Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F883F48C998511F08CF0A6ABDAE4EC9C.roa
File: F883F48C998511F08CF0A6ABDAE4EC9C.roa (raw, json)
Hash identifier: /FORTk4IdCUWoHov7NiXDfC8uGlNIFHrzBsRGg2ZPRk=
Subject key identifier: 22:D6:37:A5:CD:77:DB:AD:B5:B4:13:36:8C:A2:78:36:B6:03:44:F4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017D1D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F883F48C998511F08CF0A6ABDAE4EC9C.roa
Signing time: Wed 24 Sep 2025 20:35:13 +0000
ROA not before: Wed 24 Sep 2025 20:35:08 +0000
ROA not after: Tue 04 Nov 2025 20:35:08 +0000
asID: 8796
IP address blocks: 156.238.224.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97565 (0x17d1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 24 20:35:08 2025 GMT
Not After : Nov 4 20:35:08 2025 GMT
Subject: CN=68d45601-7614
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:d3:c3:fa:e9:64:41:61:51:8f:26:f9:1d:c6:
68:80:6b:a3:62:35:fd:a7:50:bf:7b:01:70:a3:18:
04:6e:74:4d:d5:6b:fb:74:63:54:33:6a:2a:dc:c7:
cd:0f:71:81:55:df:e2:c3:47:65:86:41:23:7d:00:
27:51:91:15:2d:35:42:24:79:a9:0f:92:08:14:3f:
52:81:fa:7a:d6:4c:46:5f:62:d7:e2:c0:db:5a:2d:
1d:86:2f:de:cc:33:ae:d7:5c:22:7d:d7:26:fb:9d:
c7:26:d6:1d:53:d3:af:b1:2a:5f:3b:56:8f:bb:75:
56:4f:7f:51:0a:5b:b2:91:f5:92:97:2e:ad:ad:f5:
63:2a:8b:f3:32:ab:25:d5:58:82:09:7a:b2:68:f5:
eb:c7:90:07:2e:49:76:d1:ba:6a:c6:64:55:c5:d4:
81:56:d4:54:56:c6:da:8c:6d:fe:b5:f0:2a:52:c0:
5f:36:1d:15:00:6e:26:60:ee:d0:bf:37:51:f6:66:
51:3b:ba:07:a3:7c:a7:25:d4:4e:9a:df:aa:9a:0d:
f9:18:0b:73:77:1e:57:49:c4:21:4e:4f:43:ff:29:
13:37:f1:f8:18:f1:37:36:53:b4:05:fc:b4:12:10:
8a:c5:1b:6a:8f:80:50:cd:06:e6:94:ff:7e:61:b1:
ef:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:D6:37:A5:CD:77:DB:AD:B5:B4:13:36:8C:A2:78:36:B6:03:44:F4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F883F48C998511F08CF0A6ABDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.224.0/19
Signature Algorithm: sha256WithRSAEncryption
85:7c:bc:c8:04:50:ca:af:24:8b:c8:56:52:d5:cf:96:ce:14:
26:9e:8c:17:30:04:97:37:c1:12:5c:87:d2:f6:80:14:83:1e:
20:d2:e6:db:48:0c:87:ba:30:40:2c:71:e2:a7:57:36:9f:e5:
db:f3:33:e0:46:4d:46:ae:a8:e9:11:6d:e5:4b:cf:66:a0:50:
63:bf:c4:be:16:8d:5c:8c:f8:3a:b9:fe:04:86:26:fa:38:56:
5f:47:fd:fb:9e:93:3a:57:23:e2:de:79:0b:fd:5f:98:c7:a8:
36:56:3e:73:b8:51:e4:80:4d:d3:66:4b:56:84:f3:2d:cf:d1:
2e:7d:ee:d0:20:8b:17:bf:0c:4c:b6:8c:3a:fd:b0:8a:32:71:
8e:c8:79:d9:3c:52:bd:bc:79:89:af:49:fb:ae:d7:b5:0c:aa:
18:fa:c3:76:75:78:70:86:a3:8a:a6:81:fc:63:c5:cd:ee:fd:
9e:d6:98:e0:10:b5:e2:b7:85:1f:ce:32:3f:fb:92:c5:81:35:
15:f3:8a:37:e6:63:2c:37:6a:c7:e0:be:4c:03:90:b1:00:7e:
c6:5d:e4:c9:b8:d5:b4:77:a6:e7:4f:1c:25:fd:49:04:33:bd:
c2:b9:5f:36:c2:e8:2a:df:f0:af:85:57:79:d6:60:6c:88:3a:
f4:55:23:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:51:34 2025 by rpki-client