Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E6DB68D0A42711F098650FA8DAE4EC9C.roa
File: E6DB68D0A42711F098650FA8DAE4EC9C.roa (raw, json)
Hash identifier: scm9A6pTgM6cXDrde7HzUbUl/FAajwxGevCKXDSiMWM=
Subject key identifier: 1B:57:B5:6B:02:DB:88:1B:91:94:A7:3D:53:7C:0A:FA:40:1E:13:7F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017F5C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E6DB68D0A42711F098650FA8DAE4EC9C.roa
Signing time: Wed 08 Oct 2025 09:19:33 +0000
ROA not before: Wed 08 Oct 2025 09:19:29 +0000
ROA not after: Tue 11 Nov 2025 09:19:29 +0000
asID: 203020
IP address blocks: 156.237.64.0/23 maxlen: 24
156.237.66.0/23 maxlen: 24
156.237.68.0/23 maxlen: 24
156.237.70.0/23 maxlen: 24
156.237.72.0/23 maxlen: 24
156.237.76.0/22 maxlen: 24
156.237.80.0/22 maxlen: 24
156.237.84.0/22 maxlen: 24
156.237.88.0/22 maxlen: 24
156.237.92.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98140 (0x17f5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 8 09:19:29 2025 GMT
Not After : Nov 11 09:19:29 2025 GMT
Subject: CN=68e62ca5-527b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:e9:3d:48:3d:b8:60:c3:3d:fb:74:90:37:9e:
65:8b:f6:3a:d5:b8:af:98:16:0f:7f:8c:b5:e5:aa:
98:d2:6e:41:a4:43:5a:ff:2c:7c:77:1e:eb:d9:da:
a0:46:66:17:b1:38:79:0c:ca:48:d2:04:ec:e5:61:
4a:e9:73:ab:8e:8f:45:3f:14:27:f1:62:c8:78:d7:
e1:8c:80:58:3d:a4:35:5e:b5:08:45:2c:f7:63:01:
6c:d7:b7:c8:3e:9e:42:d0:52:0c:92:93:32:b9:99:
89:22:67:81:1d:ab:55:3d:fc:e5:eb:62:a2:03:29:
34:cf:83:ad:a9:54:16:3a:26:b7:99:ee:89:10:f5:
8d:07:c9:63:58:45:a4:d2:e3:d4:48:64:69:fa:94:
8f:53:47:ad:10:18:13:77:8f:b7:88:27:9b:d3:59:
8d:e1:9c:7c:03:8b:47:71:db:3a:bf:fb:15:8d:4f:
ca:18:da:29:6f:d8:f1:f4:56:17:2f:fc:da:fa:67:
f3:37:d9:23:78:d2:fc:3a:bc:c1:9e:b8:16:fb:06:
c8:a3:04:d9:ee:cd:60:a2:0b:a0:27:80:8c:07:8f:
fc:42:ac:0b:96:bc:91:5a:a9:a8:97:a0:82:1e:d9:
35:32:97:f7:ec:f3:18:66:a4:b3:e5:09:87:1f:aa:
ac:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:57:B5:6B:02:DB:88:1B:91:94:A7:3D:53:7C:0A:FA:40:1E:13:7F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E6DB68D0A42711F098650FA8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.237.64.0-156.237.73.255
156.237.76.0-156.237.95.255
Signature Algorithm: sha256WithRSAEncryption
94:cb:4b:0f:15:44:72:61:39:45:5d:93:91:ed:10:a1:c9:39:
a0:e5:29:c7:ad:b8:79:2a:9a:e2:7b:ce:f5:50:e6:53:87:aa:
2e:86:f5:5a:18:31:5d:b1:58:80:4a:10:20:bc:38:6f:8b:97:
78:53:67:42:59:6b:ad:c5:45:2e:33:21:c0:85:99:d1:94:95:
77:71:7a:1d:35:56:51:c5:ec:10:fe:c0:71:d4:2f:62:f5:fe:
77:b2:8c:dd:53:a2:fa:b0:da:67:90:c8:c3:2a:91:52:0a:d9:
74:82:76:fb:a3:cc:a2:50:d2:6f:17:33:c6:41:94:1f:b5:23:
79:88:95:bb:fb:79:d2:3d:06:32:5b:b1:48:6b:f0:24:4c:9b:
c2:cd:3f:e3:7c:c8:2e:7b:ef:a2:49:dc:29:79:cb:9a:ce:03:
c3:ce:79:f4:a7:5b:75:1d:12:2e:57:13:83:c5:e3:66:b3:31:
30:67:70:cb:6f:fe:eb:a6:2c:c2:ef:6d:d3:45:3c:0e:eb:83:
61:c4:9c:ad:08:f6:38:3c:e8:3e:86:fc:63:09:ef:02:f3:a8:
dd:29:4c:8a:cb:c6:1a:8d:bb:56:4d:e8:2e:f1:19:35:93:df:
74:2d:f8:8a:09:bd:58:60:0c:fb:71:44:3f:f8:7b:8f:7b:7b:
f1:04:3c:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:51:19 2025 by rpki-client