Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/00B8E0B0793111F09FFA17C0DAE4EC9C.roa
File: 00B8E0B0793111F09FFA17C0DAE4EC9C.roa (raw, json)
Hash identifier: zmxiYx9XXYk0AqSurhnwTHLFwMTRNxbKQgeh4qnLFuQ=
Subject key identifier: C0:08:EE:84:DC:A8:3E:10:FE:4F:E5:63:5F:F6:39:AD:3C:09:FC:83
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016AFD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/00B8E0B0793111F09FFA17C0DAE4EC9C.roa
Signing time: Thu 14 Aug 2025 17:06:22 +0000
ROA not before: Thu 14 Aug 2025 17:06:18 +0000
ROA not after: Fri 05 Sep 2025 17:06:18 +0000
asID: 27951
IP address blocks: 45.195.68.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Aug 2025 00:26:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92925 (0x16afd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 14 17:06:18 2025 GMT
Not After : Sep 5 17:06:18 2025 GMT
Subject: CN=689e178e-22b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:8e:d9:7c:ce:04:e8:dc:d7:2b:74:7d:c9:a3:
52:6e:a2:75:5c:6c:5c:c1:db:f9:d1:3b:c4:67:90:
d2:95:f2:90:7b:84:81:e9:bb:3e:ac:d2:af:3e:3b:
fe:38:eb:d1:05:12:7f:73:67:05:f2:1d:fa:21:96:
cc:5f:ae:42:bc:fa:94:11:06:8d:54:7d:5a:9e:2f:
d1:f8:c8:2f:94:91:98:24:08:c4:af:52:9c:25:d1:
2b:b2:48:7c:73:73:3f:56:4a:f6:8b:d1:aa:53:ee:
cd:ee:b1:2e:06:d5:8a:07:48:2a:d7:01:b5:70:30:
75:71:09:b1:ba:f7:f8:1d:40:e2:c3:95:a9:21:c0:
97:04:bb:78:1f:ca:27:09:62:68:f7:d4:26:96:f6:
a6:6b:38:dc:af:b3:e6:cb:a2:eb:95:4f:86:6d:b7:
60:a3:50:a4:dd:00:6e:4d:97:ea:a5:49:56:4f:50:
86:7d:d6:76:69:49:bf:ed:90:11:2a:20:47:53:d1:
a3:60:de:20:0a:a6:6e:a1:30:6e:38:28:70:17:83:
b2:27:e0:84:cd:53:19:09:5a:a3:04:fa:75:51:0e:
b3:c9:83:b2:a9:72:4f:c4:eb:ed:b1:ec:e9:6a:53:
62:fe:bf:ae:69:2a:f0:ac:88:53:82:4f:fb:6b:a6:
f0:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:08:EE:84:DC:A8:3E:10:FE:4F:E5:63:5F:F6:39:AD:3C:09:FC:83
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/00B8E0B0793111F09FFA17C0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.68.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:b8:5b:89:5e:92:21:10:ad:d6:3b:8d:6e:5b:89:0f:fa:30:
9c:08:4a:5a:a8:b7:50:a2:ae:d5:be:ef:b4:a8:b7:1f:e9:76:
cc:b9:91:8f:06:72:78:c8:68:60:9e:5e:50:88:4f:4a:06:f6:
39:be:b5:8b:4c:e3:df:ba:f7:19:38:61:e4:03:c3:3d:24:31:
fd:6f:1e:8c:37:c3:df:6f:f2:ce:e6:1e:99:55:27:7e:22:47:
03:3d:77:7c:7a:59:7c:c6:82:68:f7:a7:65:05:fb:64:17:c3:
d7:3f:1e:18:00:03:3e:90:03:d8:49:95:05:71:fd:6e:4a:2d:
19:d3:41:9d:75:e4:5f:c6:b1:07:37:8e:c0:02:1b:84:37:68:
a2:4e:b7:f6:86:21:59:22:cf:00:c5:72:11:61:d4:f4:93:7f:
2a:94:99:d9:8d:85:d6:d7:54:1d:cc:6b:e0:1c:d8:96:3c:41:
b5:54:53:e3:17:4b:88:1c:a8:41:8f:87:3a:f5:45:26:19:0a:
c7:c6:32:c8:56:66:00:88:0e:43:28:e8:8f:87:e6:7b:85:d9:
d0:1b:76:d1:cd:1d:e5:cb:2e:e0:38:48:67:1a:d3:d7:1c:4a:
51:1f:64:4b:27:aa:7d:b0:4c:70:c1:0b:3b:a4:ec:75:d4:0b:
da:12:29:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 21 07:24:47 2025 by rpki-client