Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C1B3B668B3DE11F0B4BFC8E8DAE4EC9C.roa
File: C1B3B668B3DE11F0B4BFC8E8DAE4EC9C.roa (raw, json)
Hash identifier: haDED+F07GUx60VCvV1L+3YdwzFFcMYhxWYOzyCZBzw=
Subject key identifier: D8:FD:F7:97:BA:13:A2:0D:A5:94:92:EA:8F:B6:31:7D:63:15:90:93
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 018363
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C1B3B668B3DE11F0B4BFC8E8DAE4EC9C.roa
Signing time: Tue 28 Oct 2025 09:16:16 +0000
ROA not before: Tue 28 Oct 2025 09:16:11 +0000
ROA not after: Thu 04 Dec 2025 09:16:11 +0000
asID: 395793
IP address blocks: 156.243.241.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 06 Nov 2025 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99171 (0x18363)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 28 09:16:11 2025 GMT
Not After : Dec 4 09:16:11 2025 GMT
Subject: CN=690089e0-f7f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d6:66:ec:0d:91:31:92:ea:05:dc:93:42:33:
80:94:17:4c:6c:40:12:c6:b5:b4:2d:17:25:9d:de:
43:67:19:19:70:93:64:ba:bf:de:79:32:a6:16:76:
ef:ae:4b:f5:a9:2f:d6:77:56:89:79:a2:4c:2f:ab:
0c:73:ee:9a:af:0b:ae:75:96:81:ac:53:4e:22:24:
62:1b:bc:c9:74:df:ae:c9:ce:60:9a:5b:c3:3b:6e:
b9:9d:36:27:c8:f2:9d:45:69:6f:01:16:f4:07:57:
7e:01:58:09:c9:0c:11:2c:d2:7e:02:a9:83:04:1f:
31:08:d9:3b:8d:6a:0d:c5:fa:5f:2c:52:34:60:19:
43:96:52:83:e6:29:7b:0e:b6:25:14:85:c9:02:8d:
e7:45:e8:ed:18:c6:c6:fc:c5:53:24:d9:82:35:86:
3b:61:a8:e2:61:4c:9d:20:9e:c7:ae:76:1f:83:5b:
c5:a0:59:58:de:51:d7:1d:e8:12:e7:c3:4f:05:62:
04:38:08:aa:e3:e0:41:89:8c:8f:82:0e:0e:12:e0:
37:22:e6:ca:d0:89:ad:25:8e:c2:5f:f8:2d:1a:e4:
64:13:b9:64:10:75:47:a9:6e:d2:96:33:5c:fd:0f:
87:cf:a0:f7:5d:fe:e7:96:b9:a2:4d:81:ac:4a:63:
94:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:FD:F7:97:BA:13:A2:0D:A5:94:92:EA:8F:B6:31:7D:63:15:90:93
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C1B3B668B3DE11F0B4BFC8E8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.243.241.0/24
Signature Algorithm: sha256WithRSAEncryption
27:74:9f:32:42:10:f6:37:28:15:b6:2c:7d:63:a8:9c:61:4e:
c8:06:84:1f:c8:1c:88:3c:4c:4b:1a:4d:1d:89:56:06:c3:5f:
56:0c:22:f4:6d:5e:e8:7b:59:7d:32:67:10:be:48:b6:bc:f4:
22:e3:ff:ea:7e:30:28:ea:0a:a1:34:1a:24:5b:12:50:00:50:
2b:30:aa:54:e4:94:42:dd:51:9c:4a:38:ac:e0:7a:72:c5:91:
62:7a:a7:a4:35:d4:c0:fe:59:23:bd:84:33:5f:ba:89:3f:c1:
76:4b:f2:3d:2b:0b:51:96:13:0e:e5:b7:3e:e7:d2:ed:71:8c:
ab:b2:be:12:b9:81:6a:99:15:56:43:3b:14:8e:f6:45:6f:06:
f8:c7:4f:a1:47:59:d0:70:d0:d2:f7:a3:f8:21:bf:85:55:23:
6a:8a:23:6c:ac:82:f3:73:b5:ed:21:43:30:25:81:6f:bf:c8:
88:71:b8:29:9e:9d:36:50:2d:af:6e:6f:28:10:1d:6b:0e:2c:
40:4a:76:a3:6a:8f:f7:8a:a1:1c:0f:f8:f8:5d:ed:78:32:41:
c5:52:ba:c4:72:7d:3c:3e:2d:56:b2:a0:78:15:19:08:3e:a2:
b3:1b:23:7a:e5:72:a0:3a:7c:14:65:42:cd:37:b8:3c:ad:03:
c8:c2:34:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:58:27 2025 by rpki-client