Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B14EFF5CB31711F0872A89E5DAE4EC9C.roa
File: B14EFF5CB31711F0872A89E5DAE4EC9C.roa (raw, json)
Hash identifier: 1Y415mDKJr2YWM+xAfh+uPCBW3ut4qfGeq7YkAP8p18=
Subject key identifier: 7E:B7:AC:46:50:0A:23:60:95:03:18:AD:A3:1B:24:15:52:FD:D3:1E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0182C3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B14EFF5CB31711F0872A89E5DAE4EC9C.roa
Signing time: Mon 27 Oct 2025 09:31:19 +0000
ROA not before: Mon 27 Oct 2025 09:31:14 +0000
ROA not after: Sat 08 Nov 2025 09:31:14 +0000
asID: 206283
IP address blocks: 156.238.85.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Nov 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99011 (0x182c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 27 09:31:14 2025 GMT
Not After : Nov 8 09:31:14 2025 GMT
Subject: CN=68ff3be7-0920
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:1e:87:cc:05:6a:78:95:e0:95:b7:86:fa:1f:
49:8a:e0:47:c8:5d:f7:4d:cd:16:3f:89:87:80:80:
22:26:8d:a0:14:d9:3e:35:6f:c9:f2:8f:22:08:0e:
b8:04:2e:02:dd:68:b2:14:e1:00:d0:e5:9c:d2:04:
df:64:31:a7:9e:1f:b6:78:4d:ef:65:e0:8a:8d:29:
7b:8f:d4:1e:12:66:70:f8:fb:07:c3:4e:94:34:4c:
13:10:8b:90:63:c4:67:50:ca:b7:ca:8a:fb:c1:c1:
95:99:ed:d9:48:68:2c:c0:08:f4:18:8d:db:4c:0a:
2d:51:e5:e1:dd:0c:f1:7b:02:2c:13:a1:bf:8a:e9:
8a:ec:1f:2c:4a:f5:32:b1:2c:18:c1:8f:7c:09:9a:
18:2d:2b:ff:72:20:af:01:d5:d5:d5:f9:f3:e8:90:
c6:08:51:0d:04:d8:e5:ad:ce:4a:60:f2:9c:63:c6:
bb:23:b7:43:c7:61:ff:da:f2:60:6c:fa:4b:b6:ec:
2e:37:a7:53:32:4c:a7:cf:cc:7b:ff:7a:85:ec:d6:
93:ec:ed:de:03:1e:b2:88:6c:03:c1:0b:6d:26:59:
00:af:13:f3:8c:43:cd:d8:7b:31:28:95:75:72:ac:
fd:9a:3b:02:b3:88:13:66:e5:f2:13:e7:9a:c5:eb:
ea:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:B7:AC:46:50:0A:23:60:95:03:18:AD:A3:1B:24:15:52:FD:D3:1E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B14EFF5CB31711F0872A89E5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.85.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:3e:a3:b9:68:4f:7c:cc:fa:db:44:cb:d2:6d:8b:c8:39:82:
94:1c:60:47:3f:41:21:ae:e5:4b:26:3c:cf:22:e2:fd:20:f0:
b2:15:84:21:3d:8b:38:c3:27:75:52:71:58:c7:14:14:26:8a:
55:0a:29:1f:3a:93:42:fb:c1:74:d6:01:47:ee:86:41:e0:0d:
87:cc:36:cd:7c:b5:f5:61:31:b0:60:3e:fe:1e:0f:11:6b:e2:
57:a6:fb:d1:e9:a7:9a:43:a2:65:31:54:0e:28:c0:21:a0:e4:
13:c6:f8:28:d4:8d:08:13:7b:8c:21:89:4d:df:e8:49:b9:2f:
86:d5:0d:c2:93:96:2b:ce:18:5b:42:c0:c7:ee:7b:06:8c:57:
8a:0b:08:63:5f:38:d1:b1:96:94:8c:63:4d:22:ff:b9:f8:8f:
db:4a:55:d2:22:83:f8:f5:b6:c1:cf:55:9f:89:49:4d:23:46:
27:93:76:3f:ee:87:67:53:88:98:de:9b:0a:6e:0c:24:75:b0:
3c:de:c8:cf:04:1a:e3:9a:aa:58:f6:20:a1:01:04:a5:ee:c7:
c9:34:0a:16:ad:9f:d2:a8:2a:5d:b5:11:4b:59:98:d8:f5:25:
87:80:4e:29:fa:e1:e4:3b:59:ff:09:c0:9d:11:15:30:e2:a9:
73:d2:c5:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 13:41:19 2025 by rpki-client