Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1D62B086A03411F09595D384DAE4EC9C.roa
File: 1D62B086A03411F09595D384DAE4EC9C.roa (raw, json)
Hash identifier: fu/mpR3dnuN7jzpLyNSkdy2o+SRFItSQPoUDSSxk05U=
Subject key identifier: 14:F7:52:A5:3B:0F:77:66:06:4F:3F:AA:52:B3:85:61:60:FB:4C:7A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017EB1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1D62B086A03411F09595D384DAE4EC9C.roa
Signing time: Fri 03 Oct 2025 08:36:54 +0000
ROA not before: Fri 03 Oct 2025 08:36:49 +0000
ROA not after: Fri 09 Oct 2026 08:36:49 +0000
asID: 153526
IP address blocks: 45.197.152.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97969 (0x17eb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 3 08:36:49 2025 GMT
Not After : Oct 9 08:36:49 2026 GMT
Subject: CN=68df8b26-ca07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:d8:06:9f:af:da:69:f6:3a:b7:b3:fd:b7:3f:
47:26:80:b8:c2:7f:2f:f8:a7:a3:6d:97:9c:15:f5:
a4:a6:e3:8e:e0:39:1a:1b:bb:a1:a8:19:cc:34:ab:
c1:be:d7:f4:10:04:50:d8:8d:5a:b6:60:4b:dd:02:
ea:84:5b:49:96:1d:78:f0:b8:da:db:66:6d:52:d9:
38:d0:dd:ac:34:f9:75:1e:ef:ec:4a:c2:d0:fd:52:
16:e2:00:0b:c5:cb:9d:24:af:6f:f2:73:c3:08:8d:
a1:5a:ae:24:8a:bd:61:ae:2f:ac:a6:69:4c:c4:2e:
db:d2:a6:85:e0:fb:ca:61:9a:37:32:b3:37:66:f3:
a6:57:c7:d4:82:0f:94:ac:92:4f:7d:2d:c3:54:d7:
28:9e:8d:4d:1c:42:b0:f0:dd:6d:02:cd:07:dd:ed:
32:f5:ab:dd:89:0a:00:69:15:8c:85:8d:37:2e:49:
1b:71:0c:41:54:b4:30:8d:45:9b:8d:31:39:b6:d4:
9d:9b:2a:c0:f3:4b:05:87:11:bb:6c:3b:5c:eb:1f:
fd:80:0c:17:cc:58:31:fd:ec:b3:6f:3f:af:07:44:
6c:11:1b:a9:14:79:33:f7:60:ba:7d:6e:16:9f:ee:
de:48:9b:68:b8:bb:c5:23:76:c8:05:ad:1e:10:54:
c6:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:F7:52:A5:3B:0F:77:66:06:4F:3F:AA:52:B3:85:61:60:FB:4C:7A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1D62B086A03411F09595D384DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.152.0/22
Signature Algorithm: sha256WithRSAEncryption
9e:10:4d:07:df:79:37:7e:7d:01:bf:4a:5d:33:d4:90:42:f7:
0f:d4:00:7d:28:94:b8:96:e0:c6:ad:a2:0f:36:fd:ee:ce:93:
35:39:ba:79:db:be:83:71:84:c2:e0:f0:e5:d5:92:14:40:90:
e2:b9:cb:e4:af:b3:ee:23:c6:21:4e:65:de:4f:42:85:7b:91:
23:78:1b:b9:37:fd:95:c7:79:68:89:2f:78:de:68:72:25:09:
55:a6:a0:9a:53:30:b3:5b:0d:d4:9e:7f:cd:57:24:ed:06:34:
4b:46:0f:96:88:1d:fb:90:bd:a6:7e:07:7b:d6:01:27:90:05:
b8:91:de:56:cc:6c:de:80:2e:f8:d6:5c:73:73:ed:45:25:8a:
d8:67:92:19:34:c0:2d:95:54:42:fa:39:be:f7:38:7e:cb:16:
91:6f:01:93:ac:30:e8:2e:0e:60:3d:ba:ac:37:5b:1f:70:5b:
02:9a:88:e5:cf:e8:2b:a5:bd:12:63:7d:7b:f6:59:28:0d:c3:
ff:c3:b0:88:c3:39:d7:16:06:9b:a4:ec:b6:22:3d:f5:fa:a4:
95:f0:dd:f2:e0:59:16:26:c8:26:82:6f:da:72:42:ab:6c:8d:
65:84:78:1c:9d:36:2f:95:f3:6e:ee:27:87:55:0f:73:43:f4:
44:31:f0:e1
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAX6xMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUxMDAzMDgzNjQ5WhcNMjYxMDA5MDgzNjQ5WjAYMRYw
FAYDVQQDEw02OGRmOGIyNi1jYTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA49gGn6/aafY6t7P9tz9HJoC4wn8v+KejbZecFfWkpuOO4DkaG7uhqBnM
NKvBvtf0EARQ2I1atmBL3QLqhFtJlh148Lja22ZtUtk40N2sNPl1Hu/sSsLQ/VIW
4gALxcudJK9v8nPDCI2hWq4kir1hri+spmlMxC7b0qaF4PvKYZo3MrM3ZvOmV8fU
gg+UrJJPfS3DVNcono1NHEKw8N1tAs0H3e0y9avdiQoAaRWMhY03LkkbcQxBVLQw
jUWbjTE5ttSdmyrA80sFhxG7bDtc6x/9gAwXzFgx/eyzbz+vB0RsERupFHkz92C6
fW4Wn+7eSJtouLvFI3bIBa0eEFTGlwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFBT3
UqU7D3dmBk8/qlKzhWFg+0x6MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8xRDYyQjA4NkEwMzQxMUYwOTU5NUQzODREQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLcWYMA0GCSqGSIb3DQEBCwUA
A4IBAQCeEE0H33k3fn0Bv0pdM9SQQvcP1AB9KJS4luDGraIPNv3uzpM1Obp5276D
cYTC4PDl1ZIUQJDiucvkr7PuI8YhTmXeT0KFe5EjeBu5N/2Vx3loiS943mhyJQlV
pqCaUzCzWw3Unn/NVyTtBjRLRg+WiB37kL2mfgd71gEnkAW4kd5WzGzegC741lxz
c+1FJYrYZ5IZNMAtlVRC+jm+9zh+yxaRbwGTrDDoLg5gPbqsN1sfcFsCmojlz+gr
pb0SY3179lkoDcP/w7CIwznXFgabpOy2Ij31+qSV8N3y4FkWJsgmgm/ackKrbI1l
hHgcnTYvlfNu7ieHVQ9zQ/REMfDh
-----END CERTIFICATE-----
Generated at Sun Oct 19 08:51:10 2025 by rpki-client