Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EBCBC920A76A11F0893AA4CADAE4EC9C.roa
File: EBCBC920A76A11F0893AA4CADAE4EC9C.roa (raw, json)
Hash identifier: oHZhfYTz56/xzyiR72OyCD1/20ZkcI/hKJD3S49poiU=
Subject key identifier: 12:30:D5:D6:C2:62:B5:DB:4B:55:8A:3F:35:50:1A:6B:53:2E:17:19
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01802E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EBCBC920A76A11F0893AA4CADAE4EC9C.roa
Signing time: Sun 12 Oct 2025 12:56:52 +0000
ROA not before: Sun 12 Oct 2025 12:56:47 +0000
ROA not after: Thu 27 Nov 2025 12:56:47 +0000
asID: 136800
IP address blocks: 156.234.77.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98350 (0x1802e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 12 12:56:47 2025 GMT
Not After : Nov 27 12:56:47 2025 GMT
Subject: CN=68eba593-dac5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e7:ec:d2:b9:a2:a7:84:65:1e:c7:40:46:39:
a0:af:b7:89:3f:a4:22:07:af:81:c4:d8:48:86:f8:
db:70:1a:d4:af:41:ff:8a:7b:8d:21:8f:4b:8a:57:
b9:5a:a9:35:ff:4b:10:fc:3d:27:c9:98:14:3f:f3:
72:14:ec:fc:72:2e:ee:8b:2b:29:16:a4:93:df:cd:
e7:58:05:01:1c:8c:00:b3:3e:c9:bd:ea:83:75:86:
86:9f:53:5e:54:fc:0b:af:f4:0c:f2:53:22:83:99:
2a:59:b5:15:40:88:91:2c:c8:d6:bc:59:b2:16:88:
67:e2:6c:30:b8:2c:be:fa:b4:a2:50:f9:54:9a:01:
62:8c:c9:af:d1:79:ee:ca:1a:36:d6:22:b5:57:de:
0c:a6:94:db:90:c7:a3:7b:1e:dd:b3:dc:90:12:eb:
2f:7b:6e:97:1e:45:1f:1a:45:d2:a3:9a:bb:b3:63:
75:b0:01:d3:cc:de:5d:ca:29:bd:3c:88:a9:1d:9c:
8c:3e:82:f2:e0:62:b8:22:f0:1e:a3:c8:d8:7d:76:
99:3f:cf:af:fb:2b:c8:c0:5a:f0:f5:16:41:8b:4d:
29:70:eb:3a:b7:42:a9:71:b1:b7:42:3f:fe:83:a3:
b5:d6:a3:61:2b:6b:e2:6e:a9:37:9f:d1:62:d9:6b:
1b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:30:D5:D6:C2:62:B5:DB:4B:55:8A:3F:35:50:1A:6B:53:2E:17:19
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EBCBC920A76A11F0893AA4CADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.234.77.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:b4:30:a8:f6:cd:91:f2:9d:07:c2:2b:f5:58:9d:79:84:e0:
ff:c3:db:ce:e0:06:a8:11:46:b1:4b:a4:61:04:f8:b0:35:1d:
b0:77:f7:99:9f:c7:86:54:10:4e:e3:44:e2:cd:14:26:95:e9:
17:6c:d4:7e:a0:20:92:d6:6a:22:4f:36:4b:64:23:9f:01:b7:
d2:5a:26:1d:58:79:9f:f9:bc:e4:d0:94:f6:af:b6:6a:c9:cc:
99:a8:34:6c:6e:ce:e5:76:4f:80:28:68:35:99:50:75:12:f2:
df:50:f3:f7:1e:60:a4:25:b2:81:e2:9a:8d:f6:04:b5:b1:6d:
e2:91:38:77:1e:bc:ea:20:5d:80:3e:b4:6d:8a:4d:ce:ca:f2:
bc:d2:2b:00:ab:e4:06:12:a9:f7:ac:47:1d:bc:04:d3:17:b3:
d7:87:ab:d3:ad:a7:ac:df:a1:a4:e3:a9:4d:2d:53:bf:50:84:
13:45:9e:10:66:c1:ff:df:b5:ff:4b:72:f5:68:aa:4b:0f:92:
5a:d0:94:9b:30:37:02:f4:2b:23:e9:46:d5:d2:a3:f5:70:1e:
0b:11:72:dc:12:ac:ee:ea:36:66:1d:fc:c4:1d:7b:8a:6e:f7:
13:36:69:b5:1b:53:5b:c1:8f:f6:d0:12:59:af:59:fa:63:00:
09:c9:92:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:50:55 2025 by rpki-client