Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/197DECA6A81311F083DC208CDAE4EC9C.roa
File: 197DECA6A81311F083DC208CDAE4EC9C.roa (raw, json)
Hash identifier: uU4mJalm0YS7xDZt9yJE2RtKOfZ9JVvHCKSUyfJkseY=
Subject key identifier: 99:22:A6:5E:AC:76:A7:4D:07:EC:3C:94:4F:DF:F9:5C:C2:05:11:64
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 018049
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/197DECA6A81311F083DC208CDAE4EC9C.roa
Signing time: Mon 13 Oct 2025 09:00:44 +0000
ROA not before: Mon 13 Oct 2025 09:00:39 +0000
ROA not after: Sun 19 Oct 2025 09:00:39 +0000
asID: 138985
IP address blocks: 45.199.187.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Oct 2025 09:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98377 (0x18049)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 13 09:00:39 2025 GMT
Not After : Oct 19 09:00:39 2025 GMT
Subject: CN=68ecbfbc-db1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:99:55:ed:53:0f:fc:11:1b:e0:78:ca:22:7e:
6e:92:63:f6:4e:4c:6c:42:eb:fd:b7:0e:55:f4:4c:
59:96:3f:42:bd:2c:ee:6e:a1:03:ca:aa:f1:98:3b:
f8:ed:15:88:f9:a4:16:62:9e:ab:ba:66:93:90:ed:
8e:66:35:3d:bf:db:d0:e1:98:3e:61:1d:e9:ea:50:
43:a5:00:43:12:a8:26:62:eb:58:81:05:62:7c:02:
ab:82:32:c3:19:42:81:f7:c3:45:94:9c:73:f5:48:
96:0b:f8:0c:b1:06:9f:16:d1:1e:5c:81:5f:85:93:
01:c8:f9:b6:b9:20:24:dd:3b:0d:58:ee:f7:2d:7e:
47:40:33:52:a9:24:f8:58:80:ef:c1:1f:f0:d6:b3:
26:8b:e5:66:91:1b:ee:6d:d3:b2:dd:76:51:93:5b:
3b:f6:d4:8a:b8:59:4d:78:2d:26:4c:95:f3:b2:ed:
05:9e:86:df:bd:60:1a:7e:70:8f:39:cf:04:69:73:
ae:3f:df:7b:cf:35:05:4c:1c:9a:bf:1c:9e:94:67:
89:bd:05:6d:9d:a3:dc:0a:eb:b3:17:94:78:e1:e1:
85:b9:13:87:3a:c6:a2:8a:3f:49:57:7a:a6:d2:51:
26:74:28:f9:23:bb:8a:d0:e0:2a:06:63:17:fc:89:
39:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:22:A6:5E:AC:76:A7:4D:07:EC:3C:94:4F:DF:F9:5C:C2:05:11:64
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/197DECA6A81311F083DC208CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.187.0/24
Signature Algorithm: sha256WithRSAEncryption
04:56:49:02:7a:78:71:83:94:d1:ea:47:b0:fc:92:ad:eb:37:
cc:54:d9:a1:8d:c2:7d:9b:ce:7f:05:ec:03:bf:2c:06:0b:a3:
1d:cc:20:fa:ad:0a:62:28:71:2e:d7:ab:c6:54:d9:d0:58:6a:
9d:3a:b9:31:36:02:e5:bb:cd:db:99:1f:91:53:3b:e4:ae:68:
c6:0a:b4:00:fa:34:9a:80:eb:f0:f0:cf:1a:ec:b8:ad:09:6f:
7c:50:07:28:3c:f7:e4:cb:c8:7f:94:ba:53:49:86:4b:5a:ba:
bf:f3:6d:fd:7e:da:ca:73:65:1d:e0:3f:ab:4f:d6:d4:31:7a:
c4:e0:42:54:86:8f:5d:ca:8b:51:fa:2f:7e:af:7a:bc:99:8d:
fa:5e:e2:49:4f:a4:22:da:55:b8:65:97:96:e1:a6:e7:64:61:
cd:79:43:4a:7b:60:4a:03:21:ea:a2:16:8d:3e:e8:d1:01:35:
70:dc:b5:bb:b7:69:8d:7e:20:0e:f5:45:a0:64:d6:1f:aa:59:
35:78:85:14:28:84:01:ec:ec:9b:42:2b:e8:7f:34:f1:9a:99:
8e:9c:fa:e3:36:ae:d8:a5:42:c2:a3:56:2c:94:27:fa:fc:27:
be:56:8d:5b:ac:71:1d:77:2e:15:22:4b:fd:57:80:f9:4f:91:
3e:50:f9:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:51:33 2025 by rpki-client