Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1974B27487EA11F0BF98B2EEDAE4EC9C.roa
File: 1974B27487EA11F0BF98B2EEDAE4EC9C.roa (raw, json)
Hash identifier: BEn6RvWHdgBE6DjR6QxOiGSPfsoUAaOmECIt1DwDAqs=
Subject key identifier: 1D:E1:C0:31:19:1D:99:AD:B7:CB:2B:AE:06:1C:1D:3B:BA:E0:F6:AA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017658
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1974B27487EA11F0BF98B2EEDAE4EC9C.roa
Signing time: Tue 02 Sep 2025 10:46:37 +0000
ROA not before: Tue 02 Sep 2025 10:46:31 +0000
ROA not after: Sat 08 Nov 2025 10:46:31 +0000
asID: 215691
IP address blocks: 45.198.54.0/24 maxlen: 24
45.198.55.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95832 (0x17658)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 2 10:46:31 2025 GMT
Not After : Nov 8 10:46:31 2025 GMT
Subject: CN=68b6cb0d-d902
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:01:39:f7:35:c4:17:5e:b7:20:46:a5:f7:39:
24:d1:19:83:e2:ab:ef:45:48:4d:9a:7e:e9:24:5b:
45:1e:92:ca:93:27:98:2b:b2:4c:4e:c9:ad:88:b4:
61:2c:55:3d:07:1d:e2:6f:3b:7b:4c:55:4d:00:aa:
30:96:88:07:31:f4:f0:91:7f:48:a0:77:8a:50:72:
24:0a:3a:45:3a:ee:45:df:15:37:8b:a7:3f:3e:eb:
3c:40:c4:7a:94:52:0a:dc:31:d1:de:93:af:36:8a:
03:ef:ed:52:53:47:9e:15:f0:f2:f5:52:5c:9d:18:
ed:ec:a2:cf:79:08:b2:9b:29:fa:a1:52:67:bd:e2:
f0:d0:32:d5:cd:b9:46:c5:ff:6e:dd:55:8f:df:3f:
b3:b6:bd:f1:5c:5c:a6:65:17:8a:24:bc:95:94:31:
fc:87:ec:fd:4f:5b:44:46:36:1b:5b:9a:02:dc:cb:
18:1f:1b:2b:fa:1c:35:66:0e:93:a1:9e:22:60:db:
03:bf:c1:51:39:05:ef:a1:7c:38:45:49:1b:28:49:
21:5a:25:e3:19:24:e5:4a:15:fb:e1:f2:d7:43:d1:
55:df:97:a0:d3:7b:a8:06:23:e0:46:d0:d5:6e:4f:
ad:07:98:9f:f1:3c:60:d7:04:33:6f:ae:0d:29:2c:
5a:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:E1:C0:31:19:1D:99:AD:B7:CB:2B:AE:06:1C:1D:3B:BA:E0:F6:AA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1974B27487EA11F0BF98B2EEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.54.0/23
Signature Algorithm: sha256WithRSAEncryption
08:41:34:bd:96:50:bc:07:71:46:e9:21:f1:7b:ed:14:c9:28:
f1:43:82:51:78:6a:0a:d2:f6:4b:dc:d4:83:2d:4a:06:32:0e:
ce:d2:73:ae:28:09:36:87:c5:0b:07:c6:6d:46:9f:3f:51:33:
4b:fc:52:1a:ed:a9:c2:30:a0:72:02:3e:2d:6b:6e:88:e2:6a:
2a:8b:f1:dc:c4:a0:81:0e:06:98:2a:b6:b5:c2:62:e3:09:c6:
17:49:df:77:89:b7:7a:a5:ec:b4:62:15:44:61:6e:73:ea:05:
df:c2:3d:63:05:86:17:2e:d9:c5:06:15:16:cb:ec:ca:cc:d1:
8c:06:7e:14:45:1d:10:f6:e0:07:ac:2b:09:2c:82:b1:23:08:
4e:61:72:ec:d1:b9:1c:1e:98:86:01:12:e8:5f:1e:89:a8:a9:
0f:40:10:e4:13:e7:07:cb:6d:e9:b3:14:cb:cc:81:d3:4b:c9:
77:7b:63:27:80:b0:ee:08:db:53:a6:09:5e:06:fa:ed:62:a2:
7e:43:b5:2f:51:4f:69:a9:6e:97:65:e5:a5:25:9f:80:69:51:
18:af:31:0e:06:86:ae:c2:41:d7:5a:8f:62:be:bd:c8:e8:11:
64:0d:7b:47:d2:fc:7c:59:70:e5:c0:f0:be:3c:ae:91:8c:7c:
60:7c:85:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 3 18:20:57 2025 by rpki-client