Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9B5D1546A41A11F0B09894D3DAE4EC9C.roa
File: 9B5D1546A41A11F0B09894D3DAE4EC9C.roa (raw, json)
Hash identifier: TKS8LBMB+0zLzUrezOBWlly7w4lyXsnXOsjxN0Cg0IU=
Subject key identifier: 60:AB:43:CB:AC:D6:C2:8E:E2:60:53:CE:C1:A1:12:70:3E:5E:D5:B8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017F5A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9B5D1546A41A11F0B09894D3DAE4EC9C.roa
Signing time: Wed 08 Oct 2025 07:44:23 +0000
ROA not before: Wed 08 Oct 2025 07:44:18 +0000
ROA not after: Sun 09 Nov 2025 07:44:18 +0000
asID: 327790
IP address blocks: 45.196.14.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98138 (0x17f5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 8 07:44:18 2025 GMT
Not After : Nov 9 07:44:18 2025 GMT
Subject: CN=68e61657-e109
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:8b:4e:a9:d5:14:a1:31:35:03:39:97:0e:6d:
f2:63:06:0e:20:33:f0:2c:70:ba:c5:15:94:f8:08:
b9:c8:b8:d3:8c:a0:aa:9b:a5:b9:5c:a3:55:27:fa:
9a:8d:4c:72:13:f8:2f:58:30:d8:0c:07:3d:41:73:
d0:07:47:27:52:e7:15:ae:5b:4b:51:b0:db:9b:d6:
3b:02:b2:92:fa:2b:20:3a:54:d6:f0:64:78:d5:2a:
62:31:b6:7a:56:6f:ac:2b:bc:be:e1:ff:8c:74:88:
d2:83:0a:69:c3:9e:27:f6:83:19:04:6f:ff:d9:14:
82:06:9b:a8:f0:f7:77:62:77:ae:7a:34:43:6c:8b:
75:3c:7d:03:62:4c:d6:c1:e4:ee:aa:fc:4d:8a:34:
e2:47:a1:b2:26:54:af:87:be:5f:16:0b:d1:8e:5e:
17:fc:8e:9a:22:51:69:82:3a:30:62:69:28:e3:81:
69:5d:20:5f:79:b2:7b:7e:07:eb:db:af:ae:36:45:
3d:37:89:a6:7d:fe:ca:d7:52:c7:91:37:2c:4c:2b:
de:d7:60:2e:a0:45:fc:36:b1:e6:0a:a7:e1:69:dd:
89:db:10:53:6d:28:6e:6b:a3:3f:88:cb:ed:be:3e:
09:6b:1d:24:5d:38:89:56:bd:9d:98:4c:29:d4:96:
15:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:AB:43:CB:AC:D6:C2:8E:E2:60:53:CE:C1:A1:12:70:3E:5E:D5:B8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9B5D1546A41A11F0B09894D3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.14.0/23
Signature Algorithm: sha256WithRSAEncryption
4f:5a:ca:99:eb:29:59:e7:05:ae:0e:55:24:79:c6:2e:7c:c8:
89:ba:68:43:0b:0b:7f:e6:c1:de:b3:73:47:b6:6d:8d:4d:75:
f6:0a:86:26:fd:62:d3:33:23:19:9f:07:8a:d1:69:3d:95:8e:
5e:3f:70:39:d5:12:7c:bc:aa:c4:8c:fa:d1:ef:27:20:35:de:
2a:a6:e9:82:86:07:1b:00:41:5d:3b:57:ae:c1:a4:24:a2:ed:
19:84:85:78:aa:2f:f3:d7:ca:92:e9:e1:74:0f:2a:47:94:b4:
a7:10:2e:6c:53:cd:51:ab:b1:95:c8:6b:da:1f:1c:86:79:86:
1d:33:fc:1e:dc:e4:ee:5b:e2:94:27:41:8c:0c:83:48:fa:d8:
d1:85:69:03:d7:5f:3e:f6:22:83:b0:35:f5:e5:7b:92:5a:8a:
bd:1a:a4:39:3d:76:f5:38:c6:1c:b3:9e:72:e6:fc:f8:f1:82:
fe:ea:1a:69:ea:53:ab:67:45:5c:0f:a2:2c:97:5c:7a:ce:4e:
9f:ae:69:c5:f0:55:88:a8:d4:10:fb:4a:95:80:7c:7c:3e:fc:
d2:84:dc:db:77:ae:da:74:4f:60:6c:4c:4b:66:28:c8:34:e5:
c8:b8:c1:8e:6b:8e:d5:cc:58:b8:86:30:91:b0:a8:8e:57:93:
3a:ac:5c:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:51:08 2025 by rpki-client