Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A84F388C83E111F08792E89CDAE4EC9C.roa
File: A84F388C83E111F08792E89CDAE4EC9C.roa (raw, json)
Hash identifier: ygtdmjFBXUu8EvMHw1HI73C3o3DzXbK/P9DefGAhCSs=
Subject key identifier: DC:25:D6:40:EF:EF:5A:2F:01:7E:60:B9:10:C4:C4:6C:CD:8B:01:73
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017245
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A84F388C83E111F08792E89CDAE4EC9C.roa
Signing time: Thu 28 Aug 2025 07:36:07 +0000
ROA not before: Thu 28 Aug 2025 07:36:00 +0000
ROA not after: Sun 21 Sep 2025 07:36:00 +0000
asID: 202656
IP address blocks: 45.192.48.0/24 maxlen: 24
45.192.49.0/24 maxlen: 24
45.192.50.0/24 maxlen: 24
45.192.51.0/24 maxlen: 24
45.192.54.0/24 maxlen: 24
45.192.55.0/24 maxlen: 24
45.192.56.0/24 maxlen: 24
45.192.57.0/24 maxlen: 24
45.192.58.0/24 maxlen: 24
45.192.60.0/24 maxlen: 24
45.192.61.0/24 maxlen: 24
45.192.62.0/24 maxlen: 24
45.195.160.0/24 maxlen: 24
45.195.166.0/24 maxlen: 24
45.195.169.0/24 maxlen: 24
45.195.171.0/24 maxlen: 24
45.195.172.0/24 maxlen: 24
45.195.173.0/24 maxlen: 24
45.195.178.0/24 maxlen: 24
45.195.180.0/24 maxlen: 24
45.195.182.0/24 maxlen: 24
45.195.183.0/24 maxlen: 24
45.195.184.0/24 maxlen: 24
45.195.185.0/24 maxlen: 24
45.195.187.0/24 maxlen: 24
45.195.188.0/24 maxlen: 24
45.195.191.0/24 maxlen: 24
45.199.192.0/24 maxlen: 24
45.199.193.0/24 maxlen: 24
45.199.194.0/24 maxlen: 24
45.199.195.0/24 maxlen: 24
45.199.196.0/24 maxlen: 24
45.199.197.0/24 maxlen: 24
45.199.198.0/24 maxlen: 24
45.199.199.0/24 maxlen: 24
45.199.200.0/24 maxlen: 24
45.199.201.0/24 maxlen: 24
45.199.202.0/24 maxlen: 24
45.199.203.0/24 maxlen: 24
45.199.204.0/24 maxlen: 24
45.199.205.0/24 maxlen: 24
45.199.206.0/24 maxlen: 24
45.199.221.0/24 maxlen: 24
45.199.222.0/24 maxlen: 24
45.199.223.0/24 maxlen: 24
45.199.224.0/24 maxlen: 24
45.199.225.0/24 maxlen: 24
45.199.226.0/24 maxlen: 24
45.199.227.0/24 maxlen: 24
45.199.228.0/24 maxlen: 24
45.199.229.0/24 maxlen: 24
45.199.230.0/24 maxlen: 24
45.199.241.0/24 maxlen: 24
45.199.242.0/24 maxlen: 24
45.199.243.0/24 maxlen: 24
45.199.244.0/24 maxlen: 24
45.199.245.0/24 maxlen: 24
45.199.249.0/24 maxlen: 24
45.199.250.0/24 maxlen: 24
45.199.252.0/24 maxlen: 24
45.199.255.0/24 maxlen: 24
45.200.160.0/24 maxlen: 24
45.200.161.0/24 maxlen: 24
45.200.162.0/24 maxlen: 24
45.200.163.0/24 maxlen: 24
45.200.164.0/24 maxlen: 24
45.200.165.0/24 maxlen: 24
45.200.166.0/24 maxlen: 24
45.200.167.0/24 maxlen: 24
45.200.168.0/24 maxlen: 24
45.200.169.0/24 maxlen: 24
45.200.170.0/24 maxlen: 24
45.200.171.0/24 maxlen: 24
45.200.172.0/24 maxlen: 24
45.200.173.0/24 maxlen: 24
45.200.174.0/24 maxlen: 24
45.200.175.0/24 maxlen: 24
45.200.176.0/24 maxlen: 24
45.200.177.0/24 maxlen: 24
45.200.178.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94789 (0x17245)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 28 07:36:00 2025 GMT
Not After : Sep 21 07:36:00 2025 GMT
Subject: CN=68b006e7-3de0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a3:c7:43:49:14:1a:88:b7:bf:f8:16:da:7f:
02:b9:96:d1:84:15:10:fe:8e:28:f3:61:87:0c:e3:
1f:ad:10:10:f9:9c:fc:00:e1:85:7a:96:05:e5:77:
31:6d:d5:a9:e6:82:5b:1a:a4:d2:75:a6:00:3a:ce:
78:73:68:68:6b:8f:6b:34:3c:3b:84:ce:3c:d7:84:
c1:0e:37:d0:97:2c:d4:71:05:4f:34:fc:1a:c3:9a:
53:4c:f5:65:4e:af:b9:f3:54:b2:20:4c:23:1c:a7:
5b:ec:3c:7c:95:1e:18:8a:eb:13:f2:67:49:27:a0:
a2:fd:03:bb:92:a9:98:1d:e7:19:50:3c:4d:4c:41:
66:07:74:14:f7:1b:f9:ce:03:b7:97:06:3b:f6:34:
86:c8:83:bc:78:74:c5:bd:e6:4f:47:80:2d:ae:a7:
4f:a1:96:2a:26:a8:c2:08:56:e9:3e:51:85:ac:4c:
ac:a5:6d:57:2f:d7:f6:ac:16:98:ea:25:f8:95:56:
33:fe:a7:8d:41:7e:cb:28:e0:9a:30:c6:58:f2:77:
3b:63:6b:01:a0:61:2a:30:24:8b:6d:b5:77:a2:cb:
2d:ec:8c:20:01:73:2b:cd:7d:23:c0:4f:ed:2b:cd:
85:a8:a5:ee:c5:41:c1:37:b4:a6:f3:e5:85:90:96:
cf:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:25:D6:40:EF:EF:5A:2F:01:7E:60:B9:10:C4:C4:6C:CD:8B:01:73
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A84F388C83E111F08792E89CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.48.0/22
45.192.54.0-45.192.58.255
45.192.60.0-45.192.62.255
45.195.160.0/24
45.195.166.0/24
45.195.169.0/24
45.195.171.0-45.195.173.255
45.195.178.0/24
45.195.180.0/24
45.195.182.0-45.195.185.255
45.195.187.0-45.195.188.255
45.195.191.0/24
45.199.192.0-45.199.206.255
45.199.221.0-45.199.230.255
45.199.241.0-45.199.245.255
45.199.249.0-45.199.250.255
45.199.252.0/24
45.199.255.0/24
45.200.160.0-45.200.178.255
Signature Algorithm: sha256WithRSAEncryption
90:47:ac:74:b8:c8:b9:ce:d7:bf:88:47:9c:88:7f:0b:ee:d5:
eb:5d:8b:38:7c:2e:35:d7:f9:a7:be:50:e6:6b:c0:a2:ba:3b:
23:9f:fc:45:ff:75:df:cc:eb:c8:58:dd:04:d7:8c:f3:35:09:
87:86:a5:4d:a9:b6:8a:aa:1d:1a:d4:dd:3a:67:9e:20:2f:32:
27:80:26:2a:5e:ec:07:d9:52:27:3a:c6:4a:b4:0d:38:bc:9f:
93:55:8d:26:b6:a4:b9:d4:65:f6:51:22:bd:34:6f:bb:75:cc:
ec:fb:10:cd:b5:be:91:2f:b1:aa:ad:e1:a8:c8:c8:54:75:85:
15:2d:d1:be:05:ce:bc:b1:44:88:13:8c:cd:69:1c:74:57:33:
ec:51:a7:14:10:e9:47:74:c0:ec:fe:66:ee:bd:79:c8:e0:7c:
ec:3d:a6:8d:42:d5:0f:24:7d:81:1e:57:3f:a1:90:c5:76:a4:
95:e5:a8:90:1f:26:6f:25:eb:e8:70:d5:c9:cb:cd:bc:ab:27:
ef:fe:0f:08:9e:7a:cc:87:4d:63:40:fd:a9:e8:25:fd:4e:c1:
aa:f2:93:c9:05:b3:4d:86:d8:5b:77:01:e4:ff:6d:d7:56:bf:
31:6c:23:8d:c9:5f:96:7f:58:f3:a3:2d:2e:5a:36:cc:04:4d:
51:38:b9:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 3 18:22:11 2025 by rpki-client