Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E9974698805011F0B7C421DDDAE4EC9C.roa
File: E9974698805011F0B7C421DDDAE4EC9C.roa (raw, json)
Hash identifier: W4AsF5iOjv0bV5nG31HMdnS4oUirEgZfSznuBlDGI0k=
Subject key identifier: E0:20:21:76:F5:5A:56:20:9C:CC:21:F9:23:9E:6C:30:BE:F3:BC:20
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016F45
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E9974698805011F0B7C421DDDAE4EC9C.roa
Signing time: Sat 23 Aug 2025 18:42:26 +0000
ROA not before: Sat 23 Aug 2025 18:42:20 +0000
ROA not after: Tue 30 Sep 2025 18:42:20 +0000
asID: 9304
IP address blocks: 156.227.132.0/24 maxlen: 24
156.227.136.0/24 maxlen: 24
156.227.139.0/24 maxlen: 24
156.227.140.0/24 maxlen: 24
156.227.159.0/24 maxlen: 24
156.233.66.0/24 maxlen: 24
156.245.160.0/24 maxlen: 24
156.245.163.0/24 maxlen: 24
156.245.168.0/24 maxlen: 24
156.245.194.0/24 maxlen: 24
156.253.187.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94021 (0x16f45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 23 18:42:20 2025 GMT
Not After : Sep 30 18:42:20 2025 GMT
Subject: CN=68aa0b92-d1e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:34:8d:ae:e7:dd:8a:ab:2a:f1:a1:e9:2f:d0:
e8:02:2c:b6:bd:2c:c2:94:40:70:77:fc:d7:09:8c:
93:28:ef:b4:c9:79:8a:84:cd:e6:94:f7:67:3a:e5:
b6:91:c6:31:91:98:8b:30:7f:5e:f8:e4:45:23:f8:
43:99:70:e7:13:b4:3d:0c:91:5f:0a:ed:98:08:ca:
02:aa:b0:a8:42:01:3d:53:ad:30:d7:3e:95:d8:ba:
47:03:fd:15:9d:0a:3d:41:83:fe:01:bb:a6:5c:fc:
b6:ca:05:d8:84:8a:5c:c3:bb:fa:f7:a2:e0:40:26:
27:6b:72:cf:56:bb:78:0f:89:d7:13:28:bb:8d:4d:
cb:09:14:bd:c6:fd:70:d7:43:22:3b:1b:4a:3f:e0:
1a:69:0a:ec:46:d4:c3:03:28:1b:01:04:e3:92:9d:
88:ea:f7:7d:f9:da:2d:6c:81:37:bc:36:bd:48:61:
36:ad:50:93:0b:43:9d:59:bb:45:0e:99:ef:0a:49:
bb:f5:96:fe:68:e2:1d:b9:07:02:85:e5:5a:61:40:
e2:37:b7:6c:2d:8b:45:6a:06:dd:28:1f:9b:89:fd:
cd:f7:9f:1a:7b:3e:2b:f0:4e:3d:b6:27:3b:10:b3:
bb:8a:7d:8b:cd:cc:3d:20:d8:ac:bc:fa:d4:18:34:
7f:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:20:21:76:F5:5A:56:20:9C:CC:21:F9:23:9E:6C:30:BE:F3:BC:20
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E9974698805011F0B7C421DDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.227.132.0/24
156.227.136.0/24
156.227.139.0-156.227.140.255
156.227.159.0/24
156.233.66.0/24
156.245.160.0/24
156.245.163.0/24
156.245.168.0/24
156.245.194.0/24
156.253.187.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:e6:b9:89:b3:0e:00:63:ff:91:72:d0:46:78:f6:b8:47:4f:
36:30:6b:a9:e7:f9:bb:4d:d4:67:47:ec:ee:8b:d1:60:2b:f9:
68:ac:2a:e0:15:83:fa:84:b1:eb:0f:1b:5c:d0:24:eb:8b:9d:
5b:dc:5f:d4:87:9d:c2:14:b5:ec:cb:69:26:98:d2:aa:25:e9:
81:de:40:cb:87:82:c1:ce:22:92:af:6d:e5:a6:db:09:3f:84:
7d:3c:40:d7:04:a4:7e:78:cd:c7:63:fb:f4:61:48:6f:b0:03:
a5:33:9b:eb:75:d0:84:e4:35:89:f3:1d:be:e0:07:89:cf:06:
97:61:c2:47:5e:d9:61:2f:c4:5c:dd:42:b0:c4:89:04:2f:16:
1f:ed:c1:ea:48:08:f7:3b:48:d7:be:62:9e:56:88:7e:e6:35:
da:4a:d8:03:6b:61:bc:71:9a:a3:06:93:2e:75:54:78:62:37:
64:53:4f:37:63:51:2f:ae:39:9a:9f:5c:cc:e7:f6:ce:74:45:
70:90:4c:c0:93:42:0f:e9:9a:04:39:88:9b:55:7e:20:12:6e:
61:6f:31:f7:8b:e9:01:60:a0:6d:a4:64:93:cb:e2:34:73:f8:
89:f6:14:49:c0:35:d4:9f:f5:87:cf:8e:e4:e8:01:3e:cd:71:
43:9f:62:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 3 20:16:20 2025 by rpki-client