Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9E164444A43111F0A5EF92E5DAE4EC9C.roa
File: 9E164444A43111F0A5EF92E5DAE4EC9C.roa (raw, json)
Hash identifier: iCCZU6fIssrQUIAXA39IltYLQ14fvNNLjrXJSaEju5c=
Subject key identifier: 3C:61:63:19:2E:AA:CB:52:90:45:3F:92:AA:64:4B:58:BD:82:81:3B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017F68
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9E164444A43111F0A5EF92E5DAE4EC9C.roa
Signing time: Wed 08 Oct 2025 10:29:06 +0000
ROA not before: Wed 08 Oct 2025 10:29:02 +0000
ROA not after: Wed 12 Nov 2025 10:29:02 +0000
asID: 48266
IP address blocks: 45.207.218.0/23 maxlen: 24
45.207.220.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98152 (0x17f68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 8 10:29:02 2025 GMT
Not After : Nov 12 10:29:02 2025 GMT
Subject: CN=68e63cf2-d6e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:74:36:28:cd:e8:52:6c:24:7a:ba:0a:c4:93:
88:3d:1f:e7:b5:5d:ff:29:6e:9b:e6:87:bd:85:f9:
68:58:10:84:c8:20:3d:f3:85:ab:9a:b6:f7:27:69:
84:31:ca:e8:89:48:12:22:f4:11:c4:b7:f2:25:49:
67:1b:0e:4c:ef:cf:9b:77:71:11:c0:a4:eb:ce:f0:
1d:8e:f0:aa:73:ef:dd:d8:51:eb:9b:61:09:d7:da:
98:80:98:66:55:5c:f5:d5:e7:97:21:27:60:e9:42:
78:02:98:1a:bd:9f:df:d8:5f:d0:ba:fd:9f:f8:e7:
63:87:1d:6a:a7:39:37:2a:31:09:40:4b:bb:ab:49:
53:02:d9:29:75:30:86:8a:87:93:93:12:89:4e:47:
ca:2e:3e:39:7a:00:20:03:bf:1e:85:56:12:d7:6d:
43:fa:a7:e1:41:90:00:79:a4:8e:37:45:b8:7c:e1:
fc:43:2d:22:ad:89:67:f6:42:97:9f:ae:0b:db:70:
76:a6:51:2a:fd:b5:7d:1f:a3:de:61:8c:50:a3:0c:
a7:a0:58:88:b7:d9:13:ec:f7:92:97:84:1c:56:53:
ac:53:5a:82:5c:7e:d9:75:55:63:28:d5:ea:c0:65:
3d:ad:9e:b0:cc:b9:63:7a:95:41:b0:b4:86:11:a5:
1c:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:61:63:19:2E:AA:CB:52:90:45:3F:92:AA:64:4B:58:BD:82:81:3B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9E164444A43111F0A5EF92E5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.218.0-45.207.223.255
Signature Algorithm: sha256WithRSAEncryption
25:4d:1b:3e:70:1b:8d:73:e7:b4:b1:4a:f1:e4:f1:c1:9c:65:
f1:f4:d5:ea:4a:d1:2b:1e:9e:28:bf:bb:3c:52:c7:94:8a:f5:
45:be:30:f2:fc:1d:fc:f5:18:e0:bc:aa:d1:1a:6e:39:03:11:
96:67:bd:b3:58:68:df:9c:46:f7:67:3f:f8:80:02:7a:e4:87:
ba:32:64:84:20:69:34:af:71:11:30:88:af:e1:36:91:78:e7:
89:dc:bc:57:91:cc:8b:82:a2:00:03:af:40:b6:be:28:76:ff:
83:d5:2d:0b:87:f7:dc:67:64:6a:d9:c4:76:e2:5f:67:e7:25:
3c:7f:60:4c:f3:26:ea:6e:ba:eb:27:1f:f6:f8:0b:97:9a:75:
c1:38:7c:15:4c:05:40:05:b2:19:23:4a:44:1f:d7:14:3e:6b:
e1:27:79:79:90:d2:c8:d7:03:58:0d:74:79:d4:57:48:f6:7e:
45:38:e0:e7:1f:e6:66:34:66:7f:72:9d:65:1b:99:65:3b:d6:
2d:35:f2:1b:13:d0:c5:24:c7:17:a4:42:77:e5:db:db:0e:36:
5b:d5:ce:74:18:01:28:61:7c:ac:5a:28:45:e4:16:f1:f5:f2:
68:4d:c2:d9:37:4b:ac:93:52:a2:ab:64:39:26:a2:bf:ad:6b:
b2:80:e0:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:52:42 2025 by rpki-client