Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9F2BAAD688A711F0B049E5B5DAE4EC9C.roa
File: 9F2BAAD688A711F0B049E5B5DAE4EC9C.roa (raw, json)
Hash identifier: BuzpwCbQSSAhauxcQFgpfvP5M+s+vfxTSfwyRqelHlw=
Subject key identifier: 4D:5D:CC:25:DE:98:3B:54:95:F3:B6:14:FA:F0:E7:01:75:B4:A5:C8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017765
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9F2BAAD688A711F0B049E5B5DAE4EC9C.roa
Signing time: Wed 03 Sep 2025 09:23:16 +0000
ROA not before: Wed 03 Sep 2025 09:23:10 +0000
ROA not after: Wed 08 Oct 2025 09:23:10 +0000
asID: 200373
IP address blocks: 156.228.0.0/24 maxlen: 24
156.228.76.0/24 maxlen: 24
156.228.77.0/24 maxlen: 24
156.228.78.0/24 maxlen: 24
156.228.79.0/24 maxlen: 24
156.228.80.0/24 maxlen: 24
156.228.81.0/24 maxlen: 24
156.228.82.0/24 maxlen: 24
156.228.83.0/24 maxlen: 24
156.228.84.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96101 (0x17765)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 3 09:23:10 2025 GMT
Not After : Oct 8 09:23:10 2025 GMT
Subject: CN=68b80904-c92f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:10:36:c2:38:d2:ec:46:a2:f0:32:61:d0:9e:
3e:3d:45:2d:b6:b2:1d:1f:77:22:13:cb:9d:33:59:
05:6e:65:f8:7f:8e:24:82:06:89:2c:1c:9a:dd:41:
18:20:c1:7a:1e:30:f2:a5:bb:84:97:9f:35:f8:84:
01:1b:0c:93:c4:a0:29:a2:de:e0:d9:71:7f:9b:3d:
44:5e:44:64:bd:16:a6:99:a9:a1:35:b2:2f:7f:57:
ed:34:ab:bb:b8:6d:bb:d1:b5:95:ef:40:11:58:68:
a8:b4:05:9b:06:c2:91:16:5c:ed:21:5b:2c:db:12:
6d:bd:e1:18:5b:f0:a6:a7:ff:d1:42:6f:56:2d:fd:
e0:f9:24:d6:a5:41:40:5c:b4:f1:ce:56:25:f7:c0:
7e:d7:94:63:44:26:b8:14:1d:d4:a8:f2:d8:e5:d7:
0c:50:77:5b:00:84:1b:99:07:21:31:6d:39:60:3c:
8d:89:5a:63:c9:f6:85:1b:90:ab:08:c9:f2:be:42:
eb:10:e1:2e:9c:cc:48:77:52:2c:7b:5c:f1:e2:d4:
dc:b2:6c:c3:05:b1:10:eb:98:f1:5c:76:a8:0f:69:
60:53:13:88:20:0c:d0:80:5d:a2:dd:36:d9:b5:9d:
5d:90:3a:ae:5d:6d:52:72:e6:22:d0:31:95:19:a7:
88:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:5D:CC:25:DE:98:3B:54:95:F3:B6:14:FA:F0:E7:01:75:B4:A5:C8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9F2BAAD688A711F0B049E5B5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.228.0.0/24
156.228.76.0-156.228.84.255
Signature Algorithm: sha256WithRSAEncryption
b8:94:ff:df:69:55:8b:8b:68:d3:65:93:25:0c:74:52:26:0b:
84:da:2c:68:91:a3:ca:cd:ba:af:f1:84:23:48:36:9f:e8:a8:
9d:02:8f:04:0b:ac:fe:28:88:d9:0e:b1:2c:49:71:25:3c:69:
d1:e9:db:79:32:43:8a:91:88:7f:8e:35:64:4c:b6:73:a6:d4:
81:63:bf:c6:c1:c3:29:ef:16:77:1b:78:fc:68:00:72:14:b2:
80:0d:62:a6:51:38:91:05:ff:a1:ba:8e:52:1c:7e:b4:55:55:
60:54:18:28:b1:47:e2:fb:0c:13:e9:6a:0f:33:30:b7:ea:f0:
1d:3f:21:19:50:2a:3f:be:5a:7e:3c:c3:2b:e7:49:be:99:9d:
c7:dd:d4:d3:4b:ee:0c:98:07:f1:1e:7c:47:a7:0e:50:3d:c2:
88:1b:f3:43:5d:58:d1:34:6a:8a:23:bb:97:fc:27:1b:b6:9a:
27:bc:c0:e2:8e:a9:39:0e:b0:31:ba:5a:40:c5:b1:85:83:b7:
46:e0:21:57:52:b2:ef:46:91:7d:c5:88:4d:22:45:a2:91:af:
23:eb:e3:1f:97:4d:95:75:89:87:c8:7b:d3:bb:71:0f:e2:51:
39:9b:f2:7b:e1:fa:d1:cf:2a:1d:1f:79:1a:bf:cb:d8:19:23:
17:09:68:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 3 18:19:04 2025 by rpki-client