Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AE02B74E8A5911F0A3D89CC0DAE4EC9C.roa
File: AE02B74E8A5911F0A3D89CC0DAE4EC9C.roa (raw, json)
Hash identifier: F/j6davlZqMtPfe/EnkkjSIFONppl7gv2H4ikP6FV+s=
Subject key identifier: BA:3D:FD:73:D9:CA:FA:5E:B9:02:EA:8A:80:FA:C9:34:B3:F7:2F:70
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017929
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AE02B74E8A5911F0A3D89CC0DAE4EC9C.roa
Signing time: Fri 05 Sep 2025 13:10:23 +0000
ROA not before: Fri 05 Sep 2025 13:10:18 +0000
ROA not after: Fri 12 Dec 2025 13:10:18 +0000
asID: 398993
IP address blocks: 156.236.192.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96553 (0x17929)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 5 13:10:18 2025 GMT
Not After : Dec 12 13:10:18 2025 GMT
Subject: CN=68bae13f-9157
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:4a:56:15:01:fd:1a:e1:08:83:5a:8e:d0:ef:
40:c8:3d:99:65:ce:6c:2d:b1:8c:91:16:31:f7:71:
45:e5:ea:43:b3:b0:d5:42:31:e1:7f:c8:11:91:4e:
9b:df:84:a8:0e:73:25:0f:df:fe:a2:57:f2:1e:31:
5a:2d:65:24:17:48:76:97:20:cf:95:99:cc:54:b4:
39:bd:c6:32:aa:5f:07:a1:ec:72:8f:72:d1:63:c0:
f2:f2:e2:30:85:9e:de:0d:02:67:5c:80:d1:af:b4:
17:64:6c:45:02:40:c7:f9:ef:84:0b:87:0f:52:3f:
ef:73:78:6c:e0:a9:21:b2:7a:7d:e8:2f:c7:f9:8a:
f1:64:03:f9:d2:75:8e:b1:e4:e8:63:10:04:9f:09:
19:51:15:34:bb:2d:5a:d2:b4:91:50:4e:b1:aa:89:
87:fc:a2:66:3e:cc:1b:8b:5c:06:af:70:24:ec:49:
9b:85:7c:58:be:0a:89:c8:95:2c:2d:67:d5:a3:58:
ef:a9:35:d1:ac:1e:52:59:d3:b5:21:95:10:93:2b:
7d:6f:c1:9a:28:97:f1:6b:b1:33:f6:a8:f6:ce:46:
dc:65:9c:1e:9f:81:1e:7a:f8:3a:1f:8d:6b:08:ab:
8a:5c:6e:f0:cf:d4:47:31:cc:b2:92:b2:9e:ca:62:
3e:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:3D:FD:73:D9:CA:FA:5E:B9:02:EA:8A:80:FA:C9:34:B3:F7:2F:70
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AE02B74E8A5911F0A3D89CC0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.236.192.0/18
Signature Algorithm: sha256WithRSAEncryption
94:5f:2a:2a:61:f1:df:2f:fd:07:14:09:44:09:7a:b4:07:9e:
f1:07:c2:fc:7e:86:51:95:11:c3:df:df:79:e1:34:30:95:b4:
42:ed:7b:d7:4c:0d:65:07:c8:16:ec:76:12:69:b5:fb:e4:b8:
e6:e3:c6:ce:c1:9a:7b:6d:fc:c1:b5:0a:db:5a:f3:1a:1c:f5:
3f:25:1e:8c:bf:9a:da:16:9e:03:2a:06:d4:e2:db:c3:50:98:
07:27:95:5b:7d:7f:3d:c4:1d:70:f4:1b:19:91:a3:73:a7:ef:
c5:7d:61:da:22:d5:a5:dd:88:3c:0c:3b:1e:8d:68:99:75:51:
79:90:c6:63:9c:55:77:ea:cf:0d:3d:92:89:c7:25:3a:c2:e9:
e0:40:fc:e1:37:aa:70:f7:6d:62:cd:8f:21:25:f5:d8:44:7a:
4b:cc:cd:0e:30:10:c0:f2:bd:ae:5a:ce:be:c0:3c:0e:55:0a:
bc:d5:65:a1:e1:73:5f:03:0c:ad:2d:42:51:c9:c9:cc:02:d4:
af:82:54:e8:3d:91:06:f1:69:9e:b2:02:6a:e3:23:1b:69:45:
9b:0b:b5:d3:b1:c8:eb:61:f2:0d:b2:41:85:60:ae:3b:45:14:
4b:f7:15:e0:49:13:2e:3c:ce:d8:43:de:fb:06:e5:e5:7f:3e:
17:07:60:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:52:43 2025 by rpki-client