Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AF423E60B00411F0A9E079B7DAE4EC9C.roa
File: AF423E60B00411F0A9E079B7DAE4EC9C.roa (raw, json)
Hash identifier: 4JFKn7yhUalXQHejpm2PKNSMWDUbD8UhE63J7S/q+6c=
Subject key identifier: 5C:C9:DB:EB:FE:75:FE:80:99:7E:0C:E7:84:ED:B5:39:DF:02:FE:D7
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01824B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AF423E60B00411F0A9E079B7DAE4EC9C.roa
Signing time: Thu 23 Oct 2025 11:37:42 +0000
ROA not before: Thu 23 Oct 2025 11:37:37 +0000
ROA not after: Fri 28 Nov 2025 11:37:37 +0000
asID: 44559
IP address blocks: 156.246.219.0/24 maxlen: 24
156.246.220.0/24 maxlen: 24
156.246.221.0/24 maxlen: 24
156.246.222.0/24 maxlen: 24
156.246.223.0/24 maxlen: 24
156.246.224.0/24 maxlen: 24
156.246.225.0/24 maxlen: 24
156.246.226.0/24 maxlen: 24
156.246.227.0/24 maxlen: 24
156.246.228.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 06 Nov 2025 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98891 (0x1824b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 23 11:37:37 2025 GMT
Not After : Nov 28 11:37:37 2025 GMT
Subject: CN=68fa1386-f6b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c0:7a:d9:95:3d:86:ab:e1:97:3a:86:a3:de:
a6:43:88:0d:80:48:59:3d:a4:a4:f4:8b:56:e6:55:
16:73:4e:f2:b6:c2:d3:e0:b5:07:b0:08:bb:b2:8a:
99:b9:6d:fb:fc:96:98:67:c1:0f:9a:10:54:22:79:
73:98:e9:67:69:e3:07:3d:b3:da:c0:29:90:84:e5:
4c:15:10:51:b7:3a:22:40:23:93:0c:ac:50:fc:ec:
c8:54:63:e1:6e:6c:60:f0:d3:c7:bc:20:9a:31:cd:
72:81:15:11:8b:4c:e9:0d:30:8e:be:df:e1:66:f3:
50:54:d6:62:f9:29:30:24:ac:a7:b2:60:9b:59:cd:
eb:75:af:9f:00:4f:81:6f:57:c0:80:a3:85:82:4d:
e2:14:62:92:72:6a:24:45:de:f6:07:ce:de:e1:82:
d7:dc:3a:3f:ba:89:9a:0c:b5:0e:d6:25:b6:73:b4:
87:fe:54:6b:f6:49:7f:1d:9c:b7:78:f0:fa:52:bf:
c8:90:50:34:87:f6:34:d8:ee:5c:c2:d8:a4:49:ab:
a0:98:a1:bd:cd:8e:ff:c6:a4:ee:94:e9:a7:c4:ef:
2d:e9:10:40:d4:86:3c:fd:42:9d:58:ee:88:3f:0e:
90:5c:45:7f:1c:33:e8:92:70:c2:82:39:41:6f:ec:
b9:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:C9:DB:EB:FE:75:FE:80:99:7E:0C:E7:84:ED:B5:39:DF:02:FE:D7
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AF423E60B00411F0A9E079B7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.219.0-156.246.228.255
Signature Algorithm: sha256WithRSAEncryption
27:61:7e:ea:97:68:fa:5f:24:1c:b7:f6:12:bc:56:8f:c0:79:
da:3b:bf:8f:48:3e:31:49:a5:8a:f3:bd:4b:4f:81:ad:2f:9e:
3a:6a:f2:08:41:3e:ac:c1:d4:3f:15:0e:51:5b:fd:8f:f3:2d:
d5:e7:4f:98:22:a2:80:61:af:4d:97:dc:f7:45:ba:26:7e:e8:
45:56:7c:c1:56:3c:a7:4d:7a:e7:d0:91:b9:bf:5a:07:72:02:
af:ae:46:16:66:9e:19:b0:01:39:09:b7:f0:11:e6:16:cd:8c:
ce:a7:46:f5:73:68:44:08:c5:b5:cc:77:86:3f:13:04:69:f2:
78:4f:c1:4c:57:0f:94:4c:fb:e6:30:1a:67:6b:e6:8e:16:47:
e4:ab:d7:c3:a7:e9:f1:36:a4:71:3f:fd:ce:f1:42:f7:2f:b0:
36:b4:3b:d1:66:0b:f4:1a:15:97:77:dd:65:de:cd:3e:4d:99:
d4:89:29:ca:17:9f:f9:47:5f:b1:ce:e1:84:6d:f1:e2:c6:e1:
ef:e6:01:63:96:5e:45:9d:bf:78:3e:54:84:b6:15:a2:d9:26:
d5:77:1d:8f:85:ee:b3:02:7c:8b:41:23:e8:57:f2:6e:23:3b:
a6:fe:6d:d1:38:20:18:0e:b8:e8:ee:2d:65:c8:e7:31:e0:fe:
0f:4e:e4:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:58:29 2025 by rpki-client