Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/871A00968E1F11F09A8111EDDAE4EC9C.roa
File: 871A00968E1F11F09A8111EDDAE4EC9C.roa (raw, json)
Hash identifier: /9bAkcGfZvCPfe4c4RgcJXxUATnkHltm8r0KzmvpHqY=
Subject key identifier: 24:D2:DC:DA:18:25:A8:9B:8E:87:A5:18:8D:07:B1:46:91:52:94:55
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017A4D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/871A00968E1F11F09A8111EDDAE4EC9C.roa
Signing time: Wed 10 Sep 2025 08:24:11 +0000
ROA not before: Wed 10 Sep 2025 08:24:06 +0000
ROA not after: Thu 16 Oct 2025 08:24:06 +0000
asID: 22773
IP address blocks: 45.202.106.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 20 Sep 2025 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96845 (0x17a4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 10 08:24:06 2025 GMT
Not After : Oct 16 08:24:06 2025 GMT
Subject: CN=68c135ab-0d5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:29:ea:c3:27:93:c1:71:2f:13:98:d4:b8:9c:
2b:9b:63:64:e6:8a:fe:87:db:f2:52:8e:47:7d:12:
d1:9d:8c:5c:b6:d6:30:0a:d5:39:c6:cf:bc:2b:1f:
d7:db:75:14:03:ee:c8:77:c0:f5:a3:cf:3a:65:da:
6e:fb:e5:b5:2f:42:df:e5:1e:20:cb:2b:e1:46:eb:
75:29:1e:41:e4:f1:bc:dd:29:b6:32:af:3d:52:49:
1c:31:16:0c:69:66:35:95:64:21:72:c7:d5:b4:a6:
c3:e9:ee:1d:48:e4:92:9e:bb:4e:8f:4c:ef:9a:57:
1e:1b:c9:07:72:c5:92:da:9c:15:d0:52:b0:6b:18:
9e:35:88:c7:d4:85:25:34:7e:93:bd:0c:4f:76:c8:
6a:31:0a:58:9b:26:87:fe:50:bf:89:83:59:cb:06:
87:2d:81:7d:7c:98:97:c0:10:06:54:5a:86:87:32:
e2:cf:43:28:2d:89:b0:82:a6:20:1f:37:7e:5f:fa:
a3:bc:fd:8f:ab:d0:1a:bb:89:54:b4:3f:ec:ec:2a:
c7:90:77:0a:28:07:be:a4:cd:32:42:fc:e8:5e:02:
92:57:a6:81:da:f4:25:6f:9f:c0:ca:4d:3d:33:69:
2b:a5:b1:fb:cd:b5:d7:e9:0a:b5:75:d2:37:a6:66:
86:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:D2:DC:DA:18:25:A8:9B:8E:87:A5:18:8D:07:B1:46:91:52:94:55
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/871A00968E1F11F09A8111EDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.106.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:1c:df:16:98:1c:bb:60:e1:06:9c:89:29:04:6f:af:11:ec:
30:03:7f:d9:1b:ad:da:1a:e8:e3:88:86:0b:94:c1:53:6e:d0:
41:03:22:4c:37:51:c2:74:ea:11:6d:a5:5b:e1:7e:a1:8f:6e:
a8:3d:55:79:78:63:76:d6:92:6b:c8:6a:1e:18:dd:32:33:fc:
3c:73:b2:f4:6f:ff:23:33:b2:d6:40:17:60:e1:98:59:17:30:
db:86:f1:4a:3e:3f:f1:d2:9c:53:59:6c:1a:53:b8:29:b3:4f:
a9:64:d5:73:91:7d:7a:a4:6c:1a:9f:12:92:9a:89:48:1a:1a:
25:db:ec:1f:b2:45:64:bc:62:97:2d:8b:47:48:ea:1a:67:08:
0c:ac:b6:a0:70:31:c4:a9:31:1f:6d:bb:40:ad:88:54:3c:f8:
bc:7b:0e:cc:5c:e6:05:32:b6:ed:6c:5c:70:ec:2d:d3:54:6d:
b0:24:29:6e:ff:6b:9c:f8:8f:18:5c:89:97:7b:da:16:35:c7:
e1:7c:eb:c5:9f:d5:85:1d:94:1c:e1:c3:e5:0a:a4:86:41:b0:
79:2b:be:9e:48:65:5b:44:be:8b:cf:02:50:c5:a6:97:be:d7:
1d:d0:69:59:95:b7:c9:b7:d1:0c:c5:fa:93:9b:c7:01:92:c1:
8c:c8:a0:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 18 13:53:34 2025 by rpki-client