Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F766C8DC693C11F08BF734D9DAE4EC9C.roa
File: F766C8DC693C11F08BF734D9DAE4EC9C.roa (raw, json)
Hash identifier: 8aE4upLYp5Uglrfc/iAC8YhK3yYtrTpRQqCBIFqwNN8=
Subject key identifier: B4:DB:93:68:D6:FB:F7:CF:C9:5E:07:B9:C0:EB:6C:79:91:EC:29:18
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0167B0
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F766C8DC693C11F08BF734D9DAE4EC9C.roa
Signing time: Fri 25 Jul 2025 09:51:42 +0000
ROA not before: Fri 25 Jul 2025 09:51:38 +0000
ROA not after: Sat 30 Aug 2025 09:51:38 +0000
asID: 398704
IP address blocks: 156.245.244.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 07 Aug 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92080 (0x167b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 25 09:51:38 2025 GMT
Not After : Aug 30 09:51:38 2025 GMT
Subject: CN=688353ae-d51a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:f6:a3:9a:ab:70:62:f2:7f:97:32:d2:f2:a7:
eb:c6:3b:dc:c5:27:fa:e4:83:9e:d5:73:20:fd:b2:
50:88:11:fa:d9:86:28:9c:c3:14:5f:da:44:7d:52:
11:11:29:61:da:96:6b:63:87:a1:4e:c0:df:ee:61:
ff:b8:d0:7e:36:41:67:ec:65:4d:fc:8c:6f:15:d1:
16:b4:6f:95:79:5f:57:24:be:7a:09:d7:36:a0:06:
9f:a1:fb:11:20:ad:64:93:ab:00:79:1d:e4:d4:89:
5c:13:45:d1:6a:04:68:d5:d7:fa:2e:c1:20:ee:0c:
18:01:c5:bd:2d:b9:70:0d:02:5d:9a:64:ab:b5:fa:
e9:6b:86:85:3b:5b:6f:7d:90:1f:4f:87:df:28:8a:
c6:49:be:9e:7e:2e:47:a4:20:21:e8:21:e5:dd:33:
5e:da:84:3c:17:09:1b:30:5e:44:ad:f2:6e:9a:d2:
06:81:71:f0:1d:9d:52:76:b4:36:bc:0e:c0:26:ed:
90:f6:e1:5c:dc:f5:99:6d:a4:49:59:e0:7f:03:a0:
7a:7a:ab:74:5e:d5:d6:6a:8e:76:f9:dd:41:2c:a7:
91:40:a4:93:43:14:44:a6:ab:b3:c1:05:a6:2d:0e:
88:77:1f:e4:b0:81:91:53:ef:97:19:69:50:0a:b1:
31:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:DB:93:68:D6:FB:F7:CF:C9:5E:07:B9:C0:EB:6C:79:91:EC:29:18
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F766C8DC693C11F08BF734D9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.244.0/22
Signature Algorithm: sha256WithRSAEncryption
72:d1:ac:cd:e4:87:46:c5:95:f8:df:a5:45:a3:cd:07:b2:b2:
ff:cb:4d:ce:4d:a1:eb:f7:9e:81:fb:69:94:5d:74:ae:45:21:
64:81:16:fe:3e:57:99:16:38:ae:f8:a9:c7:7a:62:32:92:77:
59:b6:52:bc:cb:80:28:21:9e:93:85:cb:47:92:76:49:f3:45:
3a:ba:e4:26:99:26:16:d2:9b:0a:dd:92:e9:1f:1d:53:72:08:
6b:ea:dc:e5:1c:36:d5:4e:35:f1:e4:0f:e3:df:01:36:3b:34:
c8:cd:28:83:42:f2:f1:cd:3a:16:6d:c7:88:e7:13:19:30:f5:
02:ad:7c:27:b0:bb:bb:a7:70:25:84:c5:6a:3e:77:07:83:f9:
a2:01:59:53:cd:43:ed:df:32:52:f1:d4:e6:7a:90:9f:6d:dd:
36:0e:da:67:28:08:59:97:89:af:fe:bf:70:f9:b2:41:03:52:
ee:a8:3f:f4:d4:4b:f3:f1:dc:ba:f1:c2:a1:e7:f3:98:af:19:
da:5f:62:c9:4f:5b:27:c4:6a:a6:b5:2f:ce:1f:3c:dc:d5:40:
20:15:8d:36:ec:70:96:71:47:42:9b:20:ed:29:5e:ea:3f:60:
2c:6b:ba:3d:57:7a:b4:a5:b8:20:48:92:42:45:dd:91:05:92:
8d:3c:6c:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 00:47:22 2025 by rpki-client