Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4CA19202A81F11F09DB100D9DAE4EC9C.roa
File: 4CA19202A81F11F09DB100D9DAE4EC9C.roa (raw, json)
Hash identifier: 9VmLHHl8tqC3QrstlMtiOnGrH8uxjaThilufYiccdmY=
Subject key identifier: A1:D4:CF:6B:43:64:DF:00:E5:3D:65:38:5A:4A:31:41:66:E7:6D:81
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01805F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4CA19202A81F11F09DB100D9DAE4EC9C.roa
Signing time: Mon 13 Oct 2025 10:28:03 +0000
ROA not before: Mon 13 Oct 2025 10:27:59 +0000
ROA not after: Tue 18 Nov 2025 10:27:59 +0000
asID: 273824
IP address blocks: 45.195.88.0/23 maxlen: 24
45.195.88.0/24 maxlen: 24
45.195.89.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98399 (0x1805f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 13 10:27:59 2025 GMT
Not After : Nov 18 10:27:59 2025 GMT
Subject: CN=68ecd433-595e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c5:57:6f:40:75:9d:2b:f1:97:fd:b9:48:41:
7e:d1:de:b1:06:f1:a6:35:98:ac:09:79:19:fa:d5:
26:40:29:73:d5:ad:f1:98:a0:ff:f0:18:e0:d7:04:
2b:6e:8c:3f:3b:d4:c4:52:bb:9d:03:f2:f7:be:18:
bd:46:84:72:66:f8:92:56:88:24:81:1a:ad:21:d4:
a9:47:34:c0:66:13:f1:f3:95:d8:27:75:b0:4a:c4:
29:a7:81:1b:f3:8c:20:31:c6:10:13:88:d4:40:6a:
24:bf:51:0c:06:7a:59:49:44:28:26:15:6e:6b:8b:
59:4c:bb:12:76:d3:7e:1a:56:e0:14:2b:ab:c5:66:
9c:14:71:bc:13:42:e8:28:e3:fd:cc:a8:e8:fe:c6:
0c:a6:28:76:42:3d:68:96:0c:6d:fc:0c:12:a7:41:
47:18:11:1a:e8:15:38:48:45:d8:8e:d2:3a:5d:a1:
73:48:94:cf:17:42:09:03:f9:2e:8f:22:f9:73:45:
9a:42:d0:b0:a3:ce:57:a8:21:f6:15:4c:dc:f5:09:
46:05:18:36:5f:b1:39:d3:a7:51:d5:06:e2:cf:00:
a1:c6:e0:0b:34:1f:7e:15:17:3c:91:f3:0f:bc:c5:
31:0e:d1:fe:16:f2:b3:48:da:93:b4:e5:c1:ee:92:
e7:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:D4:CF:6B:43:64:DF:00:E5:3D:65:38:5A:4A:31:41:66:E7:6D:81
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4CA19202A81F11F09DB100D9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.88.0/23
Signature Algorithm: sha256WithRSAEncryption
5d:f7:0b:f4:14:c8:8a:57:f7:ee:47:f2:1d:e6:e9:f5:c2:52:
11:c3:b9:0f:3c:62:e0:17:0c:6e:32:6c:cf:d2:35:37:4d:0a:
f3:7e:fe:52:8f:40:34:9b:10:43:9b:fc:26:6d:d6:32:6e:31:
35:9d:3a:3c:04:5b:2f:fa:50:15:eb:2a:5f:4a:e3:c8:80:ca:
2a:10:4c:6e:df:b6:64:55:2f:b5:3c:4c:c8:c3:23:2a:a2:9f:
b1:15:c2:a9:a2:ac:f5:1f:a6:b8:63:87:93:df:7f:06:bf:4a:
8b:ff:e2:38:a2:0c:36:1d:a9:6f:18:12:0f:77:56:f2:41:9b:
32:4f:e7:f2:99:3c:85:7f:57:e7:d9:f8:85:cc:12:8b:20:7c:
36:49:18:b4:72:09:e0:e5:1c:76:f9:2c:c6:33:83:42:c5:3e:
38:42:fb:12:e5:c3:51:ee:9b:2d:5e:9d:a9:82:8a:25:86:13:
3f:f9:c1:9f:3e:93:a8:d5:a4:02:9a:9a:de:3a:42:04:93:56:
51:c1:8d:cc:dd:8f:a6:7e:ab:23:9a:0c:58:bb:ad:95:6f:1c:
ce:62:d0:c0:fe:de:f7:56:02:88:49:a4:cd:8f:7c:6b:d0:8f:
0b:c5:5c:86:58:90:99:c9:f4:e6:2f:77:53:49:68:8b:72:cd:
aa:1a:8b:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:51:27 2025 by rpki-client