Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/731641A4A76A11F0B3CC80C6DAE4EC9C.roa
File: 731641A4A76A11F0B3CC80C6DAE4EC9C.roa (raw, json)
Hash identifier: pvX6+N/xUGo89sMdfqVyJK2aFjgRxf8c9gR3AdUm8Ik=
Subject key identifier: E8:74:4B:C2:E6:71:74:44:72:40:25:82:02:C0:7A:AD:9C:36:2F:60
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01802A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/731641A4A76A11F0B3CC80C6DAE4EC9C.roa
Signing time: Sun 12 Oct 2025 12:53:29 +0000
ROA not before: Sun 12 Oct 2025 12:53:24 +0000
ROA not after: Thu 27 Nov 2025 12:53:24 +0000
asID: 64013
IP address blocks: 156.234.0.0/16 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98346 (0x1802a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 12 12:53:24 2025 GMT
Not After : Nov 27 12:53:24 2025 GMT
Subject: CN=68eba4c9-1702
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:56:7e:fa:08:e0:f3:6c:15:e5:8b:6e:12:8b:
be:65:75:2e:a2:63:b2:63:79:f1:da:45:e6:5b:9c:
57:14:bd:03:09:70:da:7b:71:31:1d:76:cb:4a:c7:
0f:81:7a:47:5d:94:0f:27:27:1a:1c:3a:46:5f:87:
71:f5:b6:14:4e:2e:45:9a:52:af:1c:59:3b:f5:86:
9b:5e:3b:74:44:61:0d:1c:8d:cc:6c:b7:00:94:6e:
0b:4c:ea:15:54:c7:c8:3f:0e:5c:93:4c:b6:54:3a:
09:a0:69:d6:a9:32:ac:f7:6f:76:a5:d9:e9:52:12:
ec:fd:40:6f:f2:a4:2d:96:b3:97:af:a3:e4:d4:c6:
d5:b4:46:1b:ca:25:34:45:59:32:c9:0d:3a:79:64:
08:31:d6:58:e6:18:4f:fb:58:7a:fd:95:99:fd:7b:
63:ae:f5:a9:b0:3a:30:c4:34:08:3f:39:b5:c1:ae:
66:f7:ed:b6:78:f6:4a:70:e4:37:d8:cb:41:49:05:
87:90:1b:91:11:7a:f7:95:e7:d7:d0:02:ff:0e:54:
ff:2f:89:b2:1c:4f:39:a9:8c:01:ef:34:62:62:8b:
a7:76:ff:7a:7c:ed:5d:ca:a4:a2:d2:94:98:9e:65:
f3:fa:b6:8a:85:47:74:97:13:31:40:5e:8e:28:41:
b3:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:74:4B:C2:E6:71:74:44:72:40:25:82:02:C0:7A:AD:9C:36:2F:60
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/731641A4A76A11F0B3CC80C6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.234.0.0/16
Signature Algorithm: sha256WithRSAEncryption
96:a2:24:ea:00:fb:3e:93:36:d4:36:10:c2:30:87:40:17:ec:
42:ed:66:23:9d:01:ea:94:61:7a:c1:71:7e:0d:35:b3:a0:c3:
e8:75:e2:b6:90:f1:5c:ec:53:a7:db:50:4a:49:c5:0f:21:98:
55:86:79:29:86:92:ac:01:69:47:01:9e:b6:02:45:38:03:4f:
be:af:61:bb:42:13:14:25:8a:26:95:10:42:de:9c:eb:e7:b9:
4b:54:27:ba:ed:31:d7:56:a0:f6:95:e9:4c:66:47:45:1e:03:
08:69:6f:7e:63:d2:d2:c6:7b:14:27:ba:67:b8:59:0f:ab:77:
0b:1f:b5:a3:c4:23:d0:40:0d:c4:7c:58:d0:81:b5:de:c7:27:
04:14:0d:f1:17:98:90:92:e0:14:56:54:60:4c:41:a6:a6:03:
98:48:71:41:0f:c0:8a:70:62:03:88:14:68:a1:a2:fd:1b:e8:
9a:f9:fd:87:19:7c:f7:03:49:55:aa:ef:75:98:97:78:f0:3e:
5e:39:da:70:04:c6:09:80:e2:09:e2:b0:11:81:c7:f3:3d:53:
ef:2e:99:dd:49:f3:47:dd:59:2f:e5:60:85:eb:9e:7d:4b:26:
26:10:90:10:a0:5a:8d:57:82:89:db:a2:58:ce:c8:0b:8b:a4:
68:7b:12:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 11:33:54 2025 by rpki-client