Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/43213888A81D11F08880F2CBDAE4EC9C.roa
File: 43213888A81D11F08880F2CBDAE4EC9C.roa (raw, json)
Hash identifier: siBygMUAtxtGzRMTMJJSdgdbWyDVa87j3gVrVGFRgw0=
Subject key identifier: 16:F8:48:38:6F:EF:D4:01:4C:88:F9:A2:D1:F4:2B:8C:4F:17:30:9F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 018059
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/43213888A81D11F08880F2CBDAE4EC9C.roa
Signing time: Mon 13 Oct 2025 10:13:28 +0000
ROA not before: Mon 13 Oct 2025 10:13:21 +0000
ROA not after: Tue 18 Nov 2025 10:13:21 +0000
asID: 25198
IP address blocks: 45.195.156.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98393 (0x18059)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 13 10:13:21 2025 GMT
Not After : Nov 18 10:13:21 2025 GMT
Subject: CN=68ecd0c8-2896
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:57:e5:1a:68:39:0a:84:a6:9c:b2:d5:ae:56:
1b:0a:2f:30:12:a0:70:85:23:df:11:51:3a:f4:bb:
2c:bc:e1:8b:98:78:2b:7b:e0:eb:60:db:7c:77:e1:
32:ba:62:5c:5f:be:ef:78:c7:48:2f:7d:35:55:14:
9d:c1:a0:e8:e4:ec:77:54:b3:bc:ae:88:69:53:7d:
80:0a:ed:d0:07:5b:51:49:65:ce:1c:20:15:b2:7a:
2f:78:9a:0d:85:e8:1e:09:c4:a6:86:48:75:20:f0:
7a:9d:ac:8a:36:a4:ba:84:d0:6c:27:91:54:97:26:
a7:5f:67:67:b8:a5:5c:94:74:9f:67:98:8d:b5:9b:
1f:8e:c6:ec:b7:d9:97:38:57:97:f7:58:7b:96:ea:
08:c6:c1:22:60:65:46:0a:18:0e:89:84:eb:ef:21:
00:f5:79:da:21:8e:e0:0a:3d:26:94:40:5c:e4:39:
85:c8:a1:e2:fb:2d:e5:ee:5e:b5:15:dd:02:fc:9a:
35:5f:0b:69:b8:fd:3d:77:ae:5c:4a:8a:62:5b:e6:
0d:4f:37:09:a8:08:dd:02:ce:1b:a7:3a:50:4f:31:
a6:d6:de:24:86:7c:5f:e7:77:b5:b3:aa:26:a3:7a:
88:4e:2d:cb:50:4f:00:2e:19:dc:c8:5b:f6:1e:b9:
30:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:F8:48:38:6F:EF:D4:01:4C:88:F9:A2:D1:F4:2B:8C:4F:17:30:9F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/43213888A81D11F08880F2CBDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.156.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:55:58:b7:c6:05:e9:0e:ed:59:a1:82:02:30:ab:41:0e:9c:
77:1e:e3:28:8e:43:90:92:5c:c7:9f:8e:b6:a4:50:10:eb:9b:
7b:fe:d0:4d:d8:6f:35:05:6f:01:0f:e8:1d:9b:81:15:23:e7:
80:9e:13:c8:04:74:7b:1e:68:1d:5a:5f:0c:fe:21:bf:29:41:
ee:9e:29:0a:af:ad:0d:f4:92:1a:3d:0f:e7:b4:62:75:3e:77:
19:ef:8d:cf:33:ae:81:eb:13:21:8e:e6:43:df:3f:6d:0e:3d:
0f:4c:ea:69:9d:46:5a:0d:bf:5f:e3:58:b2:fd:55:15:ae:66:
2b:5f:00:ee:b2:c0:32:7f:c9:4d:f7:91:b4:ec:13:f5:0b:e8:
6c:fc:f7:57:2c:3d:84:7f:2b:04:e5:a6:45:ab:45:5e:19:5a:
77:29:bb:9d:20:8c:ef:e9:09:ab:6d:df:6a:96:15:55:11:a5:
70:88:38:3f:a4:21:70:e7:eb:bd:11:a3:36:eb:50:9d:61:75:
72:2d:59:92:55:97:18:c6:be:dd:bd:75:53:71:f4:75:9b:71:
b1:98:d6:0a:32:81:17:09:a5:da:dc:68:36:f2:d5:53:5f:86:
59:4b:0b:62:c0:bf:aa:27:34:4f:62:04:62:fc:0e:02:14:d3:
b3:e2:7e:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:52:44 2025 by rpki-client