Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5167ED5E871D11F0BC3D29B6DAE4EC9C.roa
File: 5167ED5E871D11F0BC3D29B6DAE4EC9C.roa (raw, json)
Hash identifier: OPgfZ3Rb0RjZkIzzvQTl52ddy3SnA99uruIiQlSBtyM=
Subject key identifier: 73:F2:F2:ED:E4:9B:71:66:FF:FC:DF:EE:84:3A:27:8E:6B:F4:A0:FE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017544
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5167ED5E871D11F0BC3D29B6DAE4EC9C.roa
Signing time: Mon 01 Sep 2025 10:20:44 +0000
ROA not before: Mon 01 Sep 2025 10:20:39 +0000
ROA not after: Mon 06 Oct 2025 10:20:39 +0000
asID: 14315
IP address blocks: 45.202.197.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95556 (0x17544)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 1 10:20:39 2025 GMT
Not After : Oct 6 10:20:39 2025 GMT
Subject: CN=68b5737c-d82f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:33:50:e3:54:ea:e9:db:1d:10:f2:0c:89:f8:
6b:9a:50:bd:13:d0:45:15:6f:11:4f:20:17:94:a6:
00:5e:48:17:27:e9:c7:87:80:61:4e:b1:75:a2:82:
4b:17:8e:05:59:20:11:1d:e3:24:34:01:ef:87:02:
1e:be:5f:3b:c3:64:ec:46:20:09:20:ac:06:da:0f:
95:c7:2d:9c:de:77:c0:74:2a:d7:38:27:eb:19:38:
51:bb:3f:3f:cf:5e:0b:74:b0:7e:a2:9b:50:70:2f:
ed:98:a9:14:bb:a0:68:39:0c:00:22:2a:29:de:40:
5d:2f:de:68:41:3b:eb:e1:0b:da:55:b7:ea:70:af:
14:48:81:a6:8d:04:56:71:10:f6:38:45:6c:98:ee:
ab:21:37:62:a5:81:5d:8f:b5:1c:40:ea:d3:0c:69:
ff:03:f1:20:e8:73:69:9d:cc:92:74:59:e1:9d:0a:
e3:fc:7a:5d:c5:b1:fd:fd:59:f2:cb:2e:3d:82:ee:
4b:b7:91:d5:f9:49:92:16:4e:48:30:07:d7:c6:a5:
73:28:1f:93:06:c8:3e:24:14:7e:13:2c:23:05:df:
2d:25:f0:23:ac:1f:fc:c0:e4:38:8c:65:0d:1c:c6:
be:7d:71:3d:bb:03:91:1a:bd:bf:cc:96:08:26:3f:
17:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:F2:F2:ED:E4:9B:71:66:FF:FC:DF:EE:84:3A:27:8E:6B:F4:A0:FE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5167ED5E871D11F0BC3D29B6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.197.0/24
Signature Algorithm: sha256WithRSAEncryption
71:2f:98:e6:0c:49:96:fd:44:2d:a6:86:fb:b7:2d:6f:a4:86:
b9:d1:73:ed:2d:68:5f:9d:40:77:fc:fb:69:22:41:be:bc:cd:
82:db:3f:39:bc:b1:51:1a:be:93:11:c0:62:fc:c6:19:5e:f3:
83:4c:d4:9b:c7:9a:c1:9a:da:36:4d:05:fd:c2:9d:f1:e0:c4:
88:86:ef:5f:60:57:94:fe:b0:a5:88:5d:2f:26:41:cd:8b:cb:
71:54:08:0e:21:14:27:c0:db:a8:6e:08:35:a3:a2:78:a6:b9:
09:31:95:51:86:ff:ba:47:ad:3b:b4:ba:f9:73:25:9f:50:09:
ba:e2:9d:e2:65:90:4e:2c:46:72:fd:97:4e:5d:6a:37:df:d3:
d9:9f:24:f2:01:ec:e6:44:43:fa:29:81:74:61:39:5e:04:d6:
06:f7:56:83:77:d5:57:f1:c2:bd:0f:de:dd:cb:58:34:c8:ef:
af:b0:42:f0:e0:c3:f4:84:fa:83:26:37:fd:80:21:2f:22:2e:
17:3d:1b:78:39:1a:77:c2:45:1f:56:94:87:a2:f6:22:de:5d:
85:36:ef:6b:82:7a:ea:6f:f9:ee:4f:f4:bd:ff:a4:3d:29:31:
4b:38:72:17:21:24:df:22:51:d5:e3:30:04:85:cd:00:04:38:
99:c4:23:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 3 20:19:50 2025 by rpki-client