Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/086B5CE0A28811F0BBE76CA4DAE4EC9C.roa
File: 086B5CE0A28811F0BBE76CA4DAE4EC9C.roa (raw, json)
Hash identifier: 6dHSwhhgzFc7sBigBV4Sfv2j1pjuuw6ZFlRtd75+vVM=
Subject key identifier: 28:FC:F9:2C:6A:6B:1E:91:EA:86:DD:05:57:A1:F6:A9:44:63:0E:30
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017EDE
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/086B5CE0A28811F0BBE76CA4DAE4EC9C.roa
Signing time: Mon 06 Oct 2025 07:42:39 +0000
ROA not before: Mon 06 Oct 2025 07:42:34 +0000
ROA not after: Sat 08 Nov 2025 07:42:34 +0000
asID: 147176
IP address blocks: 45.195.152.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98014 (0x17ede)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 6 07:42:34 2025 GMT
Not After : Nov 8 07:42:34 2025 GMT
Subject: CN=68e372ef-6484
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:78:6c:51:0b:9b:8d:9c:f9:cc:6f:13:c1:0d:
a4:cf:bc:76:6a:0b:3b:f4:18:6e:66:c6:f4:bc:ca:
b4:43:e0:66:9d:7f:e9:a1:5e:ab:50:43:3c:a0:c7:
f8:aa:38:c5:52:89:f6:e1:4a:13:aa:68:0c:c5:08:
68:8a:01:0e:d8:0f:08:cf:6b:6e:7a:48:d8:9d:bc:
b2:46:05:c3:ad:8e:4c:c9:dd:00:ee:30:f3:75:f4:
96:e0:ae:5f:d1:07:14:c9:31:32:27:e1:a4:1b:22:
e4:32:bd:5c:10:c9:12:68:04:29:c5:f0:dc:2e:39:
f4:0a:99:76:4e:f8:11:6a:ed:d3:4d:12:f8:24:df:
61:93:0d:25:86:79:83:bf:4d:64:b9:21:24:e1:ac:
62:08:fc:32:94:a0:4b:7d:17:96:60:75:36:79:98:
eb:9e:cb:b2:a4:27:51:e2:da:52:f3:c9:32:d0:af:
5c:c2:ea:5f:ba:70:1f:9b:15:a7:a9:ee:bb:ac:ce:
c7:fa:e4:57:4e:07:d1:22:29:31:71:87:55:ac:e4:
ec:95:d7:fd:f9:6a:be:a8:74:09:c2:7a:69:23:95:
f6:69:62:50:eb:85:0e:15:2b:a2:a8:74:1d:f9:d1:
ba:5b:3c:03:18:f9:b8:66:90:ad:17:e0:9b:b2:f7:
2f:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:FC:F9:2C:6A:6B:1E:91:EA:86:DD:05:57:A1:F6:A9:44:63:0E:30
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/086B5CE0A28811F0BBE76CA4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.152.0/24
Signature Algorithm: sha256WithRSAEncryption
91:98:97:c3:7d:41:e4:0b:bd:d7:0d:85:45:12:2d:0c:59:f7:
c3:1e:57:e9:96:97:15:ad:13:91:9d:45:0f:1f:c9:af:c1:af:
4e:1a:b0:2c:69:b5:f2:af:c5:ff:5d:29:4f:e2:b8:d2:32:0e:
2d:fc:d2:d9:ca:9f:22:d2:28:ac:f0:55:99:ee:2c:64:d1:04:
f0:7f:cd:3e:a8:45:fd:f2:aa:ea:4b:c4:ce:db:3a:9a:82:06:
91:46:9f:ad:0e:75:d5:c4:4c:e3:55:a3:22:10:99:e3:ff:a9:
99:e2:4d:37:05:c7:73:18:2e:b7:45:b5:ea:07:15:d5:68:f5:
bc:a5:c5:42:fa:e8:8c:4f:10:39:c7:aa:78:4a:d8:60:9c:9a:
59:62:57:c5:76:90:7c:9c:63:21:b4:c1:e0:a7:6b:c6:03:19:
d4:17:72:db:98:85:c3:11:8c:64:0a:55:f8:44:9a:8d:78:a8:
d5:c5:15:99:35:7f:f1:23:28:c8:b9:25:ad:9b:29:a8:dc:0d:
84:72:f6:42:cd:58:a3:19:e0:0f:82:41:9e:6c:71:98:a8:99:
fa:28:1b:1e:7d:8b:7b:47:2f:69:76:44:f7:2b:7f:98:26:aa:
87:5f:5f:5e:58:f7:29:11:b3:a8:d8:31:3e:99:73:9d:72:e0:
c0:e5:22:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:51:02 2025 by rpki-client