Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A06FDA989D6A11F09B1945E5DAE4EC9C.roa
File: A06FDA989D6A11F09B1945E5DAE4EC9C.roa (raw, json)
Hash identifier: NE8O+IQWE1g/lm+gE4DqKYIICVRekU0U/87KfjMyqz4=
Subject key identifier: 34:B5:17:8C:4F:39:BE:40:DB:AF:53:F8:E7:E8:22:1E:4F:C6:6F:8F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017DE3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A06FDA989D6A11F09B1945E5DAE4EC9C.roa
Signing time: Mon 29 Sep 2025 19:29:34 +0000
ROA not before: Mon 29 Sep 2025 19:29:26 +0000
ROA not after: Mon 05 Oct 2026 19:29:26 +0000
asID: 135600
IP address blocks: 45.195.232.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97763 (0x17de3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 29 19:29:26 2025 GMT
Not After : Oct 5 19:29:26 2026 GMT
Subject: CN=68dade1d-dc5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:37:af:24:57:c4:c1:20:09:65:e9:a7:6a:2a:
09:fe:83:3b:88:eb:37:74:44:e4:72:49:35:18:39:
94:00:44:ec:b1:74:d9:15:e4:18:79:cc:d6:3a:db:
01:d2:58:75:de:ed:1b:46:eb:9c:d5:41:8e:27:ad:
07:f3:4f:13:b6:dc:59:80:ac:dd:27:36:c8:47:8e:
2b:b6:de:90:65:fb:d6:af:fd:ae:84:8f:7d:b9:b0:
b4:f1:5a:79:eb:58:4b:08:d7:d9:9b:27:a6:93:ed:
6b:16:13:be:20:b2:64:f6:94:b4:0b:a1:04:6f:3b:
bb:23:9e:13:e1:98:ad:53:af:34:a0:5b:ac:19:d0:
8d:26:ec:0e:a3:9a:6e:53:81:38:fe:df:bf:c7:67:
bb:ad:bb:fb:62:db:af:c4:4a:9d:c5:c5:58:b8:06:
c7:7f:ff:12:b7:b3:00:4e:78:12:9e:af:89:91:e0:
a5:f9:72:3c:cb:85:e0:22:09:e2:fc:25:7f:30:12:
02:3e:94:3f:59:94:49:dc:e0:d5:83:24:b3:35:5d:
37:dc:e3:cb:a9:6f:8d:7d:7b:af:23:61:df:80:2f:
3c:36:8f:e6:61:f5:50:e0:4f:44:0d:89:ed:58:44:
50:fb:4a:08:7b:f3:c3:6f:73:1c:6d:12:df:f5:c6:
fe:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:B5:17:8C:4F:39:BE:40:DB:AF:53:F8:E7:E8:22:1E:4F:C6:6F:8F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A06FDA989D6A11F09B1945E5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.232.0/21
Signature Algorithm: sha256WithRSAEncryption
59:fd:10:2b:70:75:42:a8:08:f3:94:7e:5a:33:5e:bb:e4:f8:
58:31:d9:c0:f0:f3:fd:4d:4b:43:83:68:d0:67:9d:e7:fe:b6:
9a:d1:d9:04:84:c2:db:15:91:7f:4b:75:b9:78:bc:e2:73:51:
16:26:83:ea:c8:4b:96:fb:91:10:8f:7b:68:8a:b2:40:94:74:
31:14:c5:09:18:7a:8a:b3:f2:76:b4:5c:72:cd:74:c8:b8:a4:
9d:aa:3f:52:47:c1:5d:93:01:ca:3d:6c:0d:00:84:a2:07:a4:
c5:b1:55:ee:e1:d0:e8:a8:5a:f7:87:9f:db:5a:9c:2a:01:61:
54:c3:d4:fa:43:ea:2f:18:79:49:62:d5:51:c2:bb:13:72:04:
ff:d9:0d:11:80:42:4d:3f:3a:8d:c7:e6:47:84:38:03:35:4d:
2e:dc:4a:7b:5b:8a:0c:cc:10:75:5f:3a:b2:ec:6c:45:2e:bd:
0d:3f:40:c7:af:97:2b:ea:71:b5:50:8a:22:99:b3:61:01:69:
90:9a:c6:55:d3:92:84:63:d9:00:57:1c:76:0f:d5:4e:0b:c3:
81:81:53:4f:db:b3:df:06:ae:cd:fe:61:55:63:f7:31:55:4e:
0a:e3:f1:be:02:b3:b6:74:2c:c4:76:e7:13:a1:9d:8a:29:83:
65:12:57:7e
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAX3jMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwOTI5MTkyOTI2WhcNMjYxMDA1MTkyOTI2WjAYMRYw
FAYDVQQDEw02OGRhZGUxZC1kYzVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtDevJFfEwSAJZemnaioJ/oM7iOs3dETkckk1GDmUAETssXTZFeQYeczW
OtsB0lh13u0bRuuc1UGOJ60H808TttxZgKzdJzbIR44rtt6QZfvWr/2uhI99ubC0
8Vp561hLCNfZmyemk+1rFhO+ILJk9pS0C6EEbzu7I54T4ZitU680oFusGdCNJuwO
o5puU4E4/t+/x2e7rbv7YtuvxEqdxcVYuAbHf/8St7MATngSnq+JkeCl+XI8y4Xg
Igni/CV/MBICPpQ/WZRJ3ODVgySzNV033OPLqW+NfXuvI2HfgC88No/mYfVQ4E9E
DYntWERQ+0oIe/PDb3McbRLf9cb+swIDAQABo4ICojCCAp4wHQYDVR0OBBYEFDS1
F4xPOb5A269T+OfoIh5Pxm+PMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9BMDZGREE5ODlENkExMUYwOUIxOTQ1RTVEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDLcPoMA0GCSqGSIb3DQEBCwUA
A4IBAQBZ/RArcHVCqAjzlH5aM1675PhYMdnA8PP9TUtDg2jQZ53n/raa0dkEhMLb
FZF/S3W5eLzic1EWJoPqyEuW+5EQj3toirJAlHQxFMUJGHqKs/J2tFxyzXTIuKSd
qj9SR8FdkwHKPWwNAISiB6TFsVXu4dDoqFr3h5/bWpwqAWFUw9T6Q+ovGHlJYtVR
wrsTcgT/2Q0RgEJNPzqNx+ZHhDgDNU0u3Ep7W4oMzBB1Xzqy7GxFLr0NP0DHr5cr
6nG1UIoimbNhAWmQmsZV05KEY9kAVxx2D9VOC8OBgVNP27PfBq7N/mFVY/cxVU4K
4/G+ArO2dCzEducToZ2KKYNlEld+
-----END CERTIFICATE-----
Generated at Sun Oct 19 08:51:37 2025 by rpki-client