Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/78A253C8694A11F0A8A615B0DAE4EC9C.roa
File: 78A253C8694A11F0A8A615B0DAE4EC9C.roa (raw, json)
Hash identifier: kTwZA9+Ll60J2lbKjClnO+aBci5fMKJPCb6NESVtL0Y=
Subject key identifier: 30:36:86:3A:79:D0:E7:71:7D:BC:97:92:A3:B1:06:DC:44:7C:98:15
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0167C0
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/78A253C8694A11F0A8A615B0DAE4EC9C.roa
Signing time: Fri 25 Jul 2025 11:28:22 +0000
ROA not before: Fri 25 Jul 2025 11:28:18 +0000
ROA not after: Fri 08 Aug 2025 11:28:18 +0000
asID: 134489
IP address blocks: 156.238.86.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 06 Aug 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92096 (0x167c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 25 11:28:18 2025 GMT
Not After : Aug 8 11:28:18 2025 GMT
Subject: CN=68836a56-00bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:22:0d:f1:9e:87:39:3f:a1:d0:de:31:52:0a:
f7:70:38:3b:04:0b:d8:51:3f:6f:14:1b:f5:88:86:
62:29:b3:cc:a0:9b:22:95:fc:16:d8:51:e8:75:41:
bf:2f:10:dd:e8:91:fc:c2:02:2a:96:e5:2d:00:dc:
c8:8d:f8:1d:d0:89:9c:63:a1:1d:1d:be:aa:3b:d3:
4c:c6:b3:51:36:ea:86:59:c4:f8:c7:c9:d5:17:b3:
33:fc:e1:f6:5d:65:6f:8c:59:3a:54:47:c6:14:da:
4e:c8:81:ba:17:96:7c:b2:7c:c3:87:7d:21:c0:0e:
2c:c6:f4:e5:02:f1:60:cc:4b:ff:31:5e:37:97:64:
87:22:3b:1d:9c:47:63:c5:17:5c:db:f4:9c:7d:28:
97:0a:04:40:83:6b:1a:a1:32:76:bd:fc:39:98:23:
c6:ea:91:f6:1b:d7:53:e3:3b:58:9c:b2:e8:29:f3:
c8:28:05:64:ce:de:8e:97:07:a9:d7:de:a6:91:4a:
b2:b3:2a:3c:8c:02:0b:ae:7d:70:67:86:da:2e:65:
cd:bf:a7:3d:97:3c:36:1b:11:b8:3a:5a:4c:2c:ec:
18:bc:42:b2:72:00:66:11:d2:64:67:e9:49:4c:22:
e3:e6:9a:64:af:c3:b2:0b:94:bc:38:36:1c:e4:85:
ed:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:36:86:3A:79:D0:E7:71:7D:BC:97:92:A3:B1:06:DC:44:7C:98:15
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/78A253C8694A11F0A8A615B0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.86.0/24
Signature Algorithm: sha256WithRSAEncryption
83:31:f0:17:cf:1b:9d:3a:1a:12:55:6b:2b:0f:4a:8d:54:50:
58:de:a5:95:8d:95:f5:fc:2a:f5:9f:88:13:88:ce:89:c8:9e:
3e:7c:23:bf:f4:7c:54:46:f6:f1:71:e7:28:fd:9c:5a:f6:b8:
50:39:7b:00:2e:02:bc:78:83:f0:12:d5:f4:a4:ef:aa:00:26:
c5:b9:ea:bf:9c:ef:1d:78:65:49:b7:0c:e0:df:8d:6e:41:1a:
23:b6:5e:99:cb:d9:84:8f:29:18:86:a2:9c:26:24:8a:4a:f6:
8a:ca:3b:4f:39:e0:2e:68:af:25:cc:3c:ca:6e:05:a4:6d:bc:
09:35:10:c9:a9:c7:ed:b9:f5:23:d1:40:03:63:9e:54:79:5d:
3b:b1:2c:bb:6c:c4:28:c9:1e:2f:79:b0:19:74:a1:69:d1:e7:
9c:91:0e:7b:7f:40:cc:01:63:b6:3d:5c:48:ae:d4:c6:0f:23:
ad:9d:8a:51:a8:1b:a5:fd:40:bd:74:4a:f1:f5:30:c0:42:31:
21:c9:29:4e:42:ea:cb:ed:f8:0c:9c:5a:7b:f7:32:81:03:ff:
da:47:57:87:c0:55:e1:4d:ad:a8:2f:1d:03:d9:54:76:25:47:
a8:1d:79:8e:85:81:c7:a3:a3:44:5c:a4:0d:2f:14:46:71:00:
18:7e:fa:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 08:25:26 2025 by rpki-client