Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D93BC45E687711F094763DD4DAE4EC9C.roa
File: D93BC45E687711F094763DD4DAE4EC9C.roa (raw, json)
Hash identifier: dnf2CIGLlpIoLY2pQIls+9rE3yW9bR4yd0cmiwaHHdQ=
Subject key identifier: 02:76:63:23:CF:71:1E:11:E2:77:39:11:16:7A:38:DF:8C:1A:A1:AE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016732
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D93BC45E687711F094763DD4DAE4EC9C.roa
Signing time: Thu 24 Jul 2025 10:20:41 +0000
ROA not before: Thu 24 Jul 2025 10:20:36 +0000
ROA not after: Thu 28 Aug 2025 10:20:36 +0000
asID: 44559
IP address blocks: 156.246.239.0/24 maxlen: 24
156.246.240.0/24 maxlen: 24
156.246.241.0/24 maxlen: 24
156.246.242.0/24 maxlen: 24
156.246.243.0/24 maxlen: 24
156.246.244.0/24 maxlen: 24
156.246.245.0/24 maxlen: 24
156.246.246.0/24 maxlen: 24
156.246.247.0/24 maxlen: 24
156.246.248.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 06 Aug 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91954 (0x16732)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 24 10:20:36 2025 GMT
Not After : Aug 28 10:20:36 2025 GMT
Subject: CN=688208f9-358b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:52:51:92:55:64:5b:8d:b8:ba:50:1b:72:93:
f8:b7:8a:20:31:1d:ff:03:6e:45:d7:4e:38:13:8a:
08:58:6e:00:8b:13:15:4f:da:51:78:b0:fe:ea:72:
ca:6b:5d:40:c8:ea:f6:b2:4a:9c:81:eb:a0:b9:a3:
a9:d0:e8:47:be:f4:cc:12:ee:0d:24:87:60:c8:7a:
f7:3c:7a:f3:7b:9c:7c:ad:fc:48:ca:fd:d8:93:ec:
7b:44:df:62:35:b3:df:80:7b:ab:99:e8:4d:23:71:
3b:c7:13:14:b8:18:a6:43:89:ed:a8:90:3c:b8:23:
07:01:49:b2:f1:5a:dd:7c:bc:94:72:55:39:3c:2b:
25:7f:08:fc:90:cb:15:7d:08:d5:f9:a3:56:cc:3c:
dc:8f:3d:69:e9:61:9f:81:c4:3b:d4:d9:81:32:69:
db:9a:34:d5:0e:03:e2:30:05:dd:d3:d4:4f:d3:22:
fc:16:51:1c:5e:69:96:15:47:46:05:c7:6d:03:d1:
05:7e:74:18:d6:ec:bb:9d:b7:72:a2:38:0a:f4:5f:
38:9f:39:d3:f9:7c:76:55:21:8e:f6:03:b6:fe:9f:
67:e6:03:4a:9b:98:0a:43:b1:01:67:de:c3:ec:6a:
06:49:33:1f:ee:bf:e4:0f:3e:97:ec:29:83:a2:63:
a2:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:76:63:23:CF:71:1E:11:E2:77:39:11:16:7A:38:DF:8C:1A:A1:AE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D93BC45E687711F094763DD4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.239.0-156.246.248.255
Signature Algorithm: sha256WithRSAEncryption
b1:1b:58:59:75:7d:eb:fb:d8:7f:30:1b:40:c9:30:57:d8:d6:
73:53:26:dc:fc:d7:96:4a:f1:ed:e9:54:aa:b3:95:b4:a5:b5:
26:26:47:98:39:bb:5d:fe:6c:50:01:2e:57:2c:99:ae:05:36:
2b:70:67:e4:25:72:c4:43:70:3b:4e:bb:7e:b7:7e:c5:93:45:
4c:06:ee:43:1d:bd:0d:b9:9c:1b:3d:3e:f4:74:50:2d:d4:9a:
8c:89:b6:21:b9:90:33:06:38:a7:20:e6:05:96:08:e5:1b:b8:
d8:d1:0a:ec:28:df:57:79:3e:ca:0e:8d:3e:39:b2:21:36:32:
d8:a7:f4:6d:6a:67:30:f5:f8:6d:2d:e3:79:56:48:28:73:58:
70:14:81:7f:56:6d:00:04:15:83:00:a8:c2:5d:3f:a5:fa:78:
74:17:2b:42:a6:d8:a0:ad:40:4a:3d:41:dd:28:0b:91:85:c9:
fb:5d:01:0e:27:a5:c1:fa:b1:d1:f7:2b:d5:22:83:10:2d:42:
54:4e:73:e1:9b:78:2a:b4:a4:60:66:95:b1:42:01:04:c8:47:
3d:8a:c2:09:fe:0f:08:e6:07:1e:e6:1f:a1:32:7e:73:88:45:
24:65:50:d5:8d:8f:d2:a1:87:e2:6c:7a:f2:93:88:73:e2:4a:
17:dc:63:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 08:24:33 2025 by rpki-client