Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B6A718B2AB5711F0B5FAF8F3DAE4EC9C.roa
File: B6A718B2AB5711F0B5FAF8F3DAE4EC9C.roa (raw, json)
Hash identifier: ZGEOA7mjdCeLPLO8EILmF/8pvY51b1Z9AuPzKcuMBOE=
Subject key identifier: F9:BF:2D:6B:27:13:9A:8B:0C:CF:3D:29:CB:F0:54:81:D9:CF:53:21
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01816B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B6A718B2AB5711F0B5FAF8F3DAE4EC9C.roa
Signing time: Fri 17 Oct 2025 12:49:27 +0000
ROA not before: Fri 17 Oct 2025 12:49:17 +0000
ROA not after: Sat 24 Oct 2026 12:49:17 +0000
asID: 135386
IP address blocks: 156.249.17.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98667 (0x1816b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 17 12:49:17 2025 GMT
Not After : Oct 24 12:49:17 2026 GMT
Subject: CN=68f23b57-39ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b1:d9:04:ba:44:19:f7:99:df:6f:41:b7:6e:
2f:f2:2c:e8:90:f2:88:c8:25:8a:ab:0c:5e:ad:f0:
c0:fb:a8:11:ba:42:5c:ae:e8:df:1c:b3:2a:35:5c:
e1:bf:0f:3d:64:05:1c:10:33:a5:b9:19:a2:ab:34:
a9:34:c5:73:03:9e:0d:ac:b3:cd:6e:38:ad:e0:35:
41:6b:04:d9:d3:ec:26:19:74:81:40:2e:78:28:fb:
3c:d8:38:5c:94:3d:82:14:37:e4:ee:7f:18:53:3e:
1f:09:c8:96:82:0e:11:26:5d:55:5a:2f:98:cc:17:
b6:64:15:15:ea:68:48:ee:ba:69:4d:b0:c5:3b:88:
e5:e5:f7:80:98:89:f1:1d:7a:80:ef:10:a2:65:5a:
1a:0b:db:dc:2b:ef:1e:c9:dc:0d:b2:9e:cf:20:73:
98:95:35:0d:75:b3:61:95:19:5e:78:cc:66:ba:10:
83:5c:f0:8e:45:b2:ef:d0:cc:b7:ad:e2:74:3a:0b:
25:46:b6:3f:ef:32:19:35:6c:d2:5c:bc:86:af:e6:
2d:bc:5d:75:ce:d5:65:9b:4d:03:23:7f:27:96:d1:
47:5f:10:65:54:8e:15:07:29:bf:48:dd:7b:d4:9e:
64:69:44:8f:8c:07:76:d1:2a:81:44:2f:26:72:d2:
f0:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:BF:2D:6B:27:13:9A:8B:0C:CF:3D:29:CB:F0:54:81:D9:CF:53:21
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B6A718B2AB5711F0B5FAF8F3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.249.17.0/24
Signature Algorithm: sha256WithRSAEncryption
10:dd:c8:1b:26:53:f0:97:fc:a0:19:33:80:5e:e7:5f:a6:29:
0e:a1:7a:18:99:db:ce:e2:d9:6c:d2:99:e7:b3:65:14:f3:67:
08:bf:d5:f1:8e:02:0e:4b:33:64:43:1d:b8:2c:88:19:f5:a9:
a0:5d:c2:ba:77:35:59:9c:e8:7b:11:e5:e7:b3:de:f6:d7:d3:
be:f3:e8:45:97:9b:69:45:d8:d8:1d:10:d1:ed:e3:1f:5e:d5:
82:c4:0c:15:f8:f2:24:de:a6:6c:8d:55:cd:40:2a:03:cb:a6:
68:e2:13:a4:31:3a:af:0a:18:cd:fd:94:2e:a0:cb:34:1e:28:
35:82:a8:60:cf:97:8d:87:b5:4f:42:6d:08:c4:04:0c:0f:59:
b4:ae:12:89:8c:b3:f5:7d:ec:6e:c9:8c:f0:0c:95:0a:44:5a:
8c:82:0b:1e:25:9e:cd:3a:65:c4:68:30:6f:f6:e7:65:2d:9a:
64:c2:2e:95:da:46:d6:d0:e1:48:45:53:5c:88:3f:9e:60:65:
d7:a3:d1:98:66:e3:53:ae:16:60:e7:6b:ee:a7:96:7d:fe:3b:
b7:b0:39:7b:9c:6c:ea:10:bf:a8:68:a2:2a:90:b5:f0:e4:54:
f2:15:75:fd:8d:96:06:be:65:d4:c8:d3:9d:6b:39:75:01:a9:
4a:15:2f:d2
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAYFrMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUxMDE3MTI0OTE3WhcNMjYxMDI0MTI0OTE3WjAYMRYw
FAYDVQQDEw02OGYyM2I1Ny0zOWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAzLHZBLpEGfeZ329Bt24v8izokPKIyCWKqwxerfDA+6gRukJcrujfHLMq
NVzhvw89ZAUcEDOluRmiqzSpNMVzA54NrLPNbjit4DVBawTZ0+wmGXSBQC54KPs8
2DhclD2CFDfk7n8YUz4fCciWgg4RJl1VWi+YzBe2ZBUV6mhI7rppTbDFO4jl5feA
mInxHXqA7xCiZVoaC9vcK+8eydwNsp7PIHOYlTUNdbNhlRleeMxmuhCDXPCORbLv
0My3reJ0OgslRrY/7zIZNWzSXLyGr+YtvF11ztVlm00DI38nltFHXxBlVI4VBym/
SN171J5kaUSPjAd20SqBRC8mctLwyQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFPm/
LWsnE5qLDM89KcvwVIHZz1MhMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9CNkE3MThCMkFCNTcxMUYwQjVGQUY4RjNEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnPkRMA0GCSqGSIb3DQEBCwUA
A4IBAQAQ3cgbJlPwl/ygGTOAXudfpikOoXoYmdvO4tls0pnns2UU82cIv9XxjgIO
SzNkQx24LIgZ9amgXcK6dzVZnOh7EeXns97219O+8+hFl5tpRdjYHRDR7eMfXtWC
xAwV+PIk3qZsjVXNQCoDy6Zo4hOkMTqvChjN/ZQuoMs0Hig1gqhgz5eNh7VPQm0I
xAQMD1m0rhKJjLP1fexuyYzwDJUKRFqMggseJZ7NOmXEaDBv9udlLZpkwi6V2kbW
0OFIRVNciD+eYGXXo9GYZuNTrhZg52vup5Z9/ju3sDl7nGzqEL+oaKIqkLXw5FTy
FXX9jZYGvmXUyNOdazl1AalKFS/S
-----END CERTIFICATE-----
Generated at Sun Oct 19 08:51:17 2025 by rpki-client