Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A0E4EF04A4F411F0919BCBD6DAE4EC9C.roa
File: A0E4EF04A4F411F0919BCBD6DAE4EC9C.roa (raw, json)
Hash identifier: QDzw+dvexzpanQJo04SerJGATEE3S/q5prqzMn5NjqQ=
Subject key identifier: 4A:98:DD:C7:B2:D2:C4:0C:1C:D5:22:C4:59:F5:4E:70:F7:66:40:B7
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017FB1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A0E4EF04A4F411F0919BCBD6DAE4EC9C.roa
Signing time: Thu 09 Oct 2025 09:45:03 +0000
ROA not before: Thu 09 Oct 2025 09:44:56 +0000
ROA not after: Sun 16 Nov 2025 09:44:56 +0000
asID: 22773
IP address blocks: 156.242.95.0/24 maxlen: 24
156.242.247.0/24 maxlen: 24
156.242.248.0/24 maxlen: 24
156.242.249.0/24 maxlen: 24
156.242.250.0/24 maxlen: 24
156.242.251.0/24 maxlen: 24
156.242.252.0/24 maxlen: 24
156.242.253.0/24 maxlen: 24
156.242.254.0/24 maxlen: 24
156.242.255.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98225 (0x17fb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 9 09:44:56 2025 GMT
Not After : Nov 16 09:44:56 2025 GMT
Subject: CN=68e7841f-8683
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:e8:0c:27:a8:31:26:87:eb:09:ce:1f:94:03:
26:9d:c3:c0:fa:ed:eb:af:54:f5:9b:08:83:17:43:
6f:6d:e7:25:42:04:e2:a1:dc:2c:13:64:47:0f:35:
7d:fd:99:e6:98:84:05:19:3f:2d:4e:cf:83:a5:d3:
53:37:bd:86:01:f6:60:eb:18:72:e1:37:11:3b:92:
b4:73:35:61:db:73:9b:93:99:d9:3d:63:b2:81:00:
13:f3:1d:3c:e6:ba:43:6b:6f:c9:42:6b:85:1b:00:
8c:e9:7d:81:1c:b3:53:f8:c1:7c:83:00:5f:5e:9c:
fa:4a:5f:5d:18:a1:70:4d:5f:97:e5:a4:d1:6c:de:
8a:6f:c3:14:46:9b:04:b9:1a:f6:2a:b8:13:36:e6:
5a:66:05:58:d3:5f:76:77:e1:5c:23:eb:07:31:8e:
a8:6d:84:a9:32:ff:58:93:ca:18:7e:d3:61:fe:96:
df:09:ff:ab:4a:4b:a9:32:c1:4f:bd:d3:37:b5:fe:
09:bf:a7:0e:93:75:f0:af:01:87:65:27:56:9a:90:
f6:de:d2:a2:03:17:ea:3a:1f:e2:4d:9d:75:d2:cf:
5f:08:f9:ec:d3:31:64:29:e2:48:51:b7:aa:31:6d:
a5:cc:9f:ed:ad:a6:a8:65:7b:d9:60:2c:74:09:fe:
8a:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:98:DD:C7:B2:D2:C4:0C:1C:D5:22:C4:59:F5:4E:70:F7:66:40:B7
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A0E4EF04A4F411F0919BCBD6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.242.95.0/24
156.242.247.0-156.242.255.255
Signature Algorithm: sha256WithRSAEncryption
b5:68:ec:c8:8e:b4:2b:68:b4:ab:a1:27:43:d8:9c:77:fa:f9:
6f:11:c8:1e:1f:5b:a3:0f:15:ad:42:d1:e1:83:51:15:f1:e4:
e5:5b:3b:27:ab:9e:77:10:3d:84:32:1d:eb:86:5c:21:73:33:
f0:3f:4e:4d:67:a2:95:67:6b:bc:59:a0:a4:a3:9a:59:f1:1a:
76:56:17:c5:a2:89:6e:64:1e:c3:29:17:6a:76:0e:7a:72:88:
ed:66:89:6c:52:e4:0c:24:2b:a5:c5:6b:9b:95:02:ab:b2:2e:
ba:bf:55:de:6c:f3:9f:cf:f1:d3:f6:d3:76:b3:20:80:26:03:
36:04:86:76:bf:0a:0e:37:c7:2c:40:df:35:5d:8f:c7:97:61:
85:64:af:cf:7a:1a:5f:2d:d6:c4:22:43:2d:00:a2:f6:33:d0:
47:c4:87:18:7c:37:25:83:4a:4d:6a:c4:30:10:d6:38:85:4b:
1a:ec:d8:c1:26:9f:b0:1d:76:e6:cf:0b:99:08:31:ed:63:ed:
69:be:6f:9f:40:a4:01:60:d7:cc:06:29:4d:43:64:18:ae:2b:
5f:5b:18:51:24:38:bf:1c:02:62:c4:79:53:3e:a3:10:be:e2:
48:9f:30:18:3c:40:ab:ab:0e:81:cb:6a:8d:13:a3:1a:ea:1d:
dd:0c:62:78
-----BEGIN CERTIFICATE-----
MIIFjjCCBHagAwIBAgIDAX+xMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUxMDA5MDk0NDU2WhcNMjUxMTE2MDk0NDU2WjAYMRYw
FAYDVQQDEw02OGU3ODQxZi04NjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA1ugMJ6gxJofrCc4flAMmncPA+u3rr1T1mwiDF0NvbeclQgTiodwsE2RH
DzV9/ZnmmIQFGT8tTs+DpdNTN72GAfZg6xhy4TcRO5K0czVh23Obk5nZPWOygQAT
8x085rpDa2/JQmuFGwCM6X2BHLNT+MF8gwBfXpz6Sl9dGKFwTV+X5aTRbN6Kb8MU
RpsEuRr2KrgTNuZaZgVY0192d+FcI+sHMY6obYSpMv9Yk8oYftNh/pbfCf+rSkup
MsFPvdM3tf4Jv6cOk3XwrwGHZSdWmpD23tKiAxfqOh/iTZ110s9fCPns0zFkKeJI
UbeqMW2lzJ/traaoZXvZYCx0Cf6K6wIDAQABo4ICrzCCAqswHQYDVR0OBBYEFEqY
3cey0sQMHNUixFn1TnD3ZkC3MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9BMEU0RUYwNEE0RjQxMUYwOTE5QkNCRDZEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MCwGCCsGAQUFBwEHAQH/BB0wGzAZBAIAATATAwQAnPJfMAsDBACc8vcDAwCc8jAN
BgkqhkiG9w0BAQsFAAOCAQEAtWjsyI60K2i0q6EnQ9icd/r5bxHIHh9bow8VrULR
4YNRFfHk5Vs7J6uedxA9hDId64ZcIXMz8D9OTWeilWdrvFmgpKOaWfEadlYXxaKJ
bmQewykXanYOenKI7WaJbFLkDCQrpcVrm5UCq7Iuur9V3mzzn8/x0/bTdrMggCYD
NgSGdr8KDjfHLEDfNV2Px5dhhWSvz3oaXy3WxCJDLQCi9jPQR8SHGHw3JYNKTWrE
MBDWOIVLGuzYwSafsB125s8LmQgx7WPtab5vn0CkAWDXzAYpTUNkGK4rX1sYUSQ4
vxwCYsR5Uz6jEL7iSJ8wGDxAq6sOgctqjROjGuod3QxieA==
-----END CERTIFICATE-----
Generated at Sun Oct 19 08:51:05 2025 by rpki-client