Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DD2CEA8A687B11F0A8E116EEDAE4EC9C.roa
File: DD2CEA8A687B11F0A8E116EEDAE4EC9C.roa (raw, json)
Hash identifier: Rds7nizhr+5sqifd0thfM/YgLcyGeBABf4sE2uYrHl4=
Subject key identifier: 2B:1C:21:DF:E8:80:00:23:D5:E6:07:C2:1E:4B:E1:6B:F3:CB:69:7E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01673F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DD2CEA8A687B11F0A8E116EEDAE4EC9C.roa
Signing time: Thu 24 Jul 2025 10:49:25 +0000
ROA not before: Thu 24 Jul 2025 10:49:20 +0000
ROA not after: Thu 28 Aug 2025 10:49:20 +0000
asID: 44559
IP address blocks: 156.246.199.0/24 maxlen: 24
156.246.200.0/24 maxlen: 24
156.246.201.0/24 maxlen: 24
156.246.202.0/24 maxlen: 24
156.246.203.0/24 maxlen: 24
156.246.204.0/24 maxlen: 24
156.246.205.0/24 maxlen: 24
156.246.206.0/24 maxlen: 24
156.246.207.0/24 maxlen: 24
156.246.208.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 08 Aug 2025 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91967 (0x1673f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 24 10:49:20 2025 GMT
Not After : Aug 28 10:49:20 2025 GMT
Subject: CN=68820fb5-0f38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:6b:b2:96:f1:ea:88:1e:45:3a:2c:69:17:4f:
ec:35:35:09:f6:49:4b:b6:29:fc:c0:a6:6b:06:b7:
65:a2:c6:7f:04:d3:cb:cf:43:b0:a9:7c:b0:6f:a6:
bf:ea:53:27:29:ea:b5:67:43:e3:a9:5f:8c:cf:a0:
43:ab:ac:42:71:bf:9a:de:9e:e4:f8:2a:80:95:90:
4f:6d:a1:26:41:ab:ca:67:48:04:76:cd:23:55:ce:
a0:32:f8:ea:b9:bb:36:75:3c:a3:73:f0:80:12:83:
52:ab:dc:58:2f:5a:90:16:31:89:1b:1c:0e:38:29:
11:1c:7f:6e:f1:a8:60:55:d1:26:88:59:e5:2e:04:
70:da:fc:62:66:3d:40:96:55:f3:6c:e9:6f:d9:ca:
ae:87:d5:ef:a6:59:b1:d4:5d:b1:a9:16:5a:99:ee:
7b:60:3e:f3:d7:45:de:6a:40:a1:8e:09:ad:67:7e:
e4:02:a5:29:43:a8:ca:f6:d5:7b:9f:80:50:38:d8:
f9:59:bd:53:6a:6e:a1:6b:65:ca:20:09:6b:1b:b7:
dc:8e:4d:90:c4:37:35:82:8f:b2:0e:95:ac:23:13:
0e:e2:c6:b2:74:2b:9f:c6:e9:d7:1e:e8:97:a3:7c:
36:ed:5d:18:8b:fd:af:b9:57:15:df:55:70:73:0d:
3e:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:1C:21:DF:E8:80:00:23:D5:E6:07:C2:1E:4B:E1:6B:F3:CB:69:7E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DD2CEA8A687B11F0A8E116EEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.199.0-156.246.208.255
Signature Algorithm: sha256WithRSAEncryption
81:c4:5a:dd:f5:8f:17:73:89:61:c1:d6:ef:c9:1c:3e:9d:36:
4f:8a:a7:8b:fc:51:6a:d4:a5:76:bf:a3:a8:ae:1a:c6:24:5f:
ee:ce:fa:86:a6:41:f3:37:66:13:a6:9b:f8:c2:10:11:f4:b4:
f1:e0:03:83:6c:19:58:3f:52:e2:66:c6:b6:7e:97:02:c0:df:
03:99:ee:79:7b:21:be:37:4a:33:8a:be:fc:b3:4a:d4:90:0c:
30:d2:61:d5:58:1b:84:cb:b0:95:dd:71:e7:21:de:4b:6d:51:
f5:67:59:e5:6d:81:ad:e7:73:3e:f4:70:d7:cc:cd:d0:0a:61:
12:33:81:08:09:8c:5f:08:c6:b2:17:c2:e2:0a:0a:0b:97:b9:
ff:76:d8:0e:23:04:70:b4:7a:e6:ba:6a:5f:5e:d6:25:6b:24:
d8:f2:56:60:e6:f7:29:fc:ae:a2:2c:88:79:7a:01:69:8b:42:
44:35:bf:b9:0d:fb:03:bf:31:ac:ca:16:29:c9:35:b2:70:28:
34:a8:2b:aa:b1:b7:e7:71:52:f9:bf:08:19:4a:a4:ba:61:2d:
30:b6:04:56:70:d0:02:48:b2:b3:a4:eb:0b:95:c6:c0:ef:04:
a8:f3:83:2d:09:1f:a6:5d:95:6b:4d:5e:b2:52:e2:2c:20:5a:
51:9e:c9:47
-----BEGIN CERTIFICATE-----
MIIFiTCCBHGgAwIBAgIDAWc/MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNzI0MTA0OTIwWhcNMjUwODI4MTA0OTIwWjAYMRYw
FAYDVQQDEw02ODgyMGZiNS0wZjM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAz2uylvHqiB5FOixpF0/sNTUJ9klLtin8wKZrBrdlosZ/BNPLz0OwqXyw
b6a/6lMnKeq1Z0PjqV+Mz6BDq6xCcb+a3p7k+CqAlZBPbaEmQavKZ0gEds0jVc6g
Mvjqubs2dTyjc/CAEoNSq9xYL1qQFjGJGxwOOCkRHH9u8ahgVdEmiFnlLgRw2vxi
Zj1AllXzbOlv2cquh9Xvplmx1F2xqRZame57YD7z10XeakChjgmtZ37kAqUpQ6jK
9tV7n4BQONj5Wb1Tam6ha2XKIAlrG7fcjk2QxDc1go+yDpWsIxMO4saydCufxunX
HuiXo3w27V0Yi/2vuVcV31Vwcw0+SQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFCsc
Id/ogAAj1eYHwh5L4Wvzy2l+MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9ERDJDRUE4QTY4N0IxMUYwQThFMTE2RUVEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBACc9scDBACc9tAwDQYJKoZI
hvcNAQELBQADggEBAIHEWt31jxdziWHB1u/JHD6dNk+Kp4v8UWrUpXa/o6iuGsYk
X+7O+oamQfM3ZhOmm/jCEBH0tPHgA4NsGVg/UuJmxrZ+lwLA3wOZ7nl7Ib43SjOK
vvyzStSQDDDSYdVYG4TLsJXdcech3kttUfVnWeVtga3ncz70cNfMzdAKYRIzgQgJ
jF8IxrIXwuIKCguXuf922A4jBHC0eua6al9e1iVrJNjyVmDm9yn8rqIsiHl6AWmL
QkQ1v7kN+wO/MazKFinJNbJwKDSoK6qxt+dxUvm/CBlKpLphLTC2BFZw0AJIsrOk
6wuVxsDvBKjzgy0JH6ZdlWtNXrJS4iwgWlGeyUc=
-----END CERTIFICATE-----
Generated at Wed Aug 6 14:21:22 2025 by rpki-client