Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8A717CEAA5AF11F08C64E595DAE4EC9C.roa
File: 8A717CEAA5AF11F08C64E595DAE4EC9C.roa (raw, json)
Hash identifier: AOrvF3pUan70T/nyKk3+UUPrY5EBKh1SyypF7GVBUuA=
Subject key identifier: F4:CD:97:FB:DE:8C:32:AE:2D:70:FB:EC:61:EF:A7:5F:14:0D:2E:F5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017FE0
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8A717CEAA5AF11F08C64E595DAE4EC9C.roa
Signing time: Fri 10 Oct 2025 08:03:01 +0000
ROA not before: Fri 10 Oct 2025 08:02:56 +0000
ROA not after: Sun 16 Nov 2025 08:02:56 +0000
asID: 401783
IP address blocks: 45.192.113.0/24 maxlen: 24
45.192.114.0/24 maxlen: 24
45.192.116.0/23 maxlen: 24
45.192.118.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98272 (0x17fe0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 10 08:02:56 2025 GMT
Not After : Nov 16 08:02:56 2025 GMT
Subject: CN=68e8bdb5-6717
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:77:a2:ce:df:06:bd:5f:cc:05:fc:eb:f0:06:
ce:b0:99:7c:be:8e:54:96:69:3e:b5:4b:b4:ec:73:
ca:ea:97:a9:be:8c:7f:d8:3f:71:eb:df:84:4a:2b:
7b:78:c4:53:33:15:13:7e:df:c3:53:ad:27:fa:50:
12:78:1c:de:79:58:a0:20:53:99:2d:92:ae:40:5e:
09:04:1a:84:26:9b:6e:27:d9:72:52:ae:21:4f:5a:
d5:9a:21:8f:82:77:8c:0e:9b:9b:a3:24:f2:81:89:
28:41:a8:19:f3:b3:08:54:f5:fd:97:91:a5:54:e0:
72:23:5f:e7:b5:51:5a:04:53:18:ee:d4:c9:b0:72:
f8:45:12:60:48:25:9a:eb:c4:8b:62:4f:07:79:43:
17:79:14:f4:e5:a3:f8:1f:3b:32:07:5b:27:8e:87:
54:a0:8e:b6:09:dc:1e:73:aa:a0:58:a8:11:24:9d:
99:53:43:e7:80:bf:9b:02:a0:04:b6:cc:22:e0:f7:
28:87:3d:4f:23:f2:04:28:1e:5f:1e:95:92:8e:9f:
36:09:4d:27:8a:ae:b4:3c:74:07:96:2f:80:53:10:
2e:97:3a:13:5e:8c:e7:9d:ca:e4:1c:66:a0:00:53:
93:a1:fd:a8:6e:2b:cf:31:d1:80:02:39:e5:bf:b1:
09:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:CD:97:FB:DE:8C:32:AE:2D:70:FB:EC:61:EF:A7:5F:14:0D:2E:F5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8A717CEAA5AF11F08C64E595DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.113.0-45.192.114.255
45.192.116.0/22
Signature Algorithm: sha256WithRSAEncryption
93:fa:49:08:86:74:fb:a5:2d:f7:0b:25:58:82:09:8d:41:64:
29:49:6d:05:12:66:75:0a:9e:6a:d9:ac:0c:6e:5d:44:92:0e:
3e:fc:25:82:30:47:28:c4:08:4a:21:4d:1b:ac:01:89:08:67:
1e:55:6d:91:d1:37:02:ee:74:5a:67:30:98:63:2b:e7:a5:f2:
9a:42:67:ed:4d:90:6e:59:ed:db:2a:71:6f:9f:81:a3:48:fe:
06:47:b7:81:d6:fd:f8:46:fa:92:c6:12:2d:ce:4f:b5:a4:67:
eb:4b:a1:b7:d0:1b:e9:00:81:a1:92:0c:0a:01:e7:f0:93:96:
98:b4:0d:a4:b4:30:70:05:b9:f7:e9:67:45:34:49:ff:77:3b:
50:9c:08:6c:65:35:56:b6:90:d0:a6:2b:c4:ce:b0:f5:18:85:
d2:82:0e:d3:0d:85:4f:22:08:c5:5a:c6:29:86:51:d6:53:0e:
91:95:84:17:0e:cc:19:3c:69:f9:09:dc:d1:4f:3e:50:e6:33:
91:2b:86:a4:20:1a:74:8d:ee:d7:d2:87:3b:1f:23:79:f3:0a:
e7:14:e4:7c:51:12:ff:fc:5c:02:7c:42:22:19:9f:3a:32:e0:
4b:a7:97:51:1d:cc:fb:28:29:d3:9c:73:26:1f:64:69:ea:34:
6d:fc:90:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:51:01 2025 by rpki-client