Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/95AEF6D8A9F011F0B693EE84DAE4EC9C.roa
File: 95AEF6D8A9F011F0B693EE84DAE4EC9C.roa (raw, json)
Hash identifier: jeETg+9K1vuwX9wgIPw3aJUH9GBMS2T7NI2ERBaQgGc=
Subject key identifier: FF:FE:2F:C6:48:D1:4D:EE:71:ED:67:49:05:37:C7:20:FD:E9:A9:02
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0180CC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/95AEF6D8A9F011F0B693EE84DAE4EC9C.roa
Signing time: Wed 15 Oct 2025 17:58:42 +0000
ROA not before: Wed 15 Oct 2025 17:58:37 +0000
ROA not after: Sat 25 Oct 2025 17:58:37 +0000
asID: 205712
IP address blocks: 156.225.46.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98508 (0x180cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 15 17:58:37 2025 GMT
Not After : Oct 25 17:58:37 2025 GMT
Subject: CN=68efe0d2-3651
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:3c:84:c5:6c:19:1f:d9:79:04:ae:f2:12:03:
30:44:79:06:6d:bb:ba:e5:c6:86:78:ef:5c:17:5d:
e0:20:c1:ea:d6:0e:63:cd:fc:c7:05:b6:ec:40:0c:
85:e0:38:89:54:92:41:62:8e:8f:f4:3f:70:ec:1a:
04:a0:ba:66:6e:da:47:ef:fa:6c:ec:06:39:49:7b:
ee:34:e1:45:5a:a2:50:55:71:20:55:19:83:6a:1f:
9f:f4:3f:02:f6:92:2c:81:dd:d9:fd:6b:57:06:b8:
b5:20:f4:d1:e1:a0:d6:7f:e3:01:c6:c9:72:b6:ba:
42:9d:fa:38:14:4c:f2:83:5f:bc:93:26:0f:e9:47:
38:23:30:54:72:1e:32:88:4e:db:8e:08:00:16:5e:
70:d9:6f:b8:86:49:2e:da:15:70:97:71:e8:5d:60:
42:c8:66:f4:92:7e:34:2e:0b:52:88:d7:b6:5e:10:
d3:b1:8a:90:3d:dc:9b:7c:a6:a0:c6:65:51:1f:4a:
7e:f8:7a:d7:32:01:5f:ae:31:f4:39:94:47:22:0a:
00:7e:ca:2f:e2:1c:6a:f0:41:b3:c8:70:78:33:50:
8f:f4:4d:ad:5b:6e:15:8f:da:3a:6c:87:d1:df:39:
41:c2:13:47:3f:9e:4c:87:19:44:b5:26:8e:c4:5d:
f8:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:FE:2F:C6:48:D1:4D:EE:71:ED:67:49:05:37:C7:20:FD:E9:A9:02
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/95AEF6D8A9F011F0B693EE84DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.46.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:61:4e:86:92:8b:24:51:c3:0c:e7:0e:60:ee:9c:14:ab:df:
75:87:c7:83:3b:74:f9:b4:76:2a:43:ca:47:dc:72:d9:7c:2c:
e4:99:34:f1:5d:a7:78:e0:87:15:ce:87:eb:12:67:df:ba:4d:
9b:51:12:32:dd:dc:9c:22:a9:88:c3:12:f9:83:fe:5b:5d:4a:
e9:72:29:08:77:a6:24:9a:4d:24:44:9f:4b:54:0d:c0:1d:cf:
2a:e8:90:3d:14:de:3c:ba:c4:1f:d4:e5:a3:89:8f:8b:32:6d:
d0:50:65:6a:90:d8:9a:c6:7e:a8:1d:44:be:0c:8a:1d:e2:4e:
42:88:6f:2d:f2:29:ba:87:33:67:0a:0c:d3:44:80:09:33:05:
1b:60:11:1a:c5:c8:05:6e:07:70:65:e7:a6:04:40:ac:18:e0:
45:99:cb:99:77:b4:9f:01:68:5a:f0:03:55:3b:dd:42:91:2d:
5e:9f:60:47:f9:f9:db:b6:e8:b4:39:29:7a:c0:68:4d:c2:43:
d9:87:d1:59:43:e9:e9:18:8e:3d:67:84:40:c1:ab:05:03:22:
ad:35:d4:20:f9:31:25:d6:df:da:d7:4f:60:5e:fe:d1:cc:05:
a3:b4:09:7f:ff:31:c4:8f:84:6b:45:3c:40:6c:eb:0e:2b:1d:
a2:eb:95:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:52:53 2025 by rpki-client