Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/95841AB2AA8B11F0B49F37CADAE4EC9C.roa
File: 95841AB2AA8B11F0B49F37CADAE4EC9C.roa (raw, json)
Hash identifier: RtoPr+4STC4XQgol1uTnkDBvScl50UOu0u/4RO1UJb4=
Subject key identifier: 6B:EB:0B:A3:8E:B5:79:BC:B0:B0:AA:A6:1E:1D:B2:BB:6D:84:37:F7
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01813C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/95841AB2AA8B11F0B49F37CADAE4EC9C.roa
Signing time: Thu 16 Oct 2025 12:28:14 +0000
ROA not before: Thu 16 Oct 2025 12:28:08 +0000
ROA not after: Fri 21 Nov 2025 12:28:08 +0000
asID: 63199
IP address blocks: 45.195.78.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98620 (0x1813c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 16 12:28:08 2025 GMT
Not After : Nov 21 12:28:08 2025 GMT
Subject: CN=68f0e4de-e6de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:61:bd:44:d2:38:e9:d0:b6:f6:c6:b3:31:bd:
c9:d2:b4:cc:ae:bf:1d:89:ca:2a:9b:13:50:7b:4b:
e8:90:b6:79:16:24:17:d4:18:fe:6d:62:08:52:8a:
e6:39:3d:98:5c:7f:74:78:c4:fa:27:0f:c5:e2:0f:
85:0b:59:80:b5:46:4c:a6:4b:f3:47:57:15:0d:3d:
39:ea:61:f2:94:78:4e:ae:fb:bb:7f:12:35:5d:1e:
87:28:eb:30:85:38:9a:09:be:0d:97:ae:41:0e:6f:
3b:46:9a:c0:ea:df:ff:11:b9:78:8d:c5:9e:0c:ee:
79:2e:cb:8a:67:61:72:d5:14:c9:20:61:48:0c:8d:
23:9b:79:12:41:b8:04:04:ca:7f:ea:c1:76:fd:ff:
0d:2a:58:f2:36:ac:84:78:de:25:e8:5a:d8:38:a8:
32:f9:70:97:06:8c:98:3e:08:e9:68:ce:f2:65:a4:
f4:01:46:0b:f2:52:91:7b:72:1a:73:85:08:20:4b:
af:07:d0:4a:66:0d:1e:b1:6a:76:de:34:c8:c7:d5:
5d:3f:23:eb:83:78:bb:c1:84:2e:c7:50:63:b5:06:
9c:e2:da:b2:e3:ec:cc:f4:99:56:ae:58:c7:70:87:
3f:1b:1d:72:71:40:11:f7:dc:fe:81:1c:e9:18:23:
34:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:EB:0B:A3:8E:B5:79:BC:B0:B0:AA:A6:1E:1D:B2:BB:6D:84:37:F7
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/95841AB2AA8B11F0B49F37CADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.78.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:7a:e2:ae:88:aa:e2:e0:db:c8:61:70:da:7d:47:d0:27:21:
37:1f:b4:ab:38:53:12:3b:fa:88:ba:42:ab:22:51:67:27:c4:
76:78:f3:20:65:8a:59:66:0d:b9:36:2e:a2:b2:a6:bb:7f:c1:
f4:ba:1c:43:ae:04:bb:b8:63:a8:84:6d:05:b8:47:9f:ac:e2:
47:ad:e7:e6:9a:55:5a:c3:24:34:88:4e:5b:dc:b1:0c:2f:89:
ad:df:44:53:e4:b3:94:2e:5a:47:81:b8:94:6a:a6:7e:67:31:
8f:15:38:a4:ad:d0:f8:18:98:c3:a1:ab:5f:de:2f:7c:1d:3c:
46:72:5a:18:67:22:c9:d4:da:65:86:55:d1:23:2d:25:91:3f:
35:c0:5c:20:fb:5f:29:98:bb:e4:c4:62:47:99:49:15:0d:b5:
cb:7b:d6:91:60:66:4d:fe:6d:0d:a6:20:e0:00:07:d1:1d:e5:
fb:d4:5c:d0:e4:77:21:3f:8b:ed:ef:a6:b6:02:bd:2b:9f:92:
91:a2:f8:35:57:d9:6a:a0:27:a8:a6:13:34:d5:df:48:69:28:
d2:63:39:19:8d:fc:c3:7e:73:18:e8:8b:5e:fe:11:c5:6c:dd:
62:5a:fc:de:12:a1:91:5e:e1:ad:4f:c4:03:43:67:92:49:69:
79:1b:50:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 11:33:58 2025 by rpki-client