Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7D5FB0C28E2511F0A1A1EB96DAE4EC9C.roa
File: 7D5FB0C28E2511F0A1A1EB96DAE4EC9C.roa (raw, json)
Hash identifier: xKanMZMHhW4gJerVnQ+Ai5Maij8+Wu712xZfQ3Knr1k=
Subject key identifier: AE:55:B9:B6:2D:50:C6:39:8A:78:EA:4D:45:07:01:A4:DA:FA:00:0D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017A6A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7D5FB0C28E2511F0A1A1EB96DAE4EC9C.roa
Signing time: Wed 10 Sep 2025 09:06:52 +0000
ROA not before: Wed 10 Sep 2025 09:06:47 +0000
ROA not after: Wed 22 Oct 2025 09:06:47 +0000
asID: 137899
IP address blocks: 45.205.16.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96874 (0x17a6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 10 09:06:47 2025 GMT
Not After : Oct 22 09:06:47 2025 GMT
Subject: CN=68c13fac-dbbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:57:ba:d5:29:9d:f4:0b:51:e0:68:a4:4c:dd:
a6:3e:8c:4a:f4:75:2c:ed:93:3b:cc:27:01:c4:2d:
f3:bc:14:42:cf:17:42:1d:c5:68:ec:f5:5e:7c:21:
2d:4a:20:80:86:fd:20:2b:c1:31:ac:c6:cc:0b:34:
7f:46:11:c7:e1:17:46:f7:a7:96:3d:cf:78:14:7c:
bf:3c:25:86:27:18:20:78:e0:16:63:5f:c7:c1:5f:
e5:54:f3:a1:24:ec:da:96:2d:08:e9:82:71:4e:0c:
e6:28:d5:71:49:19:39:46:66:9f:11:7e:0c:15:44:
4d:af:24:37:71:f0:56:6c:69:1a:7b:cc:7f:ad:ad:
4b:a1:2b:80:52:87:6d:97:aa:85:77:fd:bf:6c:1b:
45:b4:32:a5:fd:08:fc:3b:53:c8:86:68:56:b4:68:
1e:03:fc:c6:63:c5:fe:1d:b6:c9:8c:2d:b3:cf:2a:
44:cc:4d:67:d2:a1:cc:43:27:b6:aa:73:ea:4f:9a:
f6:60:4a:4a:26:af:47:4a:35:ab:d7:96:5e:69:61:
1b:a4:95:d5:c0:96:0d:46:93:f4:91:c4:89:44:fc:
7c:99:ea:18:28:dd:d1:bd:b3:31:79:d5:5f:38:92:
1e:d2:5d:09:b4:6d:d2:68:20:2a:72:f1:1f:84:4a:
df:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:55:B9:B6:2D:50:C6:39:8A:78:EA:4D:45:07:01:A4:DA:FA:00:0D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7D5FB0C28E2511F0A1A1EB96DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.205.16.0/20
Signature Algorithm: sha256WithRSAEncryption
77:f7:a4:ae:f0:bb:94:72:61:6a:88:00:01:25:06:ee:dd:d0:
4c:64:c9:40:ab:d5:4e:48:5f:87:01:ee:fe:ef:51:76:8a:78:
30:92:1f:de:1a:69:74:94:4c:ff:c9:72:28:b6:60:bf:ba:25:
2c:ff:f6:0d:1a:16:e6:9e:a1:2b:3a:09:84:e7:2a:64:01:b6:
8d:34:a3:2a:27:be:4d:f8:52:c4:c7:5c:a5:6b:75:07:f8:b2:
32:85:fe:de:7f:61:b4:80:94:0c:54:bc:a7:51:df:82:a9:7f:
00:79:ab:88:d3:16:51:0d:fb:7b:19:1d:92:ea:d7:96:a9:cc:
fb:8b:e6:94:4b:54:b4:11:98:24:1e:87:ca:53:64:bd:66:04:
a7:d9:87:b5:b4:a3:d7:bb:84:9f:6f:e8:4b:48:55:14:95:90:
8b:69:cd:53:5f:4f:9d:33:36:bd:4b:2d:76:51:8e:fc:70:49:
f8:cc:23:70:27:b3:59:bb:df:b5:df:3d:53:2c:ef:b2:a4:bf:
22:b1:51:d1:67:6e:2b:e2:76:b5:12:7d:ed:75:38:26:65:f5:
85:53:d9:cb:77:27:ab:99:6c:d2:dd:3b:27:5f:38:01:81:73:
be:9b:b5:6b:de:97:ae:9a:81:fa:66:25:f0:e4:73:72:1a:e9:
6b:75:30:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 11:33:56 2025 by rpki-client