Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A0CB9B6C841511F0939BDBEBDAE4EC9C.roa
File: A0CB9B6C841511F0939BDBEBDAE4EC9C.roa (raw, json)
Hash identifier: e4NxncDXMKzJOI3EHAOv8U6IjwHDftguwgxoYDroiFU=
Subject key identifier: 09:E1:DF:D6:6D:5A:01:4B:6A:BB:AB:AC:DD:58:D3:4C:84:CF:0D:0E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0172A2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A0CB9B6C841511F0939BDBEBDAE4EC9C.roa
Signing time: Thu 28 Aug 2025 13:48:08 +0000
ROA not before: Thu 28 Aug 2025 13:48:03 +0000
ROA not after: Thu 04 Sep 2025 13:48:03 +0000
asID: 23764
IP address blocks: 45.196.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Sep 2025 13:48:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94882 (0x172a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 28 13:48:03 2025 GMT
Not After : Sep 4 13:48:03 2025 GMT
Subject: CN=68b05e18-c47c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:10:f9:7b:76:28:72:40:c0:b1:27:ba:b3:fa:
9b:1d:ab:82:1d:d8:d9:42:81:b8:7c:e7:c7:cb:d4:
6f:81:ea:06:8c:08:e8:b6:e1:ef:0c:7d:10:c4:4c:
91:6f:dd:6b:ae:7b:cf:6b:1d:95:eb:38:ab:97:0d:
f5:4a:00:29:b1:9d:e1:35:78:31:f0:0b:0e:6a:d2:
f3:f0:5c:7e:f5:e6:58:55:67:8d:1e:62:58:f1:d7:
29:3f:88:f4:69:f7:91:7a:01:01:00:d7:b7:5a:95:
7e:77:01:59:a6:ed:7f:97:ec:7d:c1:5c:a9:ac:47:
c7:93:ea:81:36:00:ea:b5:77:68:95:bb:6f:b7:f2:
e5:91:e3:0b:8f:d7:f2:35:a7:86:11:74:9a:15:26:
19:b0:db:4b:b5:da:91:b0:2c:fd:83:f0:93:d7:23:
69:d9:f5:7b:15:06:44:7e:70:44:c9:ff:8f:30:16:
3a:1b:a2:5a:25:09:07:be:9f:78:8f:bf:07:22:74:
8a:45:ab:b1:30:da:2f:38:a3:ca:1b:31:e9:93:b3:
48:23:a2:f0:2d:26:a8:6e:be:90:53:ec:c4:ea:1d:
6c:f0:4c:23:70:c0:eb:2f:56:52:e8:e5:4d:b0:29:
04:24:a7:e7:9a:a6:d9:f8:5d:cd:6b:32:68:3c:89:
ae:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:E1:DF:D6:6D:5A:01:4B:6A:BB:AB:AC:DD:58:D3:4C:84:CF:0D:0E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A0CB9B6C841511F0939BDBEBDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.24.0/24
Signature Algorithm: sha256WithRSAEncryption
59:29:83:c0:e3:3f:11:91:9a:b3:7d:ce:8c:d9:45:8e:99:1f:
70:43:96:73:e2:9d:a3:2d:01:8f:01:ac:fb:11:75:4d:d2:54:
70:bd:31:05:f7:8c:53:b1:2d:76:f2:18:0a:0d:db:6e:eb:0f:
6a:82:ea:1c:4b:ca:c0:3f:5e:ec:e3:03:b8:30:8a:6f:a5:a2:
c2:f5:89:a3:91:3c:66:f1:2d:0e:d2:f4:bd:69:50:74:68:45:
b8:f4:ca:b5:f5:25:c8:f1:64:c3:93:e9:fc:af:d1:32:bc:02:
0a:dc:9e:46:b2:25:5d:eb:08:21:3e:dc:31:29:7e:07:b6:7d:
ea:9f:79:d6:df:fe:04:7d:27:ed:ee:d2:b4:16:56:5b:a2:47:
ab:42:dc:eb:ca:a3:a6:cf:7b:a7:27:3e:c9:c0:f9:74:1d:0d:
55:8b:d0:10:72:4c:b4:9e:b9:4e:1a:88:85:1d:27:69:84:05:
19:ab:e1:ff:98:58:96:9d:7b:3a:3a:f9:69:4c:03:79:8d:42:
8b:92:b9:bf:38:5d:5b:58:22:a6:5b:4d:f1:ee:58:f8:99:96:
a5:b5:28:31:ba:51:4a:23:df:80:8b:ea:7b:8e:da:ed:f6:39:
9f:8d:32:fe:cd:ba:7b:9f:4a:23:5d:fd:8c:c1:22:9c:e8:5f:
75:cf:ce:fd
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAXKiMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwODI4MTM0ODAzWhcNMjUwOTA0MTM0ODAzWjAYMRYw
FAYDVQQDEw02OGIwNWUxOC1jNDdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxBD5e3YockDAsSe6s/qbHauCHdjZQoG4fOfHy9RvgeoGjAjotuHvDH0Q
xEyRb91rrnvPax2V6zirlw31SgApsZ3hNXgx8AsOatLz8Fx+9eZYVWeNHmJY8dcp
P4j0afeRegEBANe3WpV+dwFZpu1/l+x9wVyprEfHk+qBNgDqtXdolbtvt/LlkeML
j9fyNaeGEXSaFSYZsNtLtdqRsCz9g/CT1yNp2fV7FQZEfnBEyf+PMBY6G6JaJQkH
vp94j78HInSKRauxMNovOKPKGzHpk7NII6LwLSaobr6QU+zE6h1s8EwjcMDrL1ZS
6OVNsCkEJKfnmqbZ+F3NazJoPImu5QIDAQABo4ICojCCAp4wHQYDVR0OBBYEFAnh
39ZtWgFLarurrN1Y00yEzw0OMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9BMENCOUI2Qzg0MTUxMUYwOTM5QkRCRUJEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALcQYMA0GCSqGSIb3DQEBCwUA
A4IBAQBZKYPA4z8RkZqzfc6M2UWOmR9wQ5Zz4p2jLQGPAaz7EXVN0lRwvTEF94xT
sS128hgKDdtu6w9qguocS8rAP17s4wO4MIpvpaLC9YmjkTxm8S0O0vS9aVB0aEW4
9Mq19SXI8WTDk+n8r9EyvAIK3J5GsiVd6wghPtwxKX4Htn3qn3nW3/4EfSft7tK0
FlZbokerQtzryqOmz3unJz7JwPl0HQ1Vi9AQcky0nrlOGoiFHSdphAUZq+H/mFiW
nXs6OvlpTAN5jUKLkrm/OF1bWCKmW03x7lj4mZaltSgxulFKI9+Ai+p7jtrt9jmf
jTL+zbp7n0ojXf2MwSKc6F91z879
-----END CERTIFICATE-----
Generated at Wed Sep 3 18:22:00 2025 by rpki-client