Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/321A6788870911F0B9C33AB2DAE4EC9C.roa
File: 321A6788870911F0B9C33AB2DAE4EC9C.roa (raw, json)
Hash identifier: B9KlixX0lY6uMs/XsMEIY4wAq/l2eF1Cbc4DXBAgbNo=
Subject key identifier: EF:3B:0F:1C:99:3A:DB:26:18:32:79:58:D5:58:58:9B:D8:E3:08:6D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0174DB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/321A6788870911F0B9C33AB2DAE4EC9C.roa
Signing time: Mon 01 Sep 2025 07:56:42 +0000
ROA not before: Mon 01 Sep 2025 07:56:37 +0000
ROA not after: Sun 05 Oct 2025 07:56:37 +0000
asID: 61112
IP address blocks: 45.207.34.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95451 (0x174db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 1 07:56:37 2025 GMT
Not After : Oct 5 07:56:37 2025 GMT
Subject: CN=68b551ba-1c09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:8b:16:db:d9:a2:87:15:e8:63:51:a9:fe:06:
55:b1:f4:47:f4:b1:e0:df:6f:6f:ef:86:17:44:f8:
b2:20:24:15:0e:6f:f5:80:11:c2:3d:c6:21:51:a1:
45:0d:14:5b:79:d5:a4:dd:4d:fd:fd:e6:1b:db:67:
cb:eb:2c:e2:f4:f8:fd:52:85:28:ec:c5:ff:84:4e:
ee:6c:8d:83:f5:1b:4e:ee:78:12:e6:1f:08:fb:0d:
ef:66:98:89:34:cd:d8:6f:9d:de:b5:04:38:b9:7d:
a4:12:c8:33:d4:5b:2e:de:79:55:e1:35:2e:a0:62:
4c:b4:28:c2:cc:6a:dd:0c:04:01:1c:d6:97:20:a4:
a6:04:7b:2c:3a:9b:a8:b3:f2:29:0d:13:fc:ff:43:
b1:d8:df:6e:93:57:b0:b3:df:7a:15:33:f1:cd:03:
ca:cd:3e:20:84:e6:f1:7a:87:f5:b7:94:4b:eb:f1:
24:f3:15:78:51:c4:a0:b3:40:b4:a1:bf:36:3f:29:
1d:9f:c0:50:a5:ad:09:d7:7a:68:18:f2:72:f8:39:
b4:a8:e7:5e:06:67:62:28:53:e9:31:59:4e:52:47:
98:c3:08:d9:16:d6:8c:bb:03:94:8b:c7:f2:27:9b:
80:e0:f3:ef:42:1e:62:9d:8b:ea:d9:44:13:01:54:
c1:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:3B:0F:1C:99:3A:DB:26:18:32:79:58:D5:58:58:9B:D8:E3:08:6D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/321A6788870911F0B9C33AB2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.34.0/23
Signature Algorithm: sha256WithRSAEncryption
98:0a:9e:28:fe:8a:b8:a5:6e:38:74:b6:e3:6e:37:08:b6:0f:
cd:d6:f8:83:ba:d9:18:1d:91:7f:70:d7:81:8f:16:d3:9b:70:
25:8d:c9:ee:9f:a0:27:33:24:f2:83:86:da:f2:5e:c7:b0:09:
e5:7f:e8:db:ab:96:81:5a:ec:38:d1:1a:1d:11:0a:72:a3:de:
11:a1:47:df:55:10:b8:af:de:33:56:09:06:e4:d2:2e:15:1e:
bb:23:8e:e9:22:5d:b5:11:15:d2:4c:ca:60:10:b2:a3:79:c6:
ca:1f:96:fc:eb:7c:f6:bc:c9:f6:5f:99:2d:88:a4:d6:fa:db:
f7:9b:76:b5:bb:5d:b8:4f:2e:7d:9a:03:08:ed:9f:1b:72:a1:
be:80:4f:9a:dc:c2:94:b3:84:20:b7:e6:e7:b0:c0:73:95:4b:
71:4d:06:05:64:7b:ce:e0:12:fd:fd:aa:5a:02:5f:d2:0a:0b:
87:40:f8:3a:ac:a8:4b:b7:38:29:11:ad:ad:9a:b9:2b:a7:4d:
ee:fa:5b:3f:95:6b:78:4a:96:6b:02:40:a9:c7:fb:89:62:cb:
2a:08:ae:0a:e9:69:23:3d:54:fa:c1:e1:d7:76:e6:58:d9:8a:
d4:ce:7c:ac:b9:fc:7b:92:90:0a:a3:62:e9:0a:06:db:6a:0c:
31:18:5d:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 3 20:25:25 2025 by rpki-client