Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/75F8B6D4841C11F0967C3D99DAE4EC9C.roa
File: 75F8B6D4841C11F0967C3D99DAE4EC9C.roa (raw, json)
Hash identifier: Y+J/eBRuU9VH5ASFXefDjZzZSGysuOD832kK2nZStow=
Subject key identifier: E4:B0:C5:E7:DB:B3:75:7F:A2:D4:BF:D7:8A:87:7B:C1:92:20:49:82
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0172AE
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/75F8B6D4841C11F0967C3D99DAE4EC9C.roa
Signing time: Thu 28 Aug 2025 14:37:02 +0000
ROA not before: Thu 28 Aug 2025 14:36:56 +0000
ROA not after: Thu 04 Sep 2025 14:36:56 +0000
asID: 23764
IP address blocks: 45.195.25.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Sep 2025 14:36:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94894 (0x172ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 28 14:36:56 2025 GMT
Not After : Sep 4 14:36:56 2025 GMT
Subject: CN=68b0698e-e4fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:a9:d5:58:12:b7:d2:69:4d:d8:12:34:d6:e2:
b9:a6:8c:24:ed:d3:6d:90:50:93:0a:d9:c0:a7:2a:
7c:13:4e:cd:25:31:70:96:ed:97:27:5e:fc:f8:d5:
fc:9a:56:04:55:e4:e8:48:7b:e7:46:b1:1f:c9:64:
7b:af:4f:30:05:79:bb:8c:ee:a3:20:57:7c:87:ff:
42:f3:45:77:40:8f:b5:81:d7:03:71:dd:24:0d:72:
14:0c:37:4c:3f:96:45:18:f2:b8:17:9e:da:8c:ec:
df:d2:5c:af:31:cb:45:97:6a:f1:a9:73:0c:83:1c:
cc:23:4e:f1:20:e3:10:4c:69:bc:09:37:a4:85:5f:
dc:b1:a7:8a:69:24:61:c1:2b:58:3f:12:df:a7:f2:
b4:ae:e7:e1:b5:76:4e:32:27:cd:7d:42:aa:10:52:
25:02:9c:1b:30:43:71:9c:49:10:9f:7e:95:14:d5:
c6:78:8e:07:6f:b0:3d:d0:06:da:f6:d2:20:70:9a:
8b:05:c3:19:a5:54:18:2a:be:f0:26:28:b4:0f:88:
89:52:18:6d:3c:5b:7e:cf:b6:e0:c2:2d:43:c6:3c:
35:78:4d:ae:bd:ad:81:1e:8f:17:cf:82:dd:da:74:
38:82:e5:96:c6:af:7b:af:55:47:00:9b:de:8e:a6:
61:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:B0:C5:E7:DB:B3:75:7F:A2:D4:BF:D7:8A:87:7B:C1:92:20:49:82
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/75F8B6D4841C11F0967C3D99DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.25.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:26:ad:47:4c:4a:4e:2d:56:45:92:a2:a3:61:08:4d:9a:c4:
cb:2f:e1:d2:ba:a0:31:be:3d:aa:dd:35:6c:6c:42:c1:93:1d:
39:6a:57:df:c6:14:68:94:a7:54:2a:f1:a0:d0:da:e4:ce:ad:
57:d8:62:fc:a8:f3:f7:f2:8c:9a:87:ac:08:4e:37:21:c2:4c:
81:bb:bb:1d:4c:15:6e:91:33:33:b6:b4:b2:b4:ef:fc:1c:2f:
cc:43:b7:39:47:08:a2:c8:c0:77:4a:ca:09:5a:55:d2:8f:e9:
2b:c0:7a:7b:f7:bd:50:d2:57:0a:ca:e6:59:a0:d6:37:5b:84:
82:63:89:1a:e9:93:89:76:0f:36:6c:79:71:b8:7d:a6:28:6e:
84:85:a4:da:e2:6e:c2:ad:d0:31:ce:a7:08:4d:53:a8:7b:b1:
d2:18:90:c2:8c:31:85:ae:3b:7f:3b:6f:cd:74:56:30:1a:d3:
f0:64:9f:d4:f6:a5:8e:50:1e:ad:a7:78:ca:3a:46:a7:2a:b6:
6a:2e:10:e2:68:a8:7f:b0:25:26:1a:de:65:a7:43:53:da:9c:
8e:24:1d:e3:5b:fd:7a:77:97:0f:45:2e:39:35:54:70:b6:9e:
45:3b:f2:e4:96:3e:1f:e3:5a:c8:f7:81:98:6d:09:ed:54:04:
19:e5:43:c4
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAXKuMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwODI4MTQzNjU2WhcNMjUwOTA0MTQzNjU2WjAYMRYw
FAYDVQQDEw02OGIwNjk4ZS1lNGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAu6nVWBK30mlN2BI01uK5powk7dNtkFCTCtnApyp8E07NJTFwlu2XJ178
+NX8mlYEVeToSHvnRrEfyWR7r08wBXm7jO6jIFd8h/9C80V3QI+1gdcDcd0kDXIU
DDdMP5ZFGPK4F57ajOzf0lyvMctFl2rxqXMMgxzMI07xIOMQTGm8CTekhV/csaeK
aSRhwStYPxLfp/K0rufhtXZOMifNfUKqEFIlApwbMENxnEkQn36VFNXGeI4Hb7A9
0Aba9tIgcJqLBcMZpVQYKr7wJii0D4iJUhhtPFt+z7bgwi1Dxjw1eE2uva2BHo8X
z4Ld2nQ4guWWxq97r1VHAJvejqZhVwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFOSw
xefbs3V/otS/14qHe8GSIEmCMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC83NUY4QjZENDg0MUMxMUYwOTY3QzNEOTlEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALcMZMA0GCSqGSIb3DQEBCwUA
A4IBAQAqJq1HTEpOLVZFkqKjYQhNmsTLL+HSuqAxvj2q3TVsbELBkx05alffxhRo
lKdUKvGg0Nrkzq1X2GL8qPP38oyah6wITjchwkyBu7sdTBVukTMztrSytO/8HC/M
Q7c5RwiiyMB3SsoJWlXSj+krwHp7971Q0lcKyuZZoNY3W4SCY4ka6ZOJdg82bHlx
uH2mKG6EhaTa4m7CrdAxzqcITVOoe7HSGJDCjDGFrjt/O2/NdFYwGtPwZJ/U9qWO
UB6tp3jKOkanKrZqLhDiaKh/sCUmGt5lp0NT2pyOJB3jW/16d5cPRS45NVRwtp5F
O/Lklj4f41rI94GYbQntVAQZ5UPE
-----END CERTIFICATE-----
Generated at Wed Sep 3 20:14:11 2025 by rpki-client