Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1ACBDF2AB88D11F0A45205D4DAE4EC9C.roa
File: 1ACBDF2AB88D11F0A45205D4DAE4EC9C.roa (raw, json)
Hash identifier: JoRWVNc+XxXf6Z7bC1nk1J3Muga+H1SwK0QgtCjDrt0=
Subject key identifier: 03:2C:59:A6:66:AA:3B:0A:49:14:75:90:5E:90:E6:02:4C:A0:8D:40
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 018463
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1ACBDF2AB88D11F0A45205D4DAE4EC9C.roa
Signing time: Mon 03 Nov 2025 08:14:23 +0000
ROA not before: Mon 03 Nov 2025 08:14:18 +0000
ROA not after: Sun 09 Nov 2025 08:14:18 +0000
asID: 399989
IP address blocks: 156.238.176.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Nov 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99427 (0x18463)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 3 08:14:18 2025 GMT
Not After : Nov 9 08:14:18 2025 GMT
Subject: CN=6908645f-0fd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:6e:57:6a:e5:0a:52:b1:82:0d:69:01:66:c6:
16:3a:93:ca:4f:32:56:82:71:94:b8:73:ab:be:78:
a4:a5:e4:79:fb:09:36:0f:49:37:df:b6:c0:47:64:
08:08:5e:9e:d0:3e:6a:e3:6e:df:10:c0:4c:54:9a:
05:ba:18:ce:0c:31:be:b0:8d:5b:77:fe:21:80:b3:
3f:f4:77:34:b8:39:79:fd:95:3c:1c:fc:7f:1a:ad:
80:7f:2a:c1:a0:6d:53:fc:01:d9:d3:a6:3a:6b:ee:
f1:35:24:98:d7:e7:69:ba:2d:0e:fb:1c:47:2f:f0:
ca:3d:dc:97:09:f8:c8:66:20:fa:07:c5:1e:b1:1d:
b0:2b:a5:52:02:cc:6d:00:3d:b1:b8:36:80:c8:3e:
1d:56:e3:39:84:b1:6c:b9:cc:e5:c8:f5:ff:fe:04:
eb:32:31:df:77:c3:f3:13:bb:1b:7c:64:22:90:d6:
2a:f8:3d:6e:72:dc:3f:1f:10:3b:f4:72:4c:5e:4e:
a0:ae:ab:ca:7c:c3:e5:a7:5e:d4:8a:f5:8a:18:0e:
69:72:ff:68:7b:d8:0d:7c:d0:9e:fb:e0:cf:ef:92:
0d:09:7b:00:04:09:d0:8e:72:88:39:9c:a4:da:33:
34:f7:d9:49:c6:9d:ce:a7:ee:dc:56:90:bf:97:58:
40:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:2C:59:A6:66:AA:3B:0A:49:14:75:90:5E:90:E6:02:4C:A0:8D:40
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1ACBDF2AB88D11F0A45205D4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.176.0/22
Signature Algorithm: sha256WithRSAEncryption
8b:f7:95:f8:d0:17:18:5d:e0:54:8e:66:e2:96:36:14:61:8e:
94:e1:cd:39:8d:02:90:2d:21:f0:ec:e9:c1:10:6e:09:64:93:
a0:5a:33:d9:85:ae:8b:22:3f:42:a5:b9:1d:50:a0:34:e5:e1:
c7:07:fb:8c:1a:d2:41:ba:f1:d6:c4:5c:71:db:ab:50:56:7a:
93:3a:d9:f9:13:b9:19:f6:ae:64:1f:ea:48:69:11:73:96:c4:
ac:cd:ea:4a:e6:df:0c:66:93:f0:1f:01:73:8f:6a:85:e9:0f:
35:9f:94:c8:45:86:12:84:e8:57:0d:df:9f:39:e7:f0:74:d4:
25:36:c3:30:dc:f4:05:fc:c0:5d:60:89:ea:58:7b:f0:d9:da:
bb:bd:20:44:b8:2c:11:f6:49:61:43:85:98:80:ed:d4:8b:4b:
a6:b8:bc:9c:53:d9:11:ee:72:f8:35:e4:1d:1c:66:c9:06:ed:
e5:ce:88:d5:38:89:6b:e1:ae:f7:1e:89:69:de:98:ca:ef:83:
bc:ee:d4:8f:e4:5c:1e:5f:d5:6f:88:a3:e8:7e:3e:4f:15:3e:
0f:07:dd:37:bf:60:a2:10:b2:fe:92:68:a4:6d:5f:e5:09:8b:
e3:34:66:a0:1b:2c:5f:71:a2:02:e6:66:08:0a:bc:d6:f6:0e:
7f:fd:ab:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 08:44:42 2025 by rpki-client