Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D40BAD30A81B11F0A5ED3DC3DAE4EC9C.roa
File: D40BAD30A81B11F0A5ED3DC3DAE4EC9C.roa (raw, json)
Hash identifier: +419/DrUZ/DzsidV20SzD8D3V1dbKGLAWF6LdPqwWHI=
Subject key identifier: A6:4F:DA:00:A1:93:75:A4:68:F0:4C:89:EC:58:7F:87:67:CA:A8:E5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 018055
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D40BAD30A81B11F0A5ED3DC3DAE4EC9C.roa
Signing time: Mon 13 Oct 2025 10:03:13 +0000
ROA not before: Mon 13 Oct 2025 10:03:08 +0000
ROA not after: Mon 20 Oct 2025 10:03:08 +0000
asID: 139880
IP address blocks: 156.227.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 Oct 2025 10:03:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98389 (0x18055)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 13 10:03:08 2025 GMT
Not After : Oct 20 10:03:08 2025 GMT
Subject: CN=68ecce61-43bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ab:20:44:e4:3a:57:7b:a1:27:b5:74:74:20:
92:89:8b:9f:2b:52:74:31:dd:d6:aa:32:ae:eb:b3:
18:bf:f0:ce:8b:7b:e6:a2:ce:c3:a9:82:09:ba:02:
eb:45:0d:0b:b7:eb:c3:f8:c0:24:1a:a4:6d:16:37:
94:9a:71:1b:e5:fa:46:e7:da:da:2c:e3:32:30:31:
32:a0:73:d0:03:fa:21:15:9c:2a:7b:72:06:19:a5:
24:be:b5:dc:30:45:0d:3d:23:f2:84:e2:d0:58:e4:
25:94:e3:12:0f:ee:53:19:db:01:05:3a:8a:6a:4c:
f5:20:09:96:7c:4b:bc:cd:9b:58:3d:09:b7:7a:e5:
bf:74:d7:e2:90:bc:03:c2:9f:5f:b8:87:00:69:22:
63:59:4b:e7:49:94:e2:bc:98:98:d1:7e:22:21:95:
06:3d:c7:4f:77:15:38:60:db:74:7f:92:ac:48:ae:
04:a7:d8:1e:8a:6d:6d:dc:8a:f0:91:9b:f6:8d:45:
8e:0d:e5:78:05:a4:82:54:98:23:9c:47:f6:ce:28:
20:30:aa:09:3f:c7:8a:62:2e:0f:2d:dc:42:3a:1c:
2b:f1:39:21:81:7e:d9:8b:2a:c6:b9:43:7d:64:27:
11:2c:f1:9a:bf:4f:34:1c:16:ca:6d:09:52:c7:31:
60:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:4F:DA:00:A1:93:75:A4:68:F0:4C:89:EC:58:7F:87:67:CA:A8:E5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D40BAD30A81B11F0A5ED3DC3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.64.0/18
Signature Algorithm: sha256WithRSAEncryption
97:62:c7:fe:e8:ac:0d:53:12:6e:db:f9:37:28:53:c4:e5:a7:
8a:e2:04:43:74:28:56:b1:62:91:cc:1b:c9:f9:ab:86:44:a4:
7e:10:62:a8:ab:c2:4c:2a:c1:c5:28:2a:08:47:f3:fe:10:e7:
7c:10:3d:e6:2f:c2:c0:e5:7c:58:14:c4:ba:45:2e:7e:43:18:
01:35:b5:3d:21:95:f5:e7:39:ad:7a:31:89:ea:5e:b2:ce:c8:
35:03:0a:83:9c:a0:2f:c9:8b:d1:8c:df:89:74:90:10:65:ac:
81:0c:81:e1:7e:00:36:a1:34:b1:06:a1:41:dc:f0:21:94:1c:
7d:b3:b6:13:6f:0a:a8:3b:ba:6e:82:5e:17:f1:53:90:fd:e6:
8c:a0:8c:35:bc:c3:f1:36:03:3c:79:1f:8c:63:2a:c9:c5:3d:
cf:98:03:26:6b:fb:f1:97:50:2d:cc:64:fa:ae:29:53:55:b1:
e6:dd:b3:bc:8c:2f:3e:c8:3b:82:ec:91:de:99:2f:5e:7b:93:
e9:30:63:c1:85:f2:bf:a1:7b:ca:e3:a6:74:27:83:58:22:36:
40:8d:91:60:e0:6b:dd:f5:c8:91:6a:98:53:68:99:cf:79:c7:
5c:7b:b7:46:47:f8:49:1c:d7:1e:ca:0c:c5:a5:84:cf:4c:c5:
61:74:fa:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 11:33:56 2025 by rpki-client