Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/847BD42CB3F911F0BACACE8DDAE4EC9C.roa
File: 847BD42CB3F911F0BACACE8DDAE4EC9C.roa (raw, json)
Hash identifier: vEyeSbdkS6L+i4pX7Nj8wILn/8d+Ylbc9YsWMSvJEIE=
Subject key identifier: 35:0A:2B:05:14:88:39:1A:72:33:73:9E:A6:84:FD:67:BB:C4:88:86
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01837A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/847BD42CB3F911F0BACACE8DDAE4EC9C.roa
Signing time: Tue 28 Oct 2025 12:27:50 +0000
ROA not before: Tue 28 Oct 2025 12:27:45 +0000
ROA not after: Wed 10 Dec 2025 12:27:45 +0000
asID: 138915
IP address blocks: 156.244.28.0/24 maxlen: 24
156.244.29.0/24 maxlen: 24
156.244.30.0/24 maxlen: 24
156.244.31.0/24 maxlen: 24
156.244.32.0/24 maxlen: 24
156.244.33.0/24 maxlen: 24
156.244.34.0/24 maxlen: 24
156.244.35.0/24 maxlen: 24
156.244.54.0/24 maxlen: 24
156.244.58.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Nov 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99194 (0x1837a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 28 12:27:45 2025 GMT
Not After : Dec 10 12:27:45 2025 GMT
Subject: CN=6900b6c6-c6fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1a:c4:02:32:a7:bb:2e:fc:fe:a7:9b:4c:1e:
3c:0e:29:cc:ba:48:49:3d:00:ea:2e:1e:58:87:89:
b0:58:23:ab:9c:28:81:16:fc:c9:ba:6a:67:8d:3f:
88:58:7f:02:59:3d:85:15:5a:2f:5d:ef:54:d9:57:
b9:23:10:65:57:76:08:a7:c7:af:c5:f1:e6:9b:bd:
f8:c3:79:37:68:3c:4b:c8:d2:44:01:44:c2:4e:fd:
9b:37:41:95:8c:a1:b5:af:b9:f0:4e:28:b4:9f:db:
c0:15:bd:2c:05:59:0a:0d:df:67:8f:e8:23:4d:f7:
ef:3c:f8:82:8a:3a:d0:a1:ef:3d:a4:9f:93:b8:05:
74:86:64:6d:57:bc:38:d8:03:a4:b4:af:c6:9b:99:
cb:0a:6a:d4:2f:3d:f1:b6:5c:13:30:cb:bd:0c:fd:
b6:f6:0f:e5:d1:91:90:7c:b4:37:60:da:48:f0:4d:
30:bf:49:73:fe:2e:8a:24:09:52:63:a9:64:0a:ae:
e6:1a:f5:b8:74:cf:7b:3b:9e:cc:20:95:b2:de:d6:
dd:c6:b5:65:2c:e2:56:87:a0:dc:da:43:ef:14:1e:
95:5b:d3:e1:50:70:c1:bf:cf:0e:d4:ee:7a:f9:03:
ee:2b:89:77:2d:0b:e7:c9:61:5c:36:7c:ee:54:82:
87:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:0A:2B:05:14:88:39:1A:72:33:73:9E:A6:84:FD:67:BB:C4:88:86
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/847BD42CB3F911F0BACACE8DDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.244.28.0-156.244.35.255
156.244.54.0/24
156.244.58.0/23
Signature Algorithm: sha256WithRSAEncryption
25:89:f2:d6:70:53:da:b7:7b:dd:b5:21:6f:eb:1c:9a:3e:8b:
b4:73:ca:d4:0b:69:7f:e7:32:a9:1a:d7:e9:17:ba:95:3e:8c:
a3:b6:f0:8a:19:40:6b:10:42:fe:bd:1f:54:ea:93:7c:c3:eb:
0e:8f:84:1f:e1:b1:cc:cf:65:da:72:bb:ef:23:6e:d7:81:b4:
cb:35:fd:d3:a1:58:a0:10:7f:70:5d:50:2f:c5:95:52:68:b9:
f1:33:88:c8:c2:44:e7:ff:91:fa:4b:21:f0:36:af:d7:5c:63:
aa:70:c6:d2:05:09:78:c2:fc:34:b2:bf:8f:b0:47:b7:a4:e5:
52:8c:7a:1f:01:86:ad:ea:3c:b4:db:14:9d:76:30:32:74:e1:
09:99:d0:c2:76:1d:28:0d:15:85:92:de:f3:b7:1f:1d:8a:70:
1f:0e:b9:e7:1c:83:c4:23:ae:e2:b9:c4:5f:af:87:10:84:c9:
df:6b:72:39:5c:46:55:69:7a:10:6f:76:0d:7a:a6:0e:c8:1a:
41:47:57:a2:63:d2:4f:f0:68:76:fe:dc:55:ce:8b:a3:15:0b:
ce:79:67:53:52:75:ae:25:e5:e2:bf:bf:62:8f:da:f9:f9:01:
86:24:b5:75:d0:78:41:b1:05:d4:a6:03:16:a0:fd:82:54:b4:
7f:65:76:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 03:23:14 2025 by rpki-client