Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3F8C8AD0833B11F08294FED4DAE4EC9C.roa
File: 3F8C8AD0833B11F08294FED4DAE4EC9C.roa (raw, json)
Hash identifier: XRC84gNP+yuYJirTEINFYsz+8jVmwRj95C5skQyiKf4=
Subject key identifier: 28:2B:BE:AE:4F:7E:3E:04:08:75:6A:F8:BA:3E:20:EE:A1:2A:43:B6
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0171AD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3F8C8AD0833B11F08294FED4DAE4EC9C.roa
Signing time: Wed 27 Aug 2025 11:44:54 +0000
ROA not before: Wed 27 Aug 2025 11:44:49 +0000
ROA not after: Sun 30 Aug 2026 11:44:49 +0000
asID: 138995
IP address blocks: 45.192.216.0/24 maxlen: 24
45.192.217.0/24 maxlen: 24
45.192.218.0/24 maxlen: 24
45.192.219.0/24 maxlen: 24
45.192.220.0/24 maxlen: 24
45.192.221.0/24 maxlen: 24
45.192.223.0/24 maxlen: 24
45.192.224.0/24 maxlen: 24
45.192.225.0/24 maxlen: 24
45.192.226.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94637 (0x171ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 27 11:44:49 2025 GMT
Not After : Aug 30 11:44:49 2026 GMT
Subject: CN=68aeefb6-31d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:90:9e:23:27:3c:2a:fa:5c:e8:5a:d5:07:53:
6d:91:ae:a3:6e:85:24:46:ad:56:8d:cc:e9:74:3d:
f5:1e:66:81:57:97:69:b0:bc:39:d5:6b:7a:72:4e:
92:d7:fc:5a:38:c8:97:ca:fe:d6:27:af:c8:a9:83:
09:f1:1d:aa:7e:87:47:b6:4d:1e:8b:08:c2:2c:42:
2b:83:43:0d:3e:ed:d6:68:8c:29:0e:03:67:5d:c6:
61:ef:f5:a3:e7:bf:c6:4d:b6:aa:49:cc:9e:07:46:
53:46:68:a6:fa:1a:2d:43:d0:24:72:0e:3c:c7:f0:
14:4b:6a:7b:13:3c:c7:f2:60:96:cd:56:40:d2:40:
94:e1:0a:e5:d5:8e:76:39:b0:37:e6:51:cc:94:f8:
88:40:05:25:ed:ed:8b:a2:dc:86:5d:2c:95:a7:8f:
84:6b:4b:22:74:fe:cd:e7:d6:0d:10:9a:47:39:50:
42:2f:f1:1f:d8:9b:c5:37:9d:ef:c3:95:5f:76:14:
a4:6b:b7:83:f7:a8:d0:62:e1:5a:26:87:d0:77:cd:
3b:36:75:13:88:de:ef:20:a2:65:68:95:cf:8c:fb:
7e:69:b5:3f:c7:62:40:95:2b:17:cd:eb:99:7e:bc:
02:02:cc:89:ed:d7:14:84:46:66:4d:b1:f9:1c:1a:
57:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:2B:BE:AE:4F:7E:3E:04:08:75:6A:F8:BA:3E:20:EE:A1:2A:43:B6
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3F8C8AD0833B11F08294FED4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.216.0-45.192.221.255
45.192.223.0-45.192.226.255
Signature Algorithm: sha256WithRSAEncryption
2f:1f:69:10:22:03:49:37:cb:9d:7d:10:cf:1d:2a:be:ec:a6:
e3:12:73:50:a2:70:77:68:ff:b4:ce:17:b8:f9:7c:4b:b7:d1:
05:a5:9f:30:61:3d:48:c5:c7:0f:b3:98:a8:07:41:f9:99:46:
b0:86:60:98:96:f4:6d:79:b7:69:ad:04:1e:d9:ab:0b:80:15:
dc:90:51:7e:7e:5f:bc:b9:ac:97:4e:95:1c:36:ff:42:2b:43:
15:90:8f:15:0d:85:31:18:80:6c:90:aa:c1:d1:8b:87:71:98:
a1:3c:01:35:9b:00:b6:78:e7:eb:63:b3:80:49:cd:40:3c:9d:
a7:a3:25:08:a5:b0:b2:63:2e:76:de:23:c1:ef:31:23:b6:fc:
0a:b0:e0:7e:f1:c9:ce:04:a0:c7:32:47:d1:de:6c:ea:42:d8:
ec:3f:d2:d9:b8:9a:f3:85:0b:4c:25:c8:12:2a:80:26:59:b7:
48:be:ce:65:a9:c6:71:e2:42:d5:24:2e:7b:38:1f:0d:95:02:
e3:fb:5b:ff:ba:59:a4:47:ae:03:dc:4b:44:69:41:cb:05:92:
b0:98:44:a9:d7:26:76:c0:28:ae:dc:71:88:f2:f5:87:40:f9:
85:13:aa:cf:dd:37:2e:57:e8:76:eb:7a:b6:61:83:38:3f:6a:
48:31:f5:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 3 20:23:44 2025 by rpki-client