Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4CEFC14067A911F09652CD91DAE4EC9C.roa
File: 4CEFC14067A911F09652CD91DAE4EC9C.roa (raw, json)
Hash identifier: bS6mjEnZpQUhEibwubMUMD0XqEhUY0wzY9hIXAyTL6M=
Subject key identifier: 8A:3E:AB:A5:E9:05:85:2A:9C:2A:99:90:7F:B7:42:66:A7:91:50:5B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0166B9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4CEFC14067A911F09652CD91DAE4EC9C.roa
Signing time: Wed 23 Jul 2025 09:42:09 +0000
ROA not before: Wed 23 Jul 2025 09:42:04 +0000
ROA not after: Fri 29 Aug 2025 09:42:04 +0000
asID: 20473
IP address blocks: 156.231.165.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 08 Aug 2025 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91833 (0x166b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 23 09:42:04 2025 GMT
Not After : Aug 29 09:42:04 2025 GMT
Subject: CN=6880ae71-6dc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:1f:dd:c9:34:6c:4c:d5:77:e7:5e:e5:56:ae:
00:0e:54:17:fb:f1:24:57:dd:08:01:9c:ff:e6:62:
9d:5e:17:51:7e:aa:c0:e5:b7:a6:63:5b:96:3e:58:
92:7c:fd:b9:23:ec:07:d2:3b:74:b5:ce:02:0d:36:
ea:1b:64:b6:87:51:f3:ad:2e:91:77:74:d1:e7:12:
ff:9d:7f:9c:df:dd:a9:2b:67:17:ee:9b:9d:71:96:
87:10:a6:27:90:86:1a:7e:dd:ee:56:ba:9d:c9:2a:
70:10:38:b9:b1:f3:c9:36:da:38:23:4b:bf:25:43:
a7:0a:66:fd:d3:9e:30:ef:af:a9:32:0b:e7:3a:53:
19:93:4a:6b:46:c8:2c:f2:5c:ef:b8:c1:79:fb:11:
81:f6:ba:5a:3c:33:9a:10:90:aa:60:ba:f7:37:94:
c6:1b:67:3f:1e:8f:53:62:44:1e:47:fb:ce:8d:2e:
3d:59:9c:4f:87:4b:e8:44:2b:dc:3d:60:82:e7:f9:
c3:62:6f:0a:e9:b9:79:aa:d6:41:6c:74:40:7d:a9:
25:ab:d4:37:91:75:4d:2d:95:66:00:8d:11:f0:5d:
a4:eb:7b:e5:31:65:1c:c4:84:4b:82:81:4d:05:25:
ef:40:e1:09:f9:68:ce:ab:5f:0b:97:e2:38:27:a9:
1e:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:3E:AB:A5:E9:05:85:2A:9C:2A:99:90:7F:B7:42:66:A7:91:50:5B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4CEFC14067A911F09652CD91DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.231.165.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:51:c4:ce:57:fa:11:a5:ff:ba:83:2b:83:21:56:2a:8c:e2:
a5:48:9c:75:47:6f:57:e3:01:ba:d2:c7:a8:4e:5c:dc:06:03:
72:a9:99:cc:d8:14:c5:47:e4:cf:cf:c7:6f:29:61:ac:ac:22:
08:97:2c:f4:cd:60:5e:37:a9:bf:02:fa:67:dd:a4:f7:6f:14:
a3:33:c5:1c:52:d9:1e:40:b6:5d:f2:86:ef:e1:9b:b0:b3:65:
81:c0:d8:e0:4a:c8:bf:fe:23:49:0f:f2:3b:20:e6:40:e2:48:
4b:16:b9:8f:de:7d:ee:b2:b1:60:f8:ae:5a:32:f9:99:bc:78:
04:3c:34:4e:4e:bb:bd:bc:0c:56:0f:81:1e:e1:c2:c5:b8:20:
be:ee:f8:fa:29:64:ff:b1:11:aa:54:4e:15:18:64:b7:da:70:
93:04:e5:8f:28:50:73:0e:d4:fd:ca:92:06:5e:56:c7:c1:a3:
b5:d4:ba:7d:b1:69:e4:68:1c:4e:a9:10:8e:1d:e4:33:42:0c:
57:56:d1:e1:97:7f:fc:9f:6d:32:be:a0:db:15:08:46:5e:c4:
d7:81:bb:85:4d:69:70:29:e8:70:14:4e:80:a3:26:aa:19:22:
16:cc:10:57:31:3b:a2:28:99:47:aa:e6:e6:b6:9b:72:68:b0:
4e:dd:2a:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 13:08:23 2025 by rpki-client