:e6:fa:
8d:23:86:be:ec:eb:f8:0e:3b:3e:d4:72:69:11:b3:
bc:f3:c3:75:44:e3:0b:ff:ee:f1:c2:0b:42:4a:47:
57:dd:77:0a:19:3c:e2:5c:57:49:6c:c6:70:7a:e7:
69:a5:49:7d:13:78:cb:2f:37:8a:4c:67:a9:64:db:
c9:d2:c5:58:c8:12:c9:27:df:a6:09:f1:76:8c:91:
1d:d7:da:78:5c:18:4b:af:13:0b:ac:bc:55:e7:08:
dd:0f:79:57:97:8a:e6:48:f7:40:d8:c4:d1:e6:8b:
0a:3c:d9:47:5f:54:cc:17:80:f5:2f:4f:07:25:6c:
3f:3c:4e:8c:9d:c3:ba:c1:e8:87:2c:da:ca:d5:e6:
2f:72:98:13:34:0a:c2:c6:96:26:00:57:e4:22:92:
0c:5b:fc:b8:f3:52:96:8c:bf:98:53:3d:00:9d:41:
d5:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:A5:9F:3D:EE:78:5D:97:3B:62:05:78:67:D2:63:FD:EF:A3:8E:56
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/72C685F09E9211F0AA5D33F2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.242.0/23
Signature Algorithm: sha256WithRSAEncryption
a0:cb:e2:f7:e5:d3:17:21:c2:3f:ee:ac:87:d6:69:12:38:9b:
62:c2:fb:75:c4:e6:99:4a:23:1e:e7:e1:99:09:ac:07:05:92:
15:96:b0:57:90:9f:53:65:ec:8f:fb:c7:b7:18:07:df:32:c5:
1c:7c:e9:a9:ac:be:70:09:c1:ff:c6:be:dc:4b:73:a6:16:3d:
92:ba:b7:39:0b:d4:e6:44:cf:13:6d:8d:11:62:06:bf:0a:b3:
37:79:62:a8:02:d7:1a:e4:32:bb:ea:87:e2:9e:3d:ee:18:44:
0d:70:da:dd:ef:c2:03:6b:60:47:63:2d:ff:9b:89:5e:3a:8d:
16:73:39:18:fb:b4:ea:34:7a:d4:cf:7c:8d:88:50:b7:16:c0:
2c:d1:50:33:e5:88:86:87:72:28:20:ae:b2:24:5c:01:2c:0c:
c4:f1:d7:97:8d:60:97:7b:d5:cb:c0:49:a4:a8:2a:d9:dd:1f:
42:30:18:9a:78:0c:31:15:0e:96:de:67:85:ff:a3:db:91:9e:
fd:c4:ee:16:4e:81:d1:4a:38:f6:6a:f9:5a:89:d8:94:a2:5f:
35:87:91:ac:a6:19:bc:6e:fc:e9:3d:38:85:e7:1d:4e:7d:c2:
b7:a2:29:6f:6c:75:8a:05:b8:68:0d:29:8d:0d:6b:35:14:87:
2c:e2:75:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:51:03 2025 by rpki-client