Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/63EE6074631A11F0A938A3DDDAE4EC9C.roa
File: 63EE6074631A11F0A938A3DDDAE4EC9C.roa (raw, json)
Hash identifier: AI8eJZV3aWvwAWsYYGzdV/e2mr5Z8jVqc4Phax9OwkY=
Subject key identifier: 3E:09:F4:CE:0D:CB:ED:60:BD:24:96:5F:05:8D:C0:55:7A:B5:78:76
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0165E6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/63EE6074631A11F0A938A3DDDAE4EC9C.roa
Signing time: Thu 17 Jul 2025 14:29:05 +0000
ROA not before: Thu 17 Jul 2025 14:29:00 +0000
ROA not after: Sun 31 Aug 2025 14:29:00 +0000
asID: 44559
IP address blocks: 45.192.252.0/24 maxlen: 24
45.196.122.0/24 maxlen: 24
45.196.123.0/24 maxlen: 24
45.196.141.0/24 maxlen: 24
45.196.142.0/24 maxlen: 24
45.196.143.0/24 maxlen: 24
45.196.152.0/24 maxlen: 24
45.196.198.0/24 maxlen: 24
45.196.199.0/24 maxlen: 24
45.202.119.0/24 maxlen: 24
45.202.125.0/24 maxlen: 24
45.202.127.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 22 Jul 2025 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91622 (0x165e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 17 14:29:00 2025 GMT
Not After : Aug 31 14:29:00 2025 GMT
Subject: CN=687908b1-8c80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:02:b1:4f:97:f7:19:3c:00:7f:92:f7:98:e2:
25:92:a9:5a:9f:a9:72:1a:80:ad:ad:a8:df:14:b9:
d9:c2:2c:b3:b1:24:85:b7:b0:9b:b9:20:b9:3a:f1:
f4:6d:0c:3d:4c:a4:77:50:65:81:5c:b1:02:b1:8c:
17:e8:21:5b:f6:32:44:5f:3a:4b:2b:26:fc:e4:e9:
f8:b9:bf:84:24:bb:f0:31:9a:aa:a7:1c:59:45:7e:
5f:47:de:24:6d:da:42:41:ba:b8:53:87:27:a5:39:
7e:d6:e5:0a:50:4b:dc:3c:78:a3:a6:b4:10:75:40:
33:aa:3c:36:ff:9a:fc:c1:f3:f8:c7:d6:6a:b2:b8:
0a:b1:9f:a2:44:e9:7a:98:68:02:ed:83:ae:5f:a7:
af:20:a4:64:11:b6:43:18:ef:1b:23:f8:e0:24:9c:
f6:bb:ec:5b:2b:18:01:1c:82:42:f2:8e:94:0a:c9:
cc:4d:6e:77:39:9b:d3:4a:40:b6:08:c4:ac:80:57:
d9:13:1e:b1:46:1f:67:76:90:bc:88:a8:d3:9b:0e:
54:b7:78:19:c8:33:ad:02:36:e3:b2:de:67:04:fd:
53:b3:62:85:15:75:ce:81:4b:8d:06:54:c6:cc:31:
98:78:39:b2:ad:b7:70:d9:e4:d9:65:a0:d6:32:d9:
95:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:09:F4:CE:0D:CB:ED:60:BD:24:96:5F:05:8D:C0:55:7A:B5:78:76
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/63EE6074631A11F0A938A3DDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.252.0/24
45.196.122.0/23
45.196.141.0-45.196.143.255
45.196.152.0/24
45.196.198.0/23
45.202.119.0/24
45.202.125.0/24
45.202.127.0/24
Signature Algorithm: sha256WithRSAEncryption
64:85:51:31:f8:66:3d:a5:c6:82:30:49:56:86:1b:76:bc:a9:
89:1f:4b:ad:15:24:08:b5:7b:06:1f:77:b2:2b:f9:51:1c:f9:
c8:b5:3b:0d:d1:cb:54:69:e9:15:68:7e:58:87:f5:c7:61:5b:
31:b3:f6:1b:58:21:1e:e5:dd:23:ec:4e:28:2c:7a:32:dd:0d:
49:47:69:ed:c2:11:24:57:ad:1a:4d:b8:8c:21:9c:f9:26:56:
74:a9:46:9f:77:d5:77:16:da:b8:15:37:8e:5a:20:7a:ae:b3:
7a:a4:70:26:96:82:e6:17:4b:fb:0a:05:05:7e:4a:b1:7b:27:
1c:95:46:15:24:96:cc:37:8f:5b:31:84:23:00:5e:62:59:6a:
c1:e2:64:58:5c:c6:e1:7b:c0:5f:b4:69:60:47:b3:71:f7:5c:
1d:6b:86:c2:44:90:c8:a1:46:00:e2:74:e4:a6:c1:ad:95:ce:
17:3f:12:be:97:fe:46:9d:f5:9e:33:c4:1a:07:e0:e2:c8:81:
54:9a:c1:fb:9e:f8:28:40:9c:5f:5b:66:41:6c:e0:a9:2d:49:
28:4a:a2:8e:f4:d5:1a:c5:e2:60:a5:38:86:65:3f:97:a7:5f:
9a:3d:27:97:9c:00:02:45:3b:1a:84:25:95:4b:3d:8f:02:da:
d8:9a:af:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 13:49:41 2025 by rpki-client