Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/558CCDD2AFF911F0A15FCAEFDAE4EC9C.roa
File: 558CCDD2AFF911F0A15FCAEFDAE4EC9C.roa (raw, json)
Hash identifier: EUBzjpmxRbt0wY15PdjMuKVfkTyAUjR/3f5vlWBw8v4=
Subject key identifier: 1D:36:C9:7C:CE:BB:26:60:30:9C:38:07:8D:96:7A:DA:6B:FA:E1:18
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 018231
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/558CCDD2AFF911F0A15FCAEFDAE4EC9C.roa
Signing time: Thu 23 Oct 2025 10:16:27 +0000
ROA not before: Thu 23 Oct 2025 10:16:22 +0000
ROA not after: Fri 28 Nov 2025 10:16:22 +0000
asID: 214238
IP address blocks: 45.199.209.0/24 maxlen: 24
45.199.210.0/24 maxlen: 24
45.199.211.0/24 maxlen: 24
45.199.212.0/24 maxlen: 24
45.199.213.0/24 maxlen: 24
45.199.214.0/24 maxlen: 24
45.199.215.0/24 maxlen: 24
45.199.216.0/24 maxlen: 24
45.199.217.0/24 maxlen: 24
45.199.218.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 26 Oct 2025 00:26:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98865 (0x18231)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 23 10:16:22 2025 GMT
Not After : Nov 28 10:16:22 2025 GMT
Subject: CN=68fa007b-40d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ac:06:da:20:15:c2:83:fb:7a:fb:01:e4:41:
91:3e:45:72:59:44:2e:55:92:42:03:e6:2e:9f:2a:
27:33:92:3c:cc:ef:44:83:bc:28:c5:ed:cf:c5:06:
8d:a9:57:57:a4:02:7f:04:88:0c:08:9f:96:76:04:
33:bd:70:91:6a:8a:25:ad:a2:98:0a:d4:55:30:f4:
cb:7f:d6:4b:34:72:2d:30:00:08:18:f8:77:9d:3e:
2e:92:4d:05:fd:65:80:79:44:f5:f2:49:64:81:40:
d9:b6:14:d7:4d:ca:7a:10:ee:93:f3:d6:be:94:81:
60:6a:fc:86:05:96:a6:11:72:c4:06:6b:0b:5d:4b:
88:14:39:8d:9c:10:3f:36:ce:ab:c5:e8:7b:da:9b:
89:be:3b:cd:15:79:ac:a2:d4:5e:7c:ac:ed:14:b8:
61:dd:73:21:19:1b:4e:09:43:b5:27:16:d1:e0:74:
61:2b:34:b3:99:04:4d:b3:09:c9:f6:30:4f:2b:18:
ab:5d:39:7b:6f:ec:82:2a:ac:78:84:e3:aa:1b:ae:
c4:5e:a3:18:41:e7:1c:0f:a1:de:a5:20:42:9f:14:
ec:2d:8b:19:34:c9:45:a7:00:34:ce:ba:1f:e6:d3:
c2:ab:42:cf:8c:96:26:68:83:f0:fe:23:a5:55:64:
4b:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:36:C9:7C:CE:BB:26:60:30:9C:38:07:8D:96:7A:DA:6B:FA:E1:18
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/558CCDD2AFF911F0A15FCAEFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.209.0-45.199.218.255
Signature Algorithm: sha256WithRSAEncryption
08:7e:a6:23:95:8a:47:81:c3:24:6c:07:d1:14:32:03:7a:2e:
42:75:5f:ad:8b:85:3f:5f:0c:c0:3d:e4:53:15:bb:d5:19:e1:
45:30:3a:de:10:fc:11:15:ec:f3:ae:f0:89:3f:3d:a5:4b:de:
ef:b0:db:50:a7:7c:27:c4:c4:97:7b:c1:6e:96:e7:6c:83:b9:
46:45:34:7b:50:9e:31:c2:4b:44:dc:5c:0b:53:33:36:01:46:
12:f8:b1:4e:3d:4d:03:bc:eb:df:78:56:78:e0:07:65:f3:64:
9d:84:dd:3f:af:38:b9:3e:5b:6b:2f:c8:8d:9b:1e:24:13:22:
04:67:d8:17:10:77:8e:a0:73:86:16:17:aa:b9:dc:27:2f:cb:
5c:c9:2e:8a:9a:da:50:6e:e4:58:10:71:2e:e9:3f:fd:f9:a0:
ca:15:01:1b:15:76:9d:45:1a:52:aa:28:61:95:74:d9:ed:b7:
49:c9:4d:2f:44:f2:7c:8d:c0:8f:40:73:54:fa:ee:18:ac:55:
bb:71:c7:be:88:97:d2:75:3f:72:9a:cb:f4:f6:8a:53:3c:14:
c0:19:2e:6b:62:69:42:c2:e4:7c:f7:fb:7e:d3:1e:78:56:95:
d9:21:53:d9:c3:d0:75:c2:af:fb:ca:e4:56:d9:fb:1c:ff:b0:
ca:31:f7:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 24 03:13:19 2025 by rpki-client