Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C925825CAD9711F0A297B58CDAE4EC9C.roa
File: C925825CAD9711F0A297B58CDAE4EC9C.roa (raw, json)
Hash identifier: +IZP/Q8Su03Hqtwp6Uj9Y6ESuuW+tShd7ot4u+1uo8M=
Subject key identifier: 6C:40:7C:F8:90:D8:2C:6C:05:60:26:3D:33:F8:A9:0B:BD:C6:C1:F7
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0181A1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C925825CAD9711F0A297B58CDAE4EC9C.roa
Signing time: Mon 20 Oct 2025 09:33:08 +0000
ROA not before: Mon 20 Oct 2025 09:33:03 +0000
ROA not after: Sun 30 Nov 2025 09:33:03 +0000
asID: 62468
IP address blocks: 156.245.128.0/21 maxlen: 24
156.245.128.0/24 maxlen: 24
156.245.129.0/24 maxlen: 24
156.245.130.0/24 maxlen: 24
156.245.131.0/24 maxlen: 24
156.245.132.0/24 maxlen: 24
156.245.133.0/24 maxlen: 24
156.245.134.0/24 maxlen: 24
156.245.135.0/24 maxlen: 24
156.245.188.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 24 Oct 2025 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98721 (0x181a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 20 09:33:03 2025 GMT
Not After : Nov 30 09:33:03 2025 GMT
Subject: CN=68f601d4-3cdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:4a:a2:63:62:4f:86:04:38:d6:69:06:44:7f:
f1:75:60:1b:b1:8d:e0:2f:54:35:96:d1:20:16:67:
04:b4:45:6d:07:d1:6b:c9:40:76:d1:31:55:7a:2d:
35:44:cb:5f:55:1b:69:a2:32:48:3a:fa:d6:e4:d4:
9c:e7:23:9a:9f:9c:97:e7:8e:67:46:38:fd:8a:bd:
bb:51:25:84:c3:e6:2a:68:b7:95:ea:a2:51:9f:1a:
de:c8:7e:c3:8c:57:41:ec:fe:25:61:f0:c5:ed:f5:
b2:9b:77:5f:a9:c8:14:17:4d:49:82:a9:86:78:a2:
af:0d:89:1f:f5:2e:0f:db:f7:e9:78:8f:68:9a:f5:
da:24:b3:56:6c:ee:e1:51:3a:b8:e4:d1:6a:bb:cc:
5f:a2:5b:07:59:75:24:e3:b1:22:cf:1c:e3:12:a5:
f3:2c:03:2b:74:58:7b:9c:fa:fb:2b:45:ef:66:01:
ef:b9:a5:6e:72:6b:19:1a:b0:b5:5c:5c:2f:93:8c:
89:cb:a8:c9:98:41:ec:10:fa:15:5f:05:ef:d5:44:
ab:3d:60:ff:02:4c:04:9d:68:67:1d:cb:5d:42:85:
6f:e7:5f:8f:25:5c:e4:58:2b:3d:f2:5f:d5:49:f9:
b4:19:76:f7:78:43:a2:35:84:d5:0f:2c:93:8c:3a:
0b:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:40:7C:F8:90:D8:2C:6C:05:60:26:3D:33:F8:A9:0B:BD:C6:C1:F7
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C925825CAD9711F0A297B58CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.128.0/21
156.245.188.0/23
Signature Algorithm: sha256WithRSAEncryption
70:98:57:c0:96:b2:9c:e1:42:e2:df:2a:71:75:6f:f9:69:74:
8a:ef:4b:a0:5f:5a:b4:16:92:aa:d1:6a:50:d5:f9:b4:b0:07:
9d:f9:c2:01:16:e0:35:f3:dc:c2:ba:2a:04:d4:32:51:d0:87:
e7:f4:09:8d:87:87:82:cd:df:b0:94:f5:b3:1b:9e:ac:0d:2b:
3b:1b:b4:f4:c8:a6:79:dd:a5:4f:1f:18:f0:d9:48:56:6c:13:
10:a2:23:83:08:8d:82:3f:c0:d8:5f:a6:c5:84:e1:b0:f9:b4:
9a:4f:50:cc:71:ef:30:6e:f7:02:4d:7c:60:70:d0:07:a4:d7:
dd:fa:2c:d7:72:bd:a4:70:e0:18:af:58:80:46:0b:33:07:e0:
a7:60:63:4e:4e:52:d2:11:ad:60:fe:03:f0:aa:9f:43:c0:3d:
a4:12:0a:0e:e7:59:97:ee:5d:3c:b1:85:a6:77:79:1f:84:1c:
09:73:a7:51:d1:c8:9c:e1:ef:d3:1e:2a:d1:1d:64:13:02:7c:
df:66:71:ba:a8:d0:16:ba:e4:1b:77:bd:62:83:fc:01:0d:d0:
fb:f3:f4:10:1f:d8:e6:9d:92:e4:e4:30:ab:fa:07:ee:66:02:
72:10:84:3b:9d:65:b3:5d:d2:6f:3c:a9:e0:32:06:43:6c:47:
fa:e3:15:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 22 07:57:55 2025 by rpki-client