Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DF2C715E837211F0866F8EB9DAE4EC9C.roa
File: DF2C715E837211F0866F8EB9DAE4EC9C.roa (raw, json)
Hash identifier: IeQ/+S3g6v1n+Na1hWgdYNNRcLJjr4TXcmVasfmW8sk=
Subject key identifier: 30:11:07:25:31:EA:E0:D6:20:29:3D:94:1A:18:3D:F9:2C:FC:DA:DA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0171F3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DF2C715E837211F0866F8EB9DAE4EC9C.roa
Signing time: Wed 27 Aug 2025 18:23:05 +0000
ROA not before: Wed 27 Aug 2025 18:23:00 +0000
ROA not after: Sun 26 Oct 2025 18:23:00 +0000
asID: 63139
IP address blocks: 156.227.200.0/24 maxlen: 24
156.227.201.0/24 maxlen: 24
156.227.202.0/24 maxlen: 24
156.227.203.0/24 maxlen: 24
156.227.226.0/23 maxlen: 24
156.227.228.0/23 maxlen: 24
156.227.230.0/23 maxlen: 24
156.229.40.0/23 maxlen: 24
156.229.42.0/24 maxlen: 24
156.229.43.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94707 (0x171f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 27 18:23:00 2025 GMT
Not After : Oct 26 18:23:00 2025 GMT
Subject: CN=68af4d08-6740
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:3a:42:31:f6:9a:9d:ad:6e:db:31:c9:bc:3c:
c7:6f:63:0c:09:fc:8e:95:8a:80:46:80:36:bc:be:
65:ff:30:1d:84:9f:db:10:2e:17:76:01:a4:10:86:
ca:c9:a4:30:c7:1e:ae:65:36:89:87:01:3d:db:ba:
df:73:8a:29:82:7f:16:c1:59:43:12:74:2f:a9:bb:
d4:6f:23:fe:b6:1b:f9:5b:d8:26:da:c5:12:07:f0:
04:72:83:6a:e0:19:b5:a2:13:5c:7b:2e:ed:48:94:
1b:f0:19:01:94:92:36:4c:b0:d2:ed:6e:e3:da:47:
19:44:4b:04:ec:d8:e4:ce:5f:88:35:3a:93:f3:2f:
7e:f1:4e:d8:7a:95:b9:0a:65:81:02:3e:9d:55:74:
07:60:8e:49:b3:c0:d2:a9:fe:45:5a:36:00:e1:b1:
60:9c:15:1f:cb:ad:5f:f1:1e:31:5a:41:a1:87:e9:
0f:4d:4a:b7:7d:b2:6b:75:51:fc:02:96:8a:e3:00:
35:d0:c1:94:28:36:96:1c:f1:d0:57:15:02:72:a0:
76:30:67:c7:8f:85:8d:ea:13:f5:6a:67:76:d7:24:
cf:87:7d:c4:d9:1e:15:07:70:0c:f5:35:b9:58:9a:
89:5f:25:97:ed:97:75:68:0c:e4:59:98:65:0f:f3:
e4:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:11:07:25:31:EA:E0:D6:20:29:3D:94:1A:18:3D:F9:2C:FC:DA:DA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DF2C715E837211F0866F8EB9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.200.0/22
156.227.226.0-156.227.231.255
156.229.40.0/22
Signature Algorithm: sha256WithRSAEncryption
63:99:4f:20:38:0a:c9:86:66:c3:94:f8:a4:39:63:18:60:ea:
71:c0:47:90:db:6b:27:05:e3:87:4f:55:13:0f:48:ba:1b:65:
e4:4a:b9:9e:bb:89:4f:74:75:73:4e:77:2d:6b:df:8d:de:44:
40:38:2c:66:43:42:2f:d2:8f:a3:45:85:be:51:1a:fb:75:9a:
e5:92:ba:3e:de:b6:08:6c:2c:96:ab:98:e8:46:98:34:6d:e3:
ad:54:0f:5e:9b:03:89:81:0a:65:c6:e6:08:a6:9a:d3:34:25:
b2:16:fe:7f:4b:bc:1e:75:5e:91:60:e0:a7:03:e2:e4:be:1a:
fb:65:09:bf:30:c5:68:bd:5a:f6:7e:0b:14:d2:59:3b:dd:5a:
9f:82:93:0f:b3:00:10:67:18:aa:fd:64:85:7a:cb:d4:cc:22:
93:07:6e:4a:56:32:35:37:7e:cb:26:a6:53:2c:39:46:8f:42:
fb:56:a6:2c:58:f1:72:3b:9d:1b:63:49:2f:cf:a2:85:f8:91:
a5:d1:4a:82:6f:b0:75:c4:4e:89:1b:8a:c2:2a:2f:ec:d2:d4:
86:c4:26:59:cf:fb:51:33:63:33:be:b0:80:49:43:37:2d:25:
33:0b:3b:61:7f:88:8a:ca:5d:87:7e:5d:f3:13:62:72:f5:18:
2c:b7:a2:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 3 20:11:04 2025 by rpki-client