Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/91EDC4BEB5BE11F093D0B0A3DAE4EC9C.roa
File: 91EDC4BEB5BE11F093D0B0A3DAE4EC9C.roa (raw, json)
Hash identifier: li3qdGszmoYc2+FIzFLEJneLNEmg7LdDao+FsAVDKYg=
Subject key identifier: A7:C1:51:4E:BE:C9:D4:CF:46:C6:6F:78:12:6F:1E:16:CD:C9:56:59
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 018416
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/91EDC4BEB5BE11F093D0B0A3DAE4EC9C.roa
Signing time: Thu 30 Oct 2025 18:31:00 +0000
ROA not before: Thu 30 Oct 2025 18:30:49 +0000
ROA not after: Wed 19 Nov 2025 18:30:49 +0000
asID: 6079
IP address blocks: 156.239.16.0/24 maxlen: 24
156.239.23.0/24 maxlen: 24
156.239.55.0/24 maxlen: 24
156.253.0.0/24 maxlen: 24
156.253.48.0/24 maxlen: 24
156.253.49.0/24 maxlen: 24
156.253.50.0/24 maxlen: 24
156.253.51.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 06 Nov 2025 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99350 (0x18416)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 30 18:30:49 2025 GMT
Not After : Nov 19 18:30:49 2025 GMT
Subject: CN=6903aee4-d090
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:81:52:bb:99:11:99:9e:d8:66:c3:11:66:7f:
06:12:4b:22:9e:1c:41:91:80:d6:08:1e:0d:f5:84:
07:02:51:ab:3b:e8:87:00:c0:01:4a:f8:79:f3:c2:
40:fc:08:ad:f5:3e:86:ab:86:9c:89:7b:54:7e:c3:
13:bf:87:98:a8:bc:6c:38:3f:8a:93:5c:e2:c9:57:
ba:12:f3:8f:1a:03:24:02:47:c6:15:7f:42:58:62:
ea:ce:81:bd:c0:c9:56:26:09:1e:eb:09:8a:35:bf:
fd:50:9f:70:2c:ff:2e:0d:00:1b:43:13:35:a1:c6:
27:f4:36:04:4b:ff:0d:24:5b:8a:00:38:2d:4b:80:
a2:cd:89:2d:1c:0b:ec:b0:77:83:c2:43:03:9a:b0:
96:7f:0d:7d:f0:e0:ab:d7:09:d5:01:fc:3c:e0:af:
b0:aa:cf:ac:c2:69:39:c1:86:de:12:3d:16:fb:17:
af:74:f8:76:be:e8:b4:84:66:13:93:7d:30:f2:90:
28:1e:dc:b3:61:9a:d2:0a:57:a2:b9:92:b0:54:81:
07:fe:6e:a2:48:b6:0f:bd:a8:6f:9a:2e:06:b1:0b:
3d:16:00:7f:14:51:26:5e:05:07:75:d7:24:b2:f8:
f0:5b:97:66:b9:5b:ea:0c:d8:bf:7e:57:28:e1:f2:
09:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:C1:51:4E:BE:C9:D4:CF:46:C6:6F:78:12:6F:1E:16:CD:C9:56:59
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/91EDC4BEB5BE11F093D0B0A3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.239.16.0/24
156.239.23.0/24
156.239.55.0/24
156.253.0.0/24
156.253.48.0/22
Signature Algorithm: sha256WithRSAEncryption
00:7d:5a:8c:52:cf:10:de:5e:64:72:e1:9f:6a:ae:99:f8:b7:
21:86:88:e4:44:3a:14:50:76:6b:2c:05:c1:e8:63:da:8d:14:
ca:d3:d7:2a:96:0e:07:f6:b5:58:55:da:e9:8c:46:70:76:13:
db:d4:c2:b5:e5:93:fe:6c:b4:6b:fa:a6:4d:ed:78:98:c7:bf:
3e:3c:53:73:77:2b:22:62:aa:d4:a0:35:fc:13:af:cf:25:aa:
32:13:40:40:56:28:b2:9e:92:87:ae:e0:74:ba:6c:6a:2f:5d:
3b:d0:73:a5:86:10:3d:a0:8d:47:b3:1c:ee:86:4f:d5:3d:9c:
0b:40:d7:56:ef:4a:4c:fb:de:eb:fd:99:8a:a3:3c:96:6f:dd:
98:f4:df:6c:94:e8:a2:f1:0d:c9:d3:d7:a9:df:a2:bb:55:98:
4f:db:dc:2b:fc:54:6b:67:0f:2e:84:fd:be:71:28:77:70:1d:
e4:ff:54:32:a9:cb:45:56:25:29:3c:ca:e5:dc:99:90:71:8d:
e4:a2:00:7d:a1:bf:94:50:34:7e:51:28:6f:33:d7:f2:87:a4:
7c:ae:8e:a4:dc:3c:3d:a8:8f:8f:94:93:ea:d6:97:6f:e2:49:
83:46:b1:b0:6a:a3:5b:27:8a:93:fa:f5:16:e8:d1:00:93:84:
2d:55:cc:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:58:42 2025 by rpki-client