Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C5D43CD8887611F0A73952EEDAE4EC9C.roa
File: C5D43CD8887611F0A73952EEDAE4EC9C.roa (raw, json)
Hash identifier: 9hobMWr4gvSa8HDS5ZwaDrMxc5OHYiRc13CaIu34oCA=
Subject key identifier: C4:FA:E6:B4:DF:B4:CB:6B:F1:FC:67:3C:F4:61:F4:BD:CC:58:83:05
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017710
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C5D43CD8887611F0A73952EEDAE4EC9C.roa
Signing time: Wed 03 Sep 2025 03:33:36 +0000
ROA not before: Wed 03 Sep 2025 03:33:30 +0000
ROA not after: Sat 04 Oct 2025 03:33:30 +0000
asID: 136800
IP address blocks: 156.234.77.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96016 (0x17710)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 3 03:33:30 2025 GMT
Not After : Oct 4 03:33:30 2025 GMT
Subject: CN=68b7b710-1417
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:3c:34:ff:ab:1b:ae:6e:d9:1e:b2:8d:02:18:
80:3c:7f:ff:f9:d6:a9:6e:3e:4a:da:70:db:4c:59:
37:56:61:e7:b0:01:33:3d:1a:a5:ae:b0:ef:16:3b:
93:c2:26:ac:23:b2:19:bf:9a:c3:94:ac:01:cc:7a:
35:7f:8e:71:da:e5:ed:20:aa:0e:80:e4:d7:99:98:
05:b8:84:5e:27:17:70:f5:e8:ad:f0:ff:52:e0:03:
b6:27:c3:9a:47:e3:53:20:08:3b:f0:cc:04:b1:fb:
b2:d0:39:db:2f:a8:9f:84:11:f0:71:b1:0f:3d:13:
5b:ca:9a:68:26:78:b6:9a:f0:cd:eb:8f:b5:68:aa:
97:7f:4f:60:f2:5d:4a:4b:c6:9b:47:8f:eb:4a:22:
3c:6b:e2:fd:2f:6d:22:38:47:39:69:d6:d7:fe:5c:
76:09:d2:d6:2a:db:5b:62:2f:ed:6f:62:09:73:43:
9a:86:b1:70:50:4a:26:1d:a6:a8:08:d9:c5:66:6a:
a6:15:a5:86:a5:cb:e5:1a:19:f0:59:d6:10:1e:f8:
40:37:36:0a:c3:29:f7:ca:12:38:28:81:ef:39:a7:
a4:d8:45:4b:f0:7c:1e:d1:31:23:2b:8c:60:74:0e:
9d:a6:79:1e:5a:17:7f:bd:9c:4b:0f:3d:4c:6d:79:
82:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:FA:E6:B4:DF:B4:CB:6B:F1:FC:67:3C:F4:61:F4:BD:CC:58:83:05
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C5D43CD8887611F0A73952EEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.234.77.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:0c:d0:05:2a:41:7c:54:8b:73:b0:4f:62:72:03:1d:71:80:
29:7c:25:31:a6:13:13:35:ae:2a:49:bf:70:5a:ba:53:3f:74:
82:6b:22:8d:20:78:c1:b3:09:8a:85:cf:07:a9:2c:29:80:10:
e4:ba:94:8e:24:65:56:b4:e9:3a:9d:2d:01:51:7d:b3:56:d7:
95:92:49:93:29:6e:90:fe:82:38:c8:df:f7:e5:16:94:69:7d:
37:83:8d:c0:84:2f:eb:5b:7c:9d:0e:8d:4f:39:a2:10:d6:ae:
e1:5b:f6:c1:11:8b:1f:1f:10:d3:df:48:a1:ba:7e:eb:26:8f:
ce:13:4a:76:b9:49:19:51:d1:26:c3:7e:0d:85:5a:f4:a1:e0:
75:17:d9:53:61:a5:d2:5b:8e:aa:22:13:02:bd:2d:b9:9f:9f:
0b:1d:13:33:fb:83:38:c3:cd:b0:1c:d0:14:a3:41:ca:1d:88:
93:1c:ef:d5:d2:54:27:69:e5:b8:69:68:aa:a5:fb:78:bd:7c:
47:29:28:68:c1:70:cc:0f:af:60:1b:df:84:18:12:03:52:49:
e4:ee:08:04:59:06:cf:7c:3e:9f:66:d2:68:51:a3:5c:f9:7b:
f7:ee:dd:28:60:af:27:f4:a3:df:c4:57:d2:54:e9:ad:d8:0e:
57:6c:73:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 3 18:18:38 2025 by rpki-client