Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369591C/4D92EC26C24711EDBF9323A0F1222468/1FD4E33E881A11F0B7B498A6DAE4EC9C.roa
File: 1FD4E33E881A11F0B7B498A6DAE4EC9C.roa (raw, json)
Hash identifier: fsPwiXCwWpyl3VMVIS2dW1m76owZ/IrLRf2lMDpLzbU=
Subject key identifier: 43:84:BD:65:7C:60:F8:77:22:9D:61:BA:E6:EE:9E:A1:01:7E:81:35
Certificate issuer: /CN=F369591CAR/serialNumber=0728C9B8455C65977FA30987DE4941DF018C651C
Certificate serial: 03B8
Authority key identifier: 07:28:C9:B8:45:5C:65:97:7F:A3:09:87:DE:49:41:DF:01:8C:65:1C
Authority info access: rsync://rpki.afrinic.net/repository/arin/ByjJuEVcZZd_owmH3klB3wGMZRw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F369591C/4D92EC26C24711EDBF9323A0F1222468/1FD4E33E881A11F0B7B498A6DAE4EC9C.roa
Signing time: Tue 02 Sep 2025 16:30:24 +0000
ROA not before: Tue 02 Sep 2025 16:30:17 +0000
ROA not after: Tue 31 Dec 2030 16:30:17 +0000
asID: 15964
IP address blocks: 165.211.30.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F369591C/4D92EC26C24711EDBF9323A0F1222468/ByjJuEVcZZd_owmH3klB3wGMZRw.crl
rsync://rpki.afrinic.net/repository/member_repository/F369591C/4D92EC26C24711EDBF9323A0F1222468/ByjJuEVcZZd_owmH3klB3wGMZRw.mft
rsync://rpki.afrinic.net/repository/arin/ByjJuEVcZZd_owmH3klB3wGMZRw.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 18 Sep 2025 00:26:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 952 (0x3b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F369591CAR, serialNumber=0728C9B8455C65977FA30987DE4941DF018C651C
Validity
Not Before: Sep 2 16:30:17 2025 GMT
Not After : Dec 31 16:30:17 2030 GMT
Subject: CN=68b71ba0-ee34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:3e:4c:92:c3:7b:1c:fe:7c:31:d9:ae:5c:cc:
47:23:f0:dd:b1:96:3e:3a:fa:9e:67:d8:91:61:67:
26:03:5b:02:ed:5e:5b:36:cd:59:ad:20:e3:31:70:
49:27:a9:96:0e:1d:2d:4d:14:35:d2:cf:ba:1b:f8:
0f:20:32:18:41:c7:6b:96:86:8a:28:2a:39:d8:6f:
cf:9b:90:6b:59:82:66:35:21:c1:d4:c8:ad:d3:59:
ae:06:be:05:e1:ed:94:4f:30:c9:0c:24:62:f3:8b:
15:63:b2:12:f7:8a:5b:7c:d8:3d:5b:96:a3:d8:3b:
bf:47:9e:b7:7b:29:3c:37:47:75:6c:ed:c9:3c:77:
e0:b2:66:d2:40:34:07:30:30:cb:cb:20:62:23:cd:
65:4d:10:cc:4b:95:27:8f:e2:16:a7:10:c1:ff:c3:
d4:aa:2b:ad:b5:99:a3:59:17:48:ba:60:29:c2:a9:
cf:e9:07:10:78:e0:87:17:68:27:95:6e:41:26:68:
52:63:d6:cd:3c:7c:cd:c6:fc:de:6d:6e:00:5d:92:
64:ec:14:2d:01:cc:dc:25:e1:ff:a1:21:0c:71:fa:
98:ea:cf:76:4f:7b:52:ae:df:ff:ff:bc:ca:6e:55:
83:21:16:2a:5a:83:6f:0c:b3:28:7a:13:73:b3:81:
57:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:84:BD:65:7C:60:F8:77:22:9D:61:BA:E6:EE:9E:A1:01:7E:81:35
X509v3 Authority Key Identifier:
keyid:07:28:C9:B8:45:5C:65:97:7F:A3:09:87:DE:49:41:DF:01:8C:65:1C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F369591C/4D92EC26C24711EDBF9323A0F1222468/ByjJuEVcZZd_owmH3klB3wGMZRw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/ByjJuEVcZZd_owmH3klB3wGMZRw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369591C/4D92EC26C24711EDBF9323A0F1222468/1FD4E33E881A11F0B7B498A6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.211.30.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:86:3f:06:ec:a0:62:80:82:f5:22:0f:b5:6a:1c:f6:07:7b:
6e:72:09:ca:17:4f:30:0b:ba:e7:08:24:e7:14:2b:ba:35:c2:
5d:db:b4:55:51:19:78:ff:85:ff:9c:8a:c1:be:2f:b0:b4:2b:
65:19:99:6f:73:9f:33:1d:c2:e9:b8:3e:2a:d3:b3:03:76:6a:
13:50:97:a9:62:46:65:b9:e3:da:2c:b2:5b:99:d8:c0:cd:e6:
1b:38:53:a4:72:d2:8d:8a:6e:a5:ea:15:ae:4d:bf:3b:64:b9:
85:15:f2:1d:bb:96:ab:08:80:a9:ca:96:be:2d:0f:11:1f:a9:
35:c8:11:ac:96:ec:ba:34:e7:80:de:19:0d:a1:1f:41:21:84:
f9:9c:57:2a:5a:db:dc:e7:c2:ab:14:b3:94:20:74:d4:30:91:
0a:78:44:d1:8a:a8:77:4e:2a:79:7e:a2:ef:b0:55:1d:39:a6:
ea:87:56:08:9e:0c:4c:c7:36:fb:72:8e:b6:95:af:b5:75:ce:
ab:e6:f0:0e:8e:c4:f5:31:1e:cd:c6:93:5f:ab:78:80:be:c4:
06:dc:e2:0a:b5:cd:e4:0a:ca:0b:be:97:49:b1:65:25:18:c1:
a7:12:8f:9f:11:9a:89:18:19:17:21:84:e2:54:64:24:85:8c:
4f:bb:d1:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 16 19:58:22 2025 by rpki-client