Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F6860D2C995E11F09F7500B6DAE4EC9C.roa
File: F6860D2C995E11F09F7500B6DAE4EC9C.roa (raw, json)
Hash identifier: VXIXqiuvGkhzrgeExPjBu9c5QFL1jxTShttWdWqvRUg=
Subject key identifier: 62:FB:F6:BD:B0:B3:35:5B:A5:99:2D:16:15:8B:9F:9B:8E:C1:21:13
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017CEB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F6860D2C995E11F09F7500B6DAE4EC9C.roa
Signing time: Wed 24 Sep 2025 15:55:59 +0000
ROA not before: Wed 24 Sep 2025 15:55:54 +0000
ROA not after: Wed 29 Oct 2025 15:55:54 +0000
asID: 214143
IP address blocks: 156.230.136.0/21 maxlen: 24
156.231.13.0/24 maxlen: 24
156.231.176.0/21 maxlen: 24
156.249.192.0/23 maxlen: 24
156.249.198.0/23 maxlen: 24
156.249.210.0/23 maxlen: 24
156.252.27.0/24 maxlen: 24
156.252.28.0/24 maxlen: 24
156.254.112.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97515 (0x17ceb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 24 15:55:54 2025 GMT
Not After : Oct 29 15:55:54 2025 GMT
Subject: CN=68d4148f-7789
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:1f:4c:78:7a:3d:5a:ca:fb:34:62:cc:7a:f9:
b5:d0:2c:9a:6c:4a:06:a6:4e:f7:85:18:5e:f2:9a:
e6:c7:b2:b3:c8:e3:d8:a9:fe:7b:a5:a5:3c:67:4a:
4f:69:c6:e1:d8:5d:86:61:12:71:ac:c8:73:36:ee:
f6:12:5c:55:07:1b:15:58:df:6b:fe:07:65:22:45:
1c:b3:c4:17:22:ac:79:a7:5f:74:81:be:87:c2:a3:
ca:97:1b:8a:c1:31:49:5a:cc:3a:87:04:3f:8c:8b:
14:dd:b8:70:04:f0:01:64:1d:04:1f:52:b1:b9:2d:
27:8c:78:e3:fa:23:0c:e9:07:f8:42:35:f3:c2:e9:
df:25:66:19:0f:25:ac:cd:76:87:26:51:8c:8f:c3:
1b:96:e8:0a:c4:08:14:7b:42:4e:c3:4d:bc:27:ab:
18:a2:9a:7d:b4:eb:d4:81:62:90:81:b4:68:5b:8e:
0b:1f:88:96:9b:bc:85:a2:9a:f6:e0:4f:ab:76:a6:
2c:71:47:01:de:54:0e:4e:b0:8e:8c:ec:93:0b:be:
c5:37:d1:fb:83:7d:f5:58:48:9d:08:8d:ae:13:e0:
d2:10:b8:4c:dc:11:18:b8:c9:49:1a:c7:99:3d:bd:
60:76:95:a9:96:a9:d6:7f:a3:c0:2d:e8:d1:d9:48:
0a:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:FB:F6:BD:B0:B3:35:5B:A5:99:2D:16:15:8B:9F:9B:8E:C1:21:13
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F6860D2C995E11F09F7500B6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.230.136.0/21
156.231.13.0/24
156.231.176.0/21
156.249.192.0/23
156.249.198.0/23
156.249.210.0/23
156.252.27.0-156.252.28.255
156.254.112.0/23
Signature Algorithm: sha256WithRSAEncryption
00:84:9c:4d:23:7f:28:f4:b2:9f:40:a9:ca:c2:92:8e:0d:52:
7e:3c:26:1c:2a:c1:0b:34:48:03:84:82:67:fe:20:a3:b8:f4:
bb:dc:24:ec:7b:ff:5c:ba:76:a8:b6:a1:7c:0a:23:b4:d5:10:
d5:c0:0c:b8:a2:d5:ac:0d:dd:c3:29:29:d0:e9:7c:e0:ab:a8:
44:9b:01:bb:da:ab:6b:04:48:b4:55:b8:d5:e6:be:9a:49:19:
78:37:b4:8e:d4:ef:e2:ad:74:93:5e:7d:ba:35:11:ae:6e:21:
d4:c4:db:18:28:98:2a:d3:c7:21:40:2c:6d:0d:75:c5:ac:4d:
60:b2:54:4f:5a:ab:91:fc:22:10:c1:5d:b9:b6:e6:1e:3d:ce:
d3:3a:66:e4:5e:0b:04:a4:2e:af:53:6b:ca:ea:a2:1c:ff:6e:
e6:f0:cf:64:7c:7e:5f:0b:67:dd:bf:90:80:f8:ce:a2:84:91:
b4:4f:02:e2:cc:90:fc:1a:00:b2:f2:70:ed:61:e9:db:3d:8c:
04:0b:64:d3:e0:bd:8e:e1:26:a1:02:65:e7:6a:1b:86:09:18:
8f:be:6c:ef:f4:35:b3:61:cd:8e:a4:d5:32:f4:59:f5:93:e3:
43:9b:3f:15:eb:00:f2:49:d3:28:96:c6:3c:4e:f1:f0:b0:91:
97:97:ed:d1
-----BEGIN CERTIFICATE-----
MIIFszCCBJugAwIBAgIDAXzrMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwOTI0MTU1NTU0WhcNMjUxMDI5MTU1NTU0WjAYMRYw
FAYDVQQDEw02OGQ0MTQ4Zi03Nzg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA2h9MeHo9Wsr7NGLMevm10CyabEoGpk73hRhe8prmx7KzyOPYqf57paU8
Z0pPacbh2F2GYRJxrMhzNu72ElxVBxsVWN9r/gdlIkUcs8QXIqx5p190gb6HwqPK
lxuKwTFJWsw6hwQ/jIsU3bhwBPABZB0EH1KxuS0njHjj+iMM6Qf4QjXzwunfJWYZ
DyWszXaHJlGMj8MblugKxAgUe0JOw028J6sYopp9tOvUgWKQgbRoW44LH4iWm7yF
opr24E+rdqYscUcB3lQOTrCOjOyTC77FN9H7g331WEidCI2uE+DSELhM3BEYuMlJ
GseZPb1gdpWplqnWf6PALejR2UgKuQIDAQABo4IC1DCCAtAwHQYDVR0OBBYEFGL7
9r2wszVbpZktFhWLn5uOwSETMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9GNjg2MEQyQzk5NUUxMUYwOUY3NTAwQjZEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MFEGCCsGAQUFBwEHAQH/BEIwQDA+BAIAATA4AwQDnOaIAwQAnOcNAwQDnOewAwQB
nPnAAwQBnPnGAwQBnPnSMAwDBACc/BsDBACc/BwDBAGc/nAwDQYJKoZIhvcNAQEL
BQADggEBAACEnE0jfyj0sp9AqcrCko4NUn48JhwqwQs0SAOEgmf+IKO49LvcJOx7
/1y6dqi2oXwKI7TVENXADLii1awN3cMpKdDpfOCrqESbAbvaq2sESLRVuNXmvppJ
GXg3tI7U7+KtdJNefbo1Ea5uIdTE2xgomCrTxyFALG0NdcWsTWCyVE9aq5H8IhDB
Xbm25h49ztM6ZuReCwSkLq9Ta8rqohz/bubwz2R8fl8LZ92/kID4zqKEkbRPAuLM
kPwaALLycO1h6ds9jAQLZNPgvY7hJqECZedqG4YJGI++bO/0NbNhzY6k1TL0WfWT
40ObPxXrAPJJ0yiWxjxO8fCwkZeX7dE=
-----END CERTIFICATE-----
Generated at Sun Oct 19 11:33:57 2025 by rpki-client