Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/93F1D0249FFD11F0BF34EB95DAE4EC9C.roa
File: 93F1D0249FFD11F0BF34EB95DAE4EC9C.roa (raw, json)
Hash identifier: M9CxBCt63wj+1FyeJOnS806vUVOr/GDhvTQrEOKW4O4=
Subject key identifier: A1:50:DB:D0:5B:5E:0A:DC:D4:A5:5B:05:7E:24:C4:1E:8E:87:CA:4B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017E85
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/93F1D0249FFD11F0BF34EB95DAE4EC9C.roa
Signing time: Fri 03 Oct 2025 02:06:31 +0000
ROA not before: Fri 03 Oct 2025 02:06:22 +0000
ROA not after: Sat 12 Sep 2026 02:06:22 +0000
asID: 197450
IP address blocks: 156.233.71.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97925 (0x17e85)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 3 02:06:22 2025 GMT
Not After : Sep 12 02:06:22 2026 GMT
Subject: CN=68df2fa7-1e2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:1c:72:e3:84:7e:c8:a4:75:7b:8b:ff:b9:cb:
6a:38:e2:be:8b:74:0e:3e:2d:9b:a5:b3:41:70:f0:
01:a1:e3:8c:87:21:7f:b7:f1:d0:30:2b:f9:76:d9:
49:d7:6a:a0:a6:24:84:d9:e7:78:d3:08:1d:80:7a:
0e:74:ab:1a:7a:36:94:b3:7d:e3:d3:5d:43:9d:cf:
38:3e:a7:09:40:8a:d7:52:c6:9d:db:6b:d1:2f:37:
6b:38:a2:5b:c8:3f:a2:6c:46:90:04:f3:c3:62:4c:
47:be:dc:c2:30:d4:d6:ab:01:5f:a0:c3:ca:e7:51:
f1:21:da:7f:fe:a6:8c:84:a6:22:73:91:82:c3:11:
23:a6:65:ca:66:4d:de:53:3c:a9:eb:43:71:12:c1:
fc:76:a0:46:a5:74:1d:48:d9:8e:69:6a:93:99:2a:
a8:e1:3d:b5:1b:d9:69:cb:a1:db:e8:42:ca:b1:e6:
95:10:72:68:81:87:bd:d3:52:f3:a5:e7:1a:bc:eb:
87:5b:f6:ba:04:44:8a:a4:6f:d8:52:5f:72:cb:88:
a7:34:23:5c:c7:2b:34:3f:1f:c6:a9:fc:15:22:be:
22:66:47:9e:3a:67:0a:2b:e0:ce:6e:dc:e7:d5:08:
ef:23:9f:68:03:45:4b:f5:6e:81:db:6e:ac:bf:52:
c5:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:50:DB:D0:5B:5E:0A:DC:D4:A5:5B:05:7E:24:C4:1E:8E:87:CA:4B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/93F1D0249FFD11F0BF34EB95DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.71.0/24
Signature Algorithm: sha256WithRSAEncryption
40:66:6a:91:ab:b4:1b:b7:12:22:f0:1a:01:8c:34:0a:b9:f5:
14:41:5b:5f:64:d1:6b:38:2c:77:f8:89:de:c8:8f:5e:9a:25:
28:58:1f:bb:79:4c:5c:44:14:fb:d2:3d:5f:b7:91:ce:0c:03:
ca:f6:65:dc:29:c1:25:85:e8:b7:e8:5c:28:25:c1:29:77:9e:
45:b2:29:56:f7:9c:9f:fd:63:65:80:23:b3:80:8d:d3:5b:33:
16:9e:7d:0e:5e:59:77:91:5d:82:af:67:f0:8b:3a:dc:41:22:
41:2d:4d:f0:67:8e:41:06:be:3a:70:4e:68:49:0f:43:47:a4:
46:f8:a5:e8:62:aa:c1:52:d4:ea:7b:69:8d:2b:43:53:e9:95:
b2:95:96:f4:60:82:3e:97:2c:54:ef:2d:cb:6c:a0:65:33:8e:
44:6b:64:8b:fb:6b:03:0f:c5:84:f5:8e:e0:9b:61:1f:52:03:
aa:ea:08:d4:a4:ae:49:bd:0b:bb:63:c0:0f:9a:7b:88:80:c8:
f1:66:4c:d0:2f:df:fa:69:2a:58:bf:88:74:1f:d4:26:aa:67:
1b:88:8c:24:36:b2:d5:c3:c4:9b:78:b4:48:6a:96:fc:4f:57:
97:af:8a:27:ab:53:80:24:f0:8d:34:2a:69:70:de:4a:60:f6:
d9:f2:57:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:50:58 2025 by rpki-client