Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A4295BA6955311F0B79DD68ADAE4EC9C.roa
File: A4295BA6955311F0B79DD68ADAE4EC9C.roa (raw, json)
Hash identifier: an7XzBDz8cujnY4cggazIVX/oEcMJAxGvfPRLP77NuA=
Subject key identifier: 5D:BE:B0:06:72:FC:04:D1:E3:02:75:7B:BE:6A:41:F2:4D:D2:55:54
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017C7D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A4295BA6955311F0B79DD68ADAE4EC9C.roa
Signing time: Fri 19 Sep 2025 12:24:52 +0000
ROA not before: Fri 19 Sep 2025 12:24:47 +0000
ROA not after: Mon 26 Oct 2026 12:24:47 +0000
asID: 214483
IP address blocks: 156.233.51.0/24 maxlen: 24
156.233.64.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97405 (0x17c7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 19 12:24:47 2025 GMT
Not After : Oct 26 12:24:47 2026 GMT
Subject: CN=68cd4b94-e6f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:e6:70:39:41:fe:43:ce:1a:dc:ae:52:a2:02:
b3:0e:77:72:f3:54:ec:97:c1:ab:e5:3c:78:b5:9b:
6b:7a:2b:0f:2c:2e:fe:72:e8:8e:07:e1:e9:04:6d:
23:ea:89:e7:9f:fc:36:3c:1d:12:b2:32:bb:31:37:
46:ff:84:98:60:08:3a:5c:85:b9:02:8d:0e:e8:e6:
81:db:40:30:01:20:02:8e:99:28:03:ad:20:e3:91:
2a:5b:4e:1a:4b:61:c2:59:e1:e7:d6:14:50:50:21:
1e:8a:cf:d6:ca:c6:55:5e:a1:17:ec:c3:07:61:e0:
f1:13:dc:57:61:95:bf:cd:ff:e0:e4:6d:81:6a:2d:
d8:65:1e:af:6a:5b:dc:98:d6:3b:84:21:6f:09:4b:
8a:5b:64:d5:b0:fc:2c:c6:32:a6:5b:0b:69:32:28:
2b:39:0d:20:fa:8d:fb:86:43:28:e5:86:17:b6:d4:
1a:40:38:b3:21:c0:79:84:50:54:db:db:60:2c:be:
d2:18:a4:69:df:df:12:0a:2a:b5:2b:8e:37:54:4d:
1a:aa:01:59:89:7f:80:d5:b1:fa:36:42:f3:1e:48:
f7:b5:cb:17:9c:b4:02:3f:29:43:eb:94:77:ee:d3:
31:f3:ae:f7:f8:2a:23:ae:78:c1:a3:a5:ca:48:6a:
c9:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:BE:B0:06:72:FC:04:D1:E3:02:75:7B:BE:6A:41:F2:4D:D2:55:54
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A4295BA6955311F0B79DD68ADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.51.0/24
156.233.64.0/23
Signature Algorithm: sha256WithRSAEncryption
55:7d:ed:9e:b2:9e:42:44:1d:a3:f7:ab:92:6d:1b:9a:34:ff:
f5:be:0c:a9:13:97:2b:a4:70:0f:c5:5e:ce:b5:c3:08:c4:c3:
ab:a6:c3:6d:d6:55:77:b0:5c:86:2d:25:05:e5:62:08:65:c5:
d3:bf:a5:94:50:bc:a3:41:75:5a:cb:9e:3a:7b:e2:5e:6c:96:
ea:d6:8d:83:13:26:8b:f2:85:bb:89:9c:10:b7:3e:36:df:4c:
06:9a:85:56:08:95:2b:ac:af:87:57:32:37:fc:49:67:37:94:
90:c1:29:2b:3e:a3:a1:e5:c5:8b:3b:0e:b8:4a:f4:18:72:ac:
8e:49:d0:a8:30:c0:3c:94:48:ce:b6:17:35:2e:b3:87:7f:83:
c9:3f:39:47:87:31:99:04:b7:c2:5f:30:1a:03:e9:e8:74:e1:
70:06:3f:4b:d8:14:10:e3:40:16:2d:e8:2e:e8:02:e7:57:e5:
ac:e2:b1:df:46:f5:b4:a9:64:69:95:70:2e:46:d9:6e:3f:aa:
29:59:42:42:a0:cc:12:da:f4:f3:48:80:d9:4e:fd:9c:91:11:
b7:5c:1d:ae:b6:27:3b:19:db:2a:5c:87:a1:3b:c3:38:69:67:
3e:40:5a:64:0f:b5:8f:67:96:d8:29:9c:53:5b:b5:39:55:de:
73:1a:18:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 11:34:11 2025 by rpki-client