Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/468FA826688811F0B3F75BBBDAE4EC9C.roa
File: 468FA826688811F0B3F75BBBDAE4EC9C.roa (raw, json)
Hash identifier: 0Ipi8+3U8oSM9+j/j+vSvErNuWyBnCxGc7kyj9BvoSY=
Subject key identifier: D9:B6:17:E2:6A:BA:DD:4B:BB:B7:F4:20:6E:FA:E4:28:5A:91:5A:AD
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016763
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/468FA826688811F0B3F75BBBDAE4EC9C.roa
Signing time: Thu 24 Jul 2025 12:18:16 +0000
ROA not before: Thu 24 Jul 2025 12:18:11 +0000
ROA not after: Thu 04 Sep 2025 12:18:11 +0000
asID: 265721
IP address blocks: 156.248.128.0/20 maxlen: 24
156.248.144.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 12 Aug 2025 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92003 (0x16763)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 24 12:18:11 2025 GMT
Not After : Sep 4 12:18:11 2025 GMT
Subject: CN=68822488-18fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:d3:b0:f1:98:5c:cb:51:55:ec:3b:a7:31:96:
d9:66:51:8b:5c:59:58:c3:cf:08:64:49:c9:d6:68:
8d:b2:0e:bc:11:80:b1:9e:5d:9a:49:73:76:b6:8b:
5a:aa:ef:5f:bd:d5:d4:e0:44:93:ef:71:ca:9a:10:
21:8c:f1:a8:04:ac:c1:f8:50:57:d6:0f:8d:30:01:
89:65:60:3e:2e:25:d4:30:cd:55:8d:d4:99:b0:ef:
b2:9a:35:03:47:ab:3f:39:df:b0:bd:61:98:73:f1:
2f:53:4a:00:06:40:6b:cb:af:43:38:f5:b9:72:81:
28:77:ab:57:1a:df:2c:53:91:f7:88:d6:94:70:df:
e0:e8:29:f7:57:fa:12:20:6c:2d:22:a2:82:b9:37:
8c:e5:63:2e:f0:bc:53:e6:ae:02:96:9d:50:23:2b:
93:59:2b:2c:12:9d:5f:60:60:81:b5:a5:76:03:91:
48:08:5d:5c:65:f7:e2:0c:88:83:bc:c1:5a:43:fc:
6b:c2:e2:58:52:60:2d:2b:32:55:f9:09:4e:e4:cb:
ef:d9:6e:3c:c1:91:4e:c3:0c:ed:91:38:c6:e5:6d:
b7:70:bf:af:98:76:4c:2d:82:84:bb:20:fc:35:3d:
ca:ca:a4:ac:c0:bf:d6:09:e0:60:b8:d8:ae:40:34:
3b:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:B6:17:E2:6A:BA:DD:4B:BB:B7:F4:20:6E:FA:E4:28:5A:91:5A:AD
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/468FA826688811F0B3F75BBBDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.248.128.0/19
Signature Algorithm: sha256WithRSAEncryption
4e:b6:73:44:aa:e6:b1:61:d6:02:de:09:8d:8d:98:6a:33:d7:
3b:10:95:ee:2e:56:4b:63:36:8c:ca:42:ee:7f:90:71:d3:01:
9d:97:14:73:92:30:69:97:ae:33:c7:fc:31:0f:d4:34:54:41:
16:85:90:7d:1a:11:76:49:e2:52:a0:9b:9d:9d:de:be:7e:92:
7d:ab:c0:48:f9:2c:93:ea:f1:89:40:ae:0a:f4:5d:e5:1a:3d:
36:fd:73:bf:9c:46:fa:4f:29:79:19:28:48:2d:9a:c9:10:62:
64:1e:80:52:52:82:19:66:48:cc:5d:30:02:75:d3:4c:d3:38:
66:44:88:2c:32:8d:e3:ec:e1:67:28:cd:61:34:1f:67:11:ab:
30:18:f3:ee:c6:7f:1e:46:8c:7b:57:3e:3b:b7:3d:d6:77:aa:
fd:92:b7:bd:ac:6e:0e:2f:7c:8f:ae:10:bf:60:24:a5:8c:9c:
01:a4:c0:85:7c:3c:5e:15:3f:16:26:79:e6:e8:35:f5:dc:36:
4e:ca:3c:61:55:a5:f2:ce:64:6e:38:e4:8c:b2:3c:22:ae:69:
60:7e:c2:88:76:93:62:18:27:54:28:bb:5e:af:90:78:d0:fd:
fb:5b:ce:d7:9e:c9:32:6c:25:64:95:b5:ce:90:54:c6:92:eb:
5f:7e:c2:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 18:49:30 2025 by rpki-client