Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CDC7F1C4803211F0BA83F39CDAE4EC9C.roa
File: CDC7F1C4803211F0BA83F39CDAE4EC9C.roa (raw, json)
Hash identifier: 9WYLKCxYg2lQsnXUVEVENNzCk7bMqnZmD33uvt5kef4=
Subject key identifier: 78:03:A5:D4:EA:74:84:C5:8D:7F:F2:06:76:B5:AF:6E:F6:51:74:D9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016F2B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CDC7F1C4803211F0BA83F39CDAE4EC9C.roa
Signing time: Sat 23 Aug 2025 15:06:54 +0000
ROA not before: Sat 23 Aug 2025 15:06:43 +0000
ROA not after: Sun 05 Oct 2025 15:06:43 +0000
asID: 401696
IP address blocks: 156.238.224.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93995 (0x16f2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 23 15:06:43 2025 GMT
Not After : Oct 5 15:06:43 2025 GMT
Subject: CN=68a9d90e-45bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ca:5e:ae:e8:a4:a7:a0:0b:c9:11:4c:34:22:
41:4e:d6:e9:62:e0:d2:71:72:5c:e9:d9:e1:21:0e:
3b:1b:02:0f:5b:4e:9d:73:25:e6:38:eb:f4:3a:a8:
05:62:b6:66:04:7c:5c:5e:f3:46:45:e2:c9:cf:90:
b6:f2:f3:2f:0d:5c:58:bb:d4:13:cf:31:6d:39:09:
d4:f9:00:e6:9a:88:3b:68:dd:10:7b:35:99:91:66:
eb:2b:25:aa:34:15:db:9e:6e:b1:ec:a2:62:36:4e:
e4:54:a8:45:0f:2d:1c:2b:aa:9b:98:f7:8f:dc:0e:
40:45:3c:76:da:67:94:1e:c9:1d:f2:69:3b:3d:83:
17:93:2b:d3:b4:c0:05:b4:a6:fc:18:85:a9:39:d5:
f9:e8:94:ea:2b:e6:05:c5:b7:24:4c:08:6a:48:4b:
21:78:b8:a5:1f:e8:03:75:ce:9e:c2:32:7f:0e:58:
1b:3d:c6:56:54:24:66:94:cf:70:85:37:6b:a6:ca:
10:85:4b:a3:a4:b9:a6:dd:20:60:9c:32:a7:da:09:
b3:a0:cb:c0:be:ed:40:d8:11:3f:e9:7d:e0:7d:48:
06:64:8c:b9:82:5b:ca:c6:02:44:b5:95:a8:57:e1:
69:0b:40:09:e9:1d:07:ad:5f:b2:78:0e:c0:2b:75:
ef:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:03:A5:D4:EA:74:84:C5:8D:7F:F2:06:76:B5:AF:6E:F6:51:74:D9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CDC7F1C4803211F0BA83F39CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.224.0/19
Signature Algorithm: sha256WithRSAEncryption
16:bc:9e:e2:84:90:e8:6a:bb:9e:50:5e:42:59:bb:d7:ee:43:
0e:3e:8e:98:34:f1:00:8a:d2:5f:da:b4:c0:92:af:65:6f:22:
82:43:47:ee:92:a7:1e:d6:ea:53:fc:b6:21:97:b7:e2:88:5f:
b2:fd:40:52:4f:67:ea:4a:9f:34:3f:35:6a:55:36:3d:da:29:
4c:6e:be:c4:60:49:6d:c8:5f:c8:f5:01:c2:1f:71:5e:73:79:
4c:5d:40:cd:09:6e:ab:ec:b3:fd:86:92:3a:fd:21:0a:fc:e2:
91:c4:6f:8e:03:35:be:90:ea:cb:fe:9f:3e:c3:84:18:a6:63:
f9:31:46:49:d7:50:9b:77:f5:b8:be:f9:39:f8:dc:d1:32:26:
d0:07:e8:d6:cf:1e:f7:ee:67:fe:ca:99:3e:d6:72:a1:f9:26:
b2:f9:fd:10:16:7c:e9:e8:58:54:39:88:f5:84:72:c8:4c:4c:
51:42:a4:48:7c:81:b4:d3:e1:90:0c:4a:05:2f:c5:13:19:be:
b8:4d:eb:d6:f7:45:d0:4d:86:24:38:ea:12:d3:c9:04:93:5a:
ce:bd:99:19:50:26:bf:c3:3b:5a:db:c7:58:9e:67:56:f0:c0:
bb:90:d3:10:de:19:ab:67:59:51:9b:fd:a0:b8:73:da:ae:d2:
0f:fe:c2:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 3 18:22:03 2025 by rpki-client