Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D3F87C54A4F811F0A04614F1DAE4EC9C.roa
File: D3F87C54A4F811F0A04614F1DAE4EC9C.roa (raw, json)
Hash identifier: rcrQyOl/QgJOuAwgZUaWmdYN5KJnE79DG23zVA3gi9A=
Subject key identifier: 63:81:34:6B:89:FE:E4:C3:9B:EC:F2:DC:A4:38:FC:9C:24:9F:6E:CC
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017FBB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D3F87C54A4F811F0A04614F1DAE4EC9C.roa
Signing time: Thu 09 Oct 2025 10:15:07 +0000
ROA not before: Thu 09 Oct 2025 10:15:02 +0000
ROA not after: Sun 16 Nov 2025 10:15:02 +0000
asID: 22773
IP address blocks: 156.229.4.0/24 maxlen: 24
156.229.5.0/24 maxlen: 24
156.229.6.0/24 maxlen: 24
156.229.7.0/24 maxlen: 24
156.233.208.0/24 maxlen: 24
156.233.209.0/24 maxlen: 24
156.233.210.0/24 maxlen: 24
156.233.211.0/24 maxlen: 24
156.233.212.0/24 maxlen: 24
156.233.213.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98235 (0x17fbb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 9 10:15:02 2025 GMT
Not After : Nov 16 10:15:02 2025 GMT
Subject: CN=68e78b2b-6b12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:30:5c:b2:e3:60:8d:7c:27:c1:40:66:28:be:
87:88:8c:5c:a0:70:ce:e6:fc:64:b6:3b:30:19:70:
14:3c:5c:e1:62:e2:00:cc:d4:28:44:de:44:50:18:
39:86:0a:f2:8a:13:ff:8d:00:e6:89:60:36:5f:85:
21:db:63:92:c8:6b:27:0c:79:0e:1a:f7:d9:e7:ad:
f8:9f:73:04:d2:00:84:4b:db:6b:aa:a1:88:e3:a3:
db:19:c2:6b:ba:a9:de:6c:89:1c:8c:34:4e:bc:e8:
20:ea:e5:50:92:25:d7:e6:af:f9:c8:23:2a:89:4f:
1e:c7:82:77:71:11:b9:93:e0:a9:bd:cc:6a:d1:f4:
b8:81:d3:89:5a:18:9c:24:7d:4f:6f:e6:7a:49:78:
77:8f:bf:97:58:4b:83:2a:41:d8:8f:2c:4d:a9:43:
86:74:6c:4f:46:eb:ad:c7:13:7d:d4:be:f7:c0:f0:
a1:50:76:dd:ac:7a:5f:cb:78:cf:a3:66:d0:5c:38:
06:96:d5:45:4f:36:cf:be:d9:e5:83:90:6f:46:9e:
c9:8a:d1:f0:20:d8:49:6d:ec:a4:72:80:43:68:f0:
4b:33:8b:04:01:88:ff:1d:9a:e7:74:68:ff:f4:7d:
69:fa:67:12:5f:bf:60:5c:72:09:fb:4f:7c:28:ef:
69:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:81:34:6B:89:FE:E4:C3:9B:EC:F2:DC:A4:38:FC:9C:24:9F:6E:CC
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D3F87C54A4F811F0A04614F1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.229.4.0/22
156.233.208.0-156.233.213.255
Signature Algorithm: sha256WithRSAEncryption
2f:f1:f9:05:4e:2b:7b:ac:92:5c:d6:c9:43:cb:42:4e:5f:5e:
1b:6c:48:41:57:3f:95:bf:d4:ca:01:d2:49:07:ac:06:ea:83:
d1:d6:48:b7:b5:d9:66:3c:33:b7:1f:f8:19:a8:41:8c:c4:4a:
00:db:9c:8f:07:0f:f0:85:ce:40:62:a4:83:83:46:ad:3f:35:
8e:f5:1b:de:46:70:77:c4:b6:7c:b3:9e:0d:7b:4b:ba:7a:d0:
32:18:c9:5d:fa:6f:4c:ef:d3:d4:83:48:dd:c3:6e:8b:85:2e:
4f:65:b8:5d:b1:3e:76:39:f8:83:ed:c3:ff:2e:1b:4c:d3:05:
68:48:55:11:17:ed:7c:de:08:03:f8:3b:f6:c3:0f:cb:4e:99:
ce:f3:55:6c:07:28:7e:56:f8:28:b2:13:d3:e3:cc:e2:40:0b:
07:74:7b:91:05:d6:30:f4:d6:42:ad:07:6c:53:1b:6e:42:a7:
e4:62:d8:4f:0c:a7:51:94:ba:a0:cf:a9:7e:ab:5a:d9:99:c0:
d8:65:df:a4:78:b8:d7:71:5b:b9:90:bb:03:92:4c:2e:f7:96:
94:4a:7e:d5:34:56:13:d5:da:da:0e:1a:f4:3a:f3:a1:e1:14:
89:ac:ba:9d:63:07:b2:55:c5:46:4e:79:9f:73:88:7a:49:7f:
d6:1f:2f:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:52:48 2025 by rpki-client