Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/28173F66AFEC11F0A4EB279CDAE4EC9C.roa
File: 28173F66AFEC11F0A4EB279CDAE4EC9C.roa (raw, json)
Hash identifier: fDYsJgjARnVuZrKE+0evBEqL984sVDhAR8/1W3NWsIw=
Subject key identifier: AD:8D:9B:5A:3A:0D:F2:FA:65:95:63:41:6C:24:51:1F:2B:3F:2F:21
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01821B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/28173F66AFEC11F0A4EB279CDAE4EC9C.roa
Signing time: Thu 23 Oct 2025 08:42:07 +0000
ROA not before: Thu 23 Oct 2025 08:41:58 +0000
ROA not after: Sat 08 Nov 2025 08:41:58 +0000
asID: 138985
IP address blocks: 156.238.81.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 06 Nov 2025 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98843 (0x1821b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 23 08:41:58 2025 GMT
Not After : Nov 8 08:41:58 2025 GMT
Subject: CN=68f9ea5f-9227
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a4:83:4f:79:b6:5a:e9:cc:a2:c4:30:ac:71:
37:1e:e9:a3:68:29:3b:38:31:90:aa:c2:cc:30:2b:
ee:7d:5f:42:1a:83:f1:18:fd:d3:cd:49:16:da:58:
5a:d0:40:33:79:06:56:32:91:73:dd:04:d8:3d:c4:
5a:19:5b:04:11:b8:6f:a3:24:ee:f6:b9:e2:b4:b0:
14:ef:7a:bf:c4:c9:6b:aa:a1:b3:54:1d:f1:90:17:
9b:e8:8a:a0:90:46:4a:61:83:98:65:32:7a:86:2d:
66:f8:72:54:27:97:34:63:3e:46:06:70:89:aa:78:
83:e5:9b:ce:58:7c:2c:db:11:06:08:4f:08:71:7a:
0e:3d:ef:af:ad:0e:b8:5f:da:5c:58:c4:ba:c5:c7:
0e:4a:ee:ac:15:6d:62:d4:e3:20:bd:60:1e:50:a1:
da:b8:f6:a2:36:d6:00:d9:85:eb:1b:a0:4f:b0:75:
d7:49:a4:ff:15:e4:d3:95:b6:47:d6:de:cd:c2:d3:
db:86:e6:5f:71:f3:2e:75:45:cf:2a:a4:e9:f0:78:
b5:5b:7d:6f:ff:e3:34:4f:c5:32:f6:d0:2d:95:b2:
17:24:f4:49:0f:13:c9:a7:2d:ba:7d:80:ee:af:63:
28:ed:fa:02:4c:35:8a:98:de:48:a0:04:b5:35:2b:
30:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:8D:9B:5A:3A:0D:F2:FA:65:95:63:41:6C:24:51:1F:2B:3F:2F:21
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/28173F66AFEC11F0A4EB279CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.81.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:4d:d1:36:36:25:7d:a1:2a:a9:ca:1c:3e:e2:18:5d:f1:73:
5f:33:1e:5f:10:6b:b9:61:90:27:89:3b:97:f0:b3:33:10:66:
1d:d2:d7:de:81:91:30:9e:78:72:72:ff:2d:72:05:25:a7:f0:
1a:47:cb:ec:57:61:c0:cd:88:78:f9:4c:8b:24:a2:9f:70:02:
3b:5e:09:7d:d5:04:ef:b2:b9:a3:8d:ca:a9:28:1e:d6:7c:e4:
be:b9:ca:91:7c:a7:c7:7f:22:87:79:f0:1d:cc:89:6b:a2:f2:
3a:c5:87:d2:d0:35:3f:11:3f:91:b8:a8:e9:b6:da:11:f3:35:
58:67:86:e4:fc:92:30:a6:76:5f:ab:1b:0e:ab:ce:ea:de:56:
06:68:24:58:d0:14:b1:c7:b1:3e:b5:14:3b:1e:94:a6:4d:b8:
af:cf:37:8e:24:3c:85:b9:39:9c:ea:0f:cf:7c:de:4b:e7:16:
60:3a:af:0d:ae:3b:e3:de:e6:e5:e7:af:a7:59:62:6f:e4:36:
98:b2:87:b4:06:dd:2a:fd:93:46:e0:6a:5f:3a:cb:f1:43:1e:
bb:d7:35:f4:98:16:4b:4b:7d:e0:8a:30:2c:51:9f:a2:56:94:
25:4a:6d:a5:c3:ee:55:f7:55:f1:6e:92:a2:28:a8:6f:0b:5b:
23:f1:7d:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:59:13 2025 by rpki-client