Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C0DF1272873411F08B98C6CBDAE4EC9C.roa
File: C0DF1272873411F08B98C6CBDAE4EC9C.roa (raw, json)
Hash identifier: b824EE9ovaeuE4zx/IxuLYqsrakQYciDajWhial+cTM=
Subject key identifier: E2:BC:CD:6B:F5:7E:57:F7:30:84:40:66:55:7F:E1:70:60:85:20:CE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017581
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C0DF1272873411F08B98C6CBDAE4EC9C.roa
Signing time: Mon 01 Sep 2025 13:08:30 +0000
ROA not before: Mon 01 Sep 2025 13:08:24 +0000
ROA not after: Sun 07 Sep 2025 13:08:24 +0000
asID: 398704
IP address blocks: 156.245.192.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95617 (0x17581)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 1 13:08:24 2025 GMT
Not After : Sep 7 13:08:24 2025 GMT
Subject: CN=68b59ace-b369
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:33:c7:c4:9b:dd:22:ca:74:1c:ce:15:d0:4b:
4e:c1:8e:c7:d6:e9:b8:5a:ef:62:3a:93:76:6c:17:
ad:63:1b:9a:a8:b8:15:ed:fa:0b:20:60:b6:e9:89:
aa:15:6b:c5:e4:d6:da:83:fc:df:f5:54:7d:62:67:
59:87:c5:58:e9:fc:30:6d:97:48:b7:bb:31:06:00:
10:46:0b:df:ed:2c:71:12:ba:85:f9:11:2f:06:39:
7e:4c:bc:8b:af:f6:b8:bd:63:a1:ef:df:70:17:ec:
22:04:d6:a3:89:d2:3d:f5:c1:74:9a:92:83:4b:60:
cd:0f:59:a0:9b:37:01:76:fb:4f:58:bf:b5:ce:dd:
63:08:63:0f:95:0b:4f:56:88:88:ec:e7:91:93:49:
07:ed:a7:7a:21:5d:06:b8:93:b7:19:72:0f:5a:48:
a5:06:ce:fc:f4:9c:b9:df:06:fc:21:32:3d:ad:90:
cf:e0:89:74:f6:bd:87:14:fd:ae:d6:99:33:b2:41:
42:57:da:31:ca:19:a1:d3:a7:38:2a:8e:27:48:e3:
40:ec:52:46:be:ba:e2:d4:a9:e6:cb:9d:05:64:ac:
88:93:97:9d:76:65:db:51:ef:73:d4:34:25:b8:3f:
28:14:f2:8c:7a:f0:90:69:9b:30:2d:bb:e9:93:57:
a2:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:BC:CD:6B:F5:7E:57:F7:30:84:40:66:55:7F:E1:70:60:85:20:CE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C0DF1272873411F08B98C6CBDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.192.0/23
Signature Algorithm: sha256WithRSAEncryption
64:64:59:5b:69:ac:d7:d7:7d:be:e9:9c:eb:49:03:d1:bb:60:
7f:40:a7:eb:3c:ee:f2:69:80:f7:fd:d7:32:4a:5c:10:0a:86:
29:47:f8:c8:41:7c:f3:e5:43:d1:0e:15:c8:f0:77:b6:1b:6f:
b3:eb:4a:99:74:1b:28:a6:23:f6:25:1d:3b:ee:bd:d7:31:c5:
c9:4d:d3:5e:b5:a1:5f:3c:df:71:ad:dd:96:05:b5:fc:d2:5f:
f5:39:35:53:e4:cb:63:1d:2e:b6:5b:e8:9f:41:a3:f3:7d:11:
16:91:35:18:a9:6c:9b:33:f4:2b:74:3d:16:b7:76:76:c7:1e:
9f:c9:4f:5f:1f:8f:9c:26:b2:59:d0:6b:6a:6c:a0:92:eb:7e:
64:d7:6e:86:6f:a0:67:6d:86:c3:27:a7:e2:f0:02:e3:33:6e:
03:6f:34:ec:69:c1:35:dc:16:60:f9:03:02:b3:51:d7:80:75:
4e:f7:9f:15:70:bf:7a:9a:4e:11:6e:07:86:87:a8:24:06:71:
91:e1:99:9e:1e:23:ea:b2:24:16:73:7e:e9:80:d3:94:bd:87:
a9:07:3a:65:fb:8d:23:66:4c:84:33:ad:57:9e:ee:08:ca:1e:
69:96:47:be:b4:87:57:ca:5a:ee:29:e8:db:92:21:e4:88:49:
e2:56:48:f5
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAXWBMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwOTAxMTMwODI0WhcNMjUwOTA3MTMwODI0WjAYMRYw
FAYDVQQDEw02OGI1OWFjZS1iMzY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEArzPHxJvdIsp0HM4V0EtOwY7H1um4Wu9iOpN2bBetYxuaqLgV7foLIGC2
6YmqFWvF5Nbag/zf9VR9YmdZh8VY6fwwbZdIt7sxBgAQRgvf7SxxErqF+REvBjl+
TLyLr/a4vWOh799wF+wiBNajidI99cF0mpKDS2DND1mgmzcBdvtPWL+1zt1jCGMP
lQtPVoiI7OeRk0kH7ad6IV0GuJO3GXIPWkilBs789Jy53wb8ITI9rZDP4Il09r2H
FP2u1pkzskFCV9oxyhmh06c4Ko4nSONA7FJGvrri1Knmy50FZKyIk5eddmXbUe9z
1DQluD8oFPKMevCQaZswLbvpk1eiMwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFOK8
zWv1flf3MIRAZlV/4XBghSDOMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9DMERGMTI3Mjg3MzQxMUYwOEI5OEM2Q0JEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBnPXAMA0GCSqGSIb3DQEBCwUA
A4IBAQBkZFlbaazX132+6ZzrSQPRu2B/QKfrPO7yaYD3/dcySlwQCoYpR/jIQXzz
5UPRDhXI8He2G2+z60qZdBsopiP2JR077r3XMcXJTdNetaFfPN9xrd2WBbX80l/1
OTVT5MtjHS62W+ifQaPzfREWkTUYqWybM/QrdD0Wt3Z2xx6fyU9fH4+cJrJZ0Gtq
bKCS635k126Gb6BnbYbDJ6fi8ALjM24DbzTsacE13BZg+QMCs1HXgHVO958VcL96
mk4RbgeGh6gkBnGR4ZmeHiPqsiQWc37pgNOUvYepBzpl+40jZkyEM61Xnu4Iyh5p
lke+tIdXylruKejbkiHkiEniVkj1
-----END CERTIFICATE-----
Generated at Wed Sep 3 20:11:02 2025 by rpki-client