Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3079E3C0B37011F083E9CFA0DAE4EC9C.roa
File: 3079E3C0B37011F083E9CFA0DAE4EC9C.roa (raw, json)
Hash identifier: JVMJWJu3BI5uL8+YfIgcXC9gb0kajzH5mD8iv3aiq3M=
Subject key identifier: 88:6E:17:AB:AE:0D:39:1C:CB:E8:7B:08:4A:05:25:5A:AB:DF:44:A3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 018322
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3079E3C0B37011F083E9CFA0DAE4EC9C.roa
Signing time: Mon 27 Oct 2025 20:04:48 +0000
ROA not before: Mon 27 Oct 2025 20:04:43 +0000
ROA not after: Mon 01 Dec 2025 20:04:43 +0000
asID: 44509
IP address blocks: 156.231.111.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Nov 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99106 (0x18322)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 27 20:04:43 2025 GMT
Not After : Dec 1 20:04:43 2025 GMT
Subject: CN=68ffd060-ac5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:eb:a0:9d:59:8c:92:41:c9:7a:d0:23:18:0d:
f5:26:cd:7a:61:2e:c3:c2:a4:de:6c:61:a8:18:2b:
b6:5a:94:09:60:d7:fb:b7:0a:6c:af:13:6b:80:20:
ea:0e:b2:7f:08:e4:20:d9:9d:aa:d0:35:22:34:f5:
ff:cf:89:ea:d7:47:07:52:d4:ff:3b:bc:52:27:fb:
2d:70:8b:9a:33:98:ea:8a:7e:6f:61:d7:3a:e4:d0:
f9:6d:20:ba:93:0c:dc:bd:77:bc:a7:f5:6f:1f:6a:
a9:09:02:ff:0b:14:1d:8f:9f:0b:03:28:25:1c:73:
a1:5b:a1:af:0e:3b:18:28:72:bf:a1:7f:ba:af:92:
51:85:fd:bb:85:36:42:c7:85:eb:82:5f:2d:ec:13:
2c:ff:b6:fd:5a:7c:3f:07:7d:11:a3:a9:d3:9a:a9:
92:94:44:60:18:58:e4:7d:f2:34:4d:e7:8f:42:a4:
fe:15:11:c2:a0:bb:d8:46:48:09:83:b7:a9:e3:e4:
1e:f2:4c:d2:b4:43:0a:d4:77:49:f9:c9:2d:ce:32:
28:ba:e3:46:5d:46:7e:31:3c:2a:7a:58:9a:f1:c2:
da:46:10:de:2f:a4:9d:d9:31:9c:0c:77:08:8c:7d:
eb:ab:54:0c:b7:10:22:8d:2f:cc:8c:07:ea:0f:1e:
3b:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:6E:17:AB:AE:0D:39:1C:CB:E8:7B:08:4A:05:25:5A:AB:DF:44:A3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3079E3C0B37011F083E9CFA0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.231.111.0/24
Signature Algorithm: sha256WithRSAEncryption
65:fa:0c:cb:7b:a4:55:b0:c0:4c:5e:3d:5b:f2:42:02:65:92:
a0:c2:e7:9a:92:f1:54:35:0d:e2:fa:3d:f3:10:4c:54:85:55:
54:6e:6f:95:93:7d:66:86:59:34:2d:7a:ad:f5:39:ae:38:e2:
68:94:fa:b7:bc:4b:a8:2c:ca:df:ff:8d:45:c2:83:9d:eb:c8:
11:a3:a5:2b:d9:dd:12:63:d5:e6:5c:04:93:30:d4:30:1f:92:
7b:f1:69:f4:da:ba:fb:15:79:11:81:72:72:69:18:0a:17:a1:
f1:3f:12:90:c7:98:6f:2c:47:5e:37:2f:8d:9c:64:2a:5e:fc:
95:d7:a5:0f:39:55:4f:f2:28:24:cd:bb:a7:cc:57:1b:57:21:
39:15:46:04:f0:f1:e7:01:b0:b5:87:76:37:0c:bd:bf:f7:ba:
e5:58:87:91:6c:dc:42:1d:f6:1e:63:f3:4e:6d:8e:26:49:fe:
45:0b:12:34:7d:1e:50:27:66:94:3a:89:a8:5a:67:fb:c1:b9:
20:af:14:81:f1:de:57:53:57:22:e2:52:af:b3:76:60:21:b3:
f2:2d:66:29:a8:9f:a3:f6:31:76:5d:14:d7:f5:0e:c2:a1:b4:
31:4d:fd:39:fd:e5:83:ce:fb:cf:37:33:7a:a6:09:af:1c:42:
38:5d:6e:83
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAYMiMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUxMDI3MjAwNDQzWhcNMjUxMjAxMjAwNDQzWjAYMRYw
FAYDVQQDEw02OGZmZDA2MC1hYzVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAx+ugnVmMkkHJetAjGA31Js16YS7DwqTebGGoGCu2WpQJYNf7twpsrxNr
gCDqDrJ/COQg2Z2q0DUiNPX/z4nq10cHUtT/O7xSJ/stcIuaM5jqin5vYdc65ND5
bSC6kwzcvXe8p/VvH2qpCQL/CxQdj58LAyglHHOhW6GvDjsYKHK/oX+6r5JRhf27
hTZCx4Xrgl8t7BMs/7b9Wnw/B30Ro6nTmqmSlERgGFjkffI0TeePQqT+FRHCoLvY
RkgJg7ep4+Qe8kzStEMK1HdJ+cktzjIouuNGXUZ+MTwqelia8cLaRhDeL6Sd2TGc
DHcIjH3rq1QMtxAijS/MjAfqDx47DQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFIhu
F6uuDTkcy+h7CEoFJVqr30SjMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8zMDc5RTNDMEIzNzAxMUYwODNFOUNGQTBEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnOdvMA0GCSqGSIb3DQEBCwUA
A4IBAQBl+gzLe6RVsMBMXj1b8kICZZKgwueakvFUNQ3i+j3zEExUhVVUbm+Vk31m
hlk0LXqt9TmuOOJolPq3vEuoLMrf/41FwoOd68gRo6Ur2d0SY9XmXASTMNQwH5J7
8Wn02rr7FXkRgXJyaRgKF6HxPxKQx5hvLEdeNy+NnGQqXvyV16UPOVVP8igkzbun
zFcbVyE5FUYE8PHnAbC1h3Y3DL2/97rlWIeRbNxCHfYeY/NObY4mSf5FCxI0fR5Q
J2aUOomoWmf7wbkgrxSB8d5XU1ci4lKvs3ZgIbPyLWYpqJ+j9jF2XRTX9Q7CobQx
Tf05/eWDzvvPNzN6pgmvHEI4XW6D
-----END CERTIFICATE-----
Generated at Wed Nov 5 13:40:58 2025 by rpki-client