Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4342283E996F11F0911EF29CDAE4EC9C.roa
File: 4342283E996F11F0911EF29CDAE4EC9C.roa (raw, json)
Hash identifier: RKNlnrRa/q/dMKzuKBZ2cgs/l2S2tF/ifdKrmyKc62M=
Subject key identifier: 03:7D:9B:42:7A:4F:9B:2D:BE:4B:AA:07:97:C5:88:7C:65:22:99:8D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017D03
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4342283E996F11F0911EF29CDAE4EC9C.roa
Signing time: Wed 24 Sep 2025 17:52:40 +0000
ROA not before: Wed 24 Sep 2025 17:52:35 +0000
ROA not after: Thu 30 Oct 2025 17:52:35 +0000
asID: 398478
IP address blocks: 45.192.192.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97539 (0x17d03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 24 17:52:35 2025 GMT
Not After : Oct 30 17:52:35 2025 GMT
Subject: CN=68d42fe8-0073
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:5b:24:95:60:b8:a6:10:eb:6f:52:2e:c1:98:
9f:61:b6:b8:77:e8:4a:9f:6d:a7:9d:55:01:7b:3b:
01:bb:20:6c:f8:83:d9:bb:4e:1e:23:15:8b:ed:a5:
3d:a0:99:e7:19:28:e7:59:17:4f:de:c6:5b:df:51:
ef:7f:61:41:e2:f6:c2:ce:46:46:2f:5a:66:9a:cf:
bc:29:50:9b:31:d7:8c:36:e9:83:37:11:f7:37:48:
4b:24:d6:f7:c3:9a:42:60:8b:18:7f:e7:ca:12:cd:
e0:b7:69:9f:dc:4f:0f:16:00:c0:c9:b7:95:6e:65:
45:17:41:01:86:2a:0e:28:e9:63:72:c1:63:0d:a9:
90:b8:2f:4a:5a:cf:73:4c:80:42:ff:6a:84:5b:53:
87:25:9a:7e:b9:da:1d:27:d8:0c:c9:a7:40:6e:8b:
f5:89:ba:0e:5e:c4:16:45:36:e9:86:46:64:74:bf:
56:a1:b4:cd:23:f5:52:5f:18:28:7e:36:ad:19:dc:
54:a2:01:48:bb:bb:4a:c4:a2:45:dd:f6:4d:6a:13:
16:75:30:32:5e:df:47:42:41:5b:68:02:0e:cd:fc:
68:be:ae:b9:11:2f:38:5b:7e:33:3b:00:a2:90:5b:
78:7e:eb:5a:74:d7:1a:fa:83:e8:76:48:de:1d:b6:
82:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:7D:9B:42:7A:4F:9B:2D:BE:4B:AA:07:97:C5:88:7C:65:22:99:8D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4342283E996F11F0911EF29CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.192.0/20
Signature Algorithm: sha256WithRSAEncryption
30:ca:1f:30:96:2c:0d:9f:1d:bd:bc:95:8b:df:cb:3a:f9:de:
17:71:ed:49:b2:57:f8:00:0d:10:61:75:f8:0f:04:f6:dc:3b:
fa:4c:a9:ea:18:c1:c3:f7:00:f2:8b:94:00:7f:9b:df:66:c2:
3c:fd:5d:58:7e:cb:97:a2:00:24:75:8c:0c:cc:c3:af:8e:83:
1c:de:6b:d3:c0:0c:38:96:cc:fb:b1:f8:10:cc:2b:18:e0:d3:
97:74:7d:cc:8d:ee:53:96:ec:63:fa:65:31:c0:36:4e:81:20:
24:6f:0a:03:82:75:c3:47:e5:c7:9d:39:37:71:be:b8:38:1c:
dd:13:ab:b8:d3:36:b9:04:17:5d:59:5b:36:e8:ab:e7:b6:18:
27:a6:8a:2c:20:76:e5:9d:0b:0c:be:31:3e:0f:77:82:e2:34:
97:99:a4:90:48:b6:c8:f3:0e:19:f9:bf:05:e4:db:c9:a0:e8:
bb:c6:76:5e:72:05:18:8e:42:2e:06:a0:fe:0e:2c:f0:1a:65:
65:42:ee:68:c4:f2:55:44:32:28:27:a1:59:d7:b1:6b:e4:73:
f5:04:8e:9d:c5:ac:83:9f:81:87:9c:d2:d4:ab:02:64:f8:35:
55:3c:8c:a6:59:ad:69:97:3e:7d:6e:73:3a:72:69:b8:40:33:
1a:a6:84:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:51:03 2025 by rpki-client