Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/57878ED4831611F08F69A8E6DAE4EC9C.roa
File: 57878ED4831611F08F69A8E6DAE4EC9C.roa (raw, json)
Hash identifier: LY29Lidf7mCuLjb1iJd+XsCFySzAb+D4H5aLSD+SeAA=
Subject key identifier: DB:8C:3C:EB:E4:24:C1:E9:4E:FC:B7:5E:98:89:57:58:FB:4F:B7:26
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017118
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/57878ED4831611F08F69A8E6DAE4EC9C.roa
Signing time: Wed 27 Aug 2025 07:20:43 +0000
ROA not before: Wed 27 Aug 2025 07:20:39 +0000
ROA not after: Sun 30 Aug 2026 07:20:39 +0000
asID: 138995
IP address blocks: 45.192.222.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94488 (0x17118)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 27 07:20:39 2025 GMT
Not After : Aug 30 07:20:39 2026 GMT
Subject: CN=68aeb1cb-52df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:33:2e:c8:de:0a:51:b7:19:e3:91:13:8f:45:
13:b3:ce:01:40:ad:11:cf:18:4e:7a:13:89:ac:3a:
6b:6c:22:02:18:d1:55:25:59:94:bf:b9:4b:3f:d9:
c7:87:06:29:ef:07:aa:55:de:ff:bd:06:54:14:8d:
07:f0:60:af:77:32:6e:7f:49:b0:7f:0b:d7:ed:60:
09:5a:f6:c8:71:6f:3b:ad:08:77:34:0e:3d:4e:52:
59:62:62:a7:19:7f:cc:5b:d0:5a:79:8a:1a:70:f5:
b6:77:34:0e:a2:8e:f8:e7:78:67:e9:ee:be:fd:8e:
e8:2d:c6:14:22:1d:2b:bd:df:de:86:2b:ce:18:f3:
d4:ca:05:7b:47:88:67:c1:aa:59:11:fe:fb:25:78:
7e:a4:81:50:f6:3e:3e:d7:38:76:5a:d2:ee:e9:ab:
bd:95:6d:01:91:6a:eb:97:68:3c:d5:5a:ee:ee:12:
0d:da:59:a0:91:23:39:f1:ce:c9:41:87:aa:d5:89:
00:86:0c:7f:73:25:f9:71:dd:10:91:44:84:7e:91:
9c:75:33:e7:87:62:27:98:12:08:48:e2:16:f0:cc:
81:13:90:87:9c:80:a1:50:e2:cf:a3:ea:68:db:b9:
ed:83:eb:82:1b:b4:1f:1a:db:09:38:46:40:49:5b:
b8:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:8C:3C:EB:E4:24:C1:E9:4E:FC:B7:5E:98:89:57:58:FB:4F:B7:26
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/57878ED4831611F08F69A8E6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.222.0/24
Signature Algorithm: sha256WithRSAEncryption
53:06:b4:3d:db:30:21:47:3e:88:aa:40:85:65:1f:4f:06:f1:
e7:e7:7c:b1:c2:91:d7:99:b1:86:ba:7a:c1:ae:0a:8b:3a:9c:
78:79:3e:c8:3d:56:94:eb:9a:26:99:30:de:69:9d:de:b5:ef:
c7:b7:34:c0:90:7a:04:00:47:ad:8d:99:1d:a7:bf:35:f1:1d:
81:b1:6d:40:96:38:bf:31:2e:80:89:8d:06:d1:f7:24:cf:ca:
ca:48:fd:81:64:74:5e:fb:9a:92:7f:49:a8:15:d7:1c:86:42:
c0:74:f0:ac:ff:1d:e3:87:62:d9:46:a1:90:d2:a7:ce:71:cc:
c2:04:f0:ae:cd:c2:99:18:9f:07:15:be:e3:47:59:4d:be:0c:
29:ab:45:4b:b8:21:49:71:ed:55:65:91:95:0c:f5:78:b8:03:
4c:c1:17:15:c7:29:2e:72:99:87:62:fd:68:30:8f:b7:39:12:
51:1c:88:f8:51:04:71:fb:bb:13:31:4b:f8:19:7a:4e:fe:56:
f7:1b:db:72:07:ec:c6:42:c9:4a:05:a7:47:ea:4f:16:14:45:
7b:9f:24:92:67:53:02:8d:6e:ff:81:8d:f8:f3:45:9e:f1:62:
da:17:4a:1e:b9:70:08:69:1e:63:cc:28:59:04:6f:8c:f7:ff:
f6:f9:a0:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 3 18:19:33 2025 by rpki-client