Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/6F04EEFC8D6711F08BF7BF92DAE4EC9C.roa
File: 6F04EEFC8D6711F08BF7BF92DAE4EC9C.roa (raw, json)
Hash identifier: +N9mzMErm2aqSe1fPysEdyPfqrceB24QQj5uQOm1owA=
Subject key identifier: 61:8A:0F:FF:37:C5:0C:5A:88:04:DA:FB:23:1E:F6:80:13:A2:2D:FC
Certificate issuer: /CN=F36A44EAAR/serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Certificate serial: 096C
Authority key identifier: F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
Authority info access: rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/6F04EEFC8D6711F08BF7BF92DAE4EC9C.roa
Signing time: Tue 09 Sep 2025 10:26:24 +0000
ROA not before: Tue 09 Sep 2025 10:26:19 +0000
ROA not after: Mon 31 Dec 2035 10:26:19 +0000
asID: 393942
IP address blocks: 165.49.106.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.mft
rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 18 Sep 2025 00:26:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2412 (0x96c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36A44EAAR, serialNumber=F85BB49854392228FB8B30DB05D96AC664CE83AB
Validity
Not Before: Sep 9 10:26:19 2025 GMT
Not After : Dec 31 10:26:19 2035 GMT
Subject: CN=68c000cf-f6a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:e6:78:b8:ea:f0:5f:7e:ba:80:12:c6:32:6e:
da:de:22:e0:94:2d:95:80:89:a4:51:c9:df:91:e1:
54:a1:29:56:10:46:d1:33:a7:ab:35:34:3a:3c:3a:
a0:dc:81:d8:48:8a:03:2d:fd:84:07:14:bc:7d:4d:
c3:4f:3a:3d:5c:9a:89:3d:8d:d5:cb:47:c7:e0:ab:
cf:0d:71:ca:61:b3:97:ea:29:85:5d:c3:36:52:ce:
2e:2b:87:88:27:4a:66:a0:2d:0b:6f:74:ea:8f:11:
95:39:1f:c4:b4:cf:70:ee:b9:14:88:46:b0:82:28:
c3:0a:59:51:52:0d:46:84:b4:35:f3:66:31:17:97:
bb:fa:b9:ba:c1:13:29:c6:8e:f0:b7:fb:38:6c:d1:
48:e4:16:fa:71:ca:bc:b5:49:85:d1:c7:e7:7a:4c:
d6:90:9c:b4:d4:4c:cf:7e:db:cc:43:d1:80:60:99:
dd:d2:83:9a:bc:67:4e:b4:f9:c1:e5:7a:99:5f:09:
7a:18:4c:76:c8:c8:84:66:d6:93:2e:8c:d3:35:41:
e5:f0:46:e0:06:4d:66:e5:59:7d:ce:50:c5:f0:f7:
ce:ed:80:16:5e:9b:3c:6b:79:7e:59:ba:34:0a:3e:
86:bf:a1:75:d0:45:40:c6:5b:6d:d1:33:32:88:2d:
2b:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:8A:0F:FF:37:C5:0C:5A:88:04:DA:FB:23:1E:F6:80:13:A2:2D:FC
X509v3 Authority Key Identifier:
keyid:F8:5B:B4:98:54:39:22:28:FB:8B:30:DB:05:D9:6A:C6:64:CE:83:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/-Fu0mFQ5Iij7izDbBdlqxmTOg6s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36A44EA/A8B7EC1C890911E9B57E685FF8AEA228/6F04EEFC8D6711F08BF7BF92DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.49.106.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:9a:a4:5f:fa:c2:de:f0:14:9f:c8:d7:7e:5e:93:75:80:2c:
1c:79:bf:c3:18:c8:d1:4a:37:c0:06:b1:25:55:9e:01:90:50:
fb:ef:fd:65:6d:00:fa:03:05:09:dc:6b:98:df:cc:8f:5b:53:
48:27:50:e7:21:cc:5c:7e:ce:74:0a:51:81:47:f0:68:15:d6:
f2:f9:78:8f:52:e8:d7:ba:1b:c6:e7:4f:c8:8d:9b:04:57:9e:
fd:b7:87:11:d4:15:db:97:d6:78:3b:1c:60:c2:d5:36:4f:00:
df:d3:e4:35:3c:1a:1e:00:6e:65:ec:74:e8:ac:6c:6f:79:1a:
22:9a:be:98:b9:f0:cd:72:e3:2a:0e:a9:85:37:cd:57:2d:a6:
f5:51:34:f4:d9:9a:00:89:24:40:9f:dc:af:3d:f0:76:60:88:
be:cd:9a:b1:ff:74:24:b4:3f:d3:5f:ab:a9:fb:ad:cc:25:74:
f7:19:41:42:61:c9:5d:3f:77:e7:31:60:60:f4:3a:d3:cb:58:
07:b1:b5:fe:d7:99:a5:19:c7:07:f1:cd:24:90:fa:e5:21:75:
f3:1c:e7:d3:0e:a3:fe:f9:80:ff:28:6e:01:4e:f2:2a:f1:96:
64:59:25:77:6e:89:e2:44:fb:67:e0:37:41:50:21:17:5c:e2:
07:22:b5:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 16 02:58:46 2025 by rpki-client