Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F3564B7A92D911F09412DB8BDAE4EC9C.roa
File: F3564B7A92D911F09412DB8BDAE4EC9C.roa (raw, json)
Hash identifier: 8/Iwr8z2wKBVkHkVD+/z/4TtT8CFVuachWblrR+oC8w=
Subject key identifier: 44:9F:3A:C1:74:7C:E5:6D:7E:26:0B:22:D1:34:82:D0:B0:CB:D5:E3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017B78
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F3564B7A92D911F09412DB8BDAE4EC9C.roa
Signing time: Tue 16 Sep 2025 08:48:44 +0000
ROA not before: Tue 16 Sep 2025 08:48:39 +0000
ROA not after: Mon 03 Nov 2025 08:48:39 +0000
asID: 133731
IP address blocks: 156.234.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97144 (0x17b78)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 16 08:48:39 2025 GMT
Not After : Nov 3 08:48:39 2025 GMT
Subject: CN=68c9246c-c53f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:d4:5e:f6:6c:14:06:22:35:47:12:5e:d9:ee:
5e:27:33:76:ef:56:42:d1:a6:2d:18:e8:1b:3b:51:
5e:59:28:0a:41:a6:47:5b:3f:bc:fe:9b:ab:25:1d:
3a:8a:92:eb:d1:fc:5e:7c:f3:3d:2f:28:17:81:7a:
3a:f1:8b:c8:2f:99:62:cc:04:b7:ba:80:48:4b:e2:
53:f5:6c:a8:c1:04:22:0f:34:a4:2b:4c:c7:2b:8d:
e6:0a:dd:78:f2:3a:6a:72:20:b0:db:cc:62:23:80:
de:8b:0a:5b:98:fd:66:10:8f:ec:66:a0:94:42:15:
05:26:60:26:c0:e4:ac:b5:fd:af:d0:9a:d8:a6:23:
1c:54:49:a1:7f:ec:55:3f:99:f4:8d:91:ce:28:70:
fa:e9:74:39:5a:11:48:12:bd:15:d8:78:11:c9:71:
bb:40:27:88:91:01:c3:6d:2c:50:2b:fb:91:82:54:
6c:58:8a:3b:02:55:bb:5b:ff:66:50:62:42:4f:c5:
4c:b2:09:5e:01:15:0b:77:f1:4c:9c:51:be:5e:a4:
20:8a:87:0b:13:7d:1b:ca:f2:e3:91:f7:16:94:88:
57:28:c0:ea:9b:6e:2d:0f:e9:67:22:b0:eb:25:26:
4e:48:c6:9d:6c:52:5f:59:7c:c0:2f:b4:0d:e5:5a:
c9:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:9F:3A:C1:74:7C:E5:6D:7E:26:0B:22:D1:34:82:D0:B0:CB:D5:E3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F3564B7A92D911F09412DB8BDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.234.0.0/24
Signature Algorithm: sha256WithRSAEncryption
37:af:fc:92:82:1a:cc:f4:2c:8b:87:9c:74:5b:4c:61:e4:48:
5d:2a:25:4b:68:f1:7c:7f:b3:40:76:87:bb:06:63:26:66:3e:
65:88:5d:5a:78:9d:48:56:d0:14:00:c9:61:09:45:a9:95:f1:
5d:54:35:e2:f6:b5:37:f2:ad:8e:98:4b:ff:a0:ba:6a:15:45:
01:dd:eb:c2:5b:a8:8d:60:97:d0:b9:8b:95:f1:86:13:14:4b:
b5:f0:77:a9:48:20:be:05:e8:f1:7d:59:cf:98:80:f7:01:65:
44:56:38:10:be:ef:0c:ea:28:93:2d:1d:03:9f:6c:5e:e7:3f:
e5:0c:df:7c:8d:1d:bf:0a:0b:f6:b5:19:0c:f5:42:93:28:54:
56:d7:42:b6:7c:b2:88:d9:f6:39:ce:e6:8f:1f:b6:74:2c:66:
e4:ff:c5:83:24:03:0c:94:50:f3:a1:db:f8:bf:2b:7d:d2:6b:
85:d5:15:aa:66:41:09:09:17:25:dc:98:5d:06:d2:21:69:bd:
02:25:ef:fb:7e:31:53:d1:15:f3:cd:9a:b1:b8:71:c6:f4:28:
4c:ce:d8:81:96:fd:96:13:fd:13:0e:05:8e:9f:91:b0:48:4d:
17:0b:6b:4d:a2:06:49:38:eb:ae:bb:01:37:7a:d3:d2:b5:84:
22:d1:56:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:51:03 2025 by rpki-client