Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A3FC11D6996911F0835EBA79DAE4EC9C.roa
File: A3FC11D6996911F0835EBA79DAE4EC9C.roa (raw, json)
Hash identifier: fIIHPRtHG5UkXLoiEOS8nKk0BcPUcGaU2O4I6ksZNOw=
Subject key identifier: FC:A2:66:85:53:2A:CC:44:16:B2:9A:AC:BB:82:A2:8C:8F:52:82:E0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017CF9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A3FC11D6996911F0835EBA79DAE4EC9C.roa
Signing time: Wed 24 Sep 2025 17:12:25 +0000
ROA not before: Wed 24 Sep 2025 17:12:20 +0000
ROA not after: Thu 30 Oct 2025 17:12:20 +0000
asID: 35916
IP address blocks: 156.225.192.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97529 (0x17cf9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 24 17:12:20 2025 GMT
Not After : Oct 30 17:12:20 2025 GMT
Subject: CN=68d42679-fdb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:e6:e3:3d:43:63:02:74:5e:1b:ce:46:97:d6:
c8:6a:c0:bb:c2:bb:62:44:24:31:5a:f5:66:69:17:
49:4b:57:33:27:80:c2:89:4d:12:54:0b:3d:98:29:
54:14:52:50:4f:96:2b:c3:5c:35:13:7f:e7:5b:bf:
ee:bb:2d:9d:83:81:d8:29:9d:8d:2e:53:ac:b5:60:
52:6a:54:80:14:78:1c:d2:f4:5b:67:e5:70:45:e0:
7a:d9:90:e7:5d:53:f9:6f:25:27:d8:16:78:3b:58:
d6:97:56:ef:85:b3:be:10:31:08:f5:aa:2f:3b:cc:
1b:43:3b:5f:88:61:71:d4:4b:d1:9a:56:c9:96:85:
ff:40:d4:0c:79:c2:e3:50:a5:a7:32:5a:41:11:92:
3a:de:2e:2b:88:b6:34:3d:84:bd:c1:57:6b:d7:fa:
ff:33:68:45:ea:29:10:f4:e8:30:c2:dd:ad:d2:06:
e9:ba:c3:65:be:0b:f1:f2:f3:2f:9c:33:d7:19:3a:
a8:72:09:59:7e:fb:ae:78:88:2c:e1:58:21:d9:72:
38:b1:77:40:c6:de:47:19:85:17:0e:08:78:27:02:
b4:59:02:87:17:72:91:f3:31:49:f7:1b:0c:ec:1d:
6f:01:cf:4a:aa:99:80:55:5c:db:b0:97:5d:5b:bc:
cd:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:A2:66:85:53:2A:CC:44:16:B2:9A:AC:BB:82:A2:8C:8F:52:82:E0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A3FC11D6996911F0835EBA79DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.192.0/18
Signature Algorithm: sha256WithRSAEncryption
3b:67:e0:77:d8:3d:af:c6:32:fb:16:59:85:b5:50:36:ee:3d:
40:36:ac:c8:db:ae:98:0c:2f:c1:32:2d:6b:00:73:71:08:5e:
93:18:f7:54:77:52:eb:f8:2d:17:18:2f:15:9b:50:6f:81:55:
a7:6a:9e:9a:a8:9a:ef:7a:ef:92:f7:eb:44:02:8f:a7:ee:bb:
3d:f4:d7:49:8c:8d:39:99:de:5d:aa:2a:66:cf:23:97:ed:ee:
9e:c5:c4:20:36:eb:50:d0:cf:a2:3c:f2:f7:17:3f:e0:9e:d3:
62:04:18:f9:47:de:ea:89:8e:d2:fd:ec:80:7e:fa:52:0a:80:
54:5e:03:fe:ac:a8:b9:49:bb:a6:08:2c:75:8b:0a:d6:d7:5e:
13:95:87:e9:70:79:f0:1c:8b:17:db:79:44:28:5b:2e:78:c3:
0a:0f:59:de:1b:8f:d1:64:03:c4:5a:63:e7:fd:fe:44:0c:f7:
b8:89:cf:42:82:a0:97:35:f8:8b:0c:10:31:e0:a8:58:08:c6:
b7:94:23:aa:e1:63:7c:05:e9:46:0e:ae:ee:33:8a:2a:83:a6:
57:ed:72:9b:5b:27:4e:40:7f:10:d8:bf:04:89:59:c2:2d:67:
a6:ef:45:77:08:c2:ac:ce:eb:71:62:93:a8:3c:fc:29:f8:34:
33:9b:94:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:51:02 2025 by rpki-client