Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BCAD56407E6111F0858E83B0DAE4EC9C.roa
File: BCAD56407E6111F0858E83B0DAE4EC9C.roa (raw, json)
Hash identifier: e8ya0ZY7mTeDxu8G1LCbuSonFNEWsQdl4Gwyu+RORos=
Subject key identifier: BE:DE:90:4F:4B:CD:77:D3:41:EA:EA:5F:2B:0A:CF:24:A8:E5:26:C4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016DB3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BCAD56407E6111F0858E83B0DAE4EC9C.roa
Signing time: Thu 21 Aug 2025 07:37:50 +0000
ROA not before: Thu 21 Aug 2025 07:37:44 +0000
ROA not after: Sat 01 Nov 2025 07:37:44 +0000
asID: 137443
IP address blocks: 45.192.162.0/24 maxlen: 24
45.192.172.0/24 maxlen: 24
45.192.173.0/24 maxlen: 24
45.192.174.0/24 maxlen: 24
45.192.176.0/24 maxlen: 24
45.192.177.0/24 maxlen: 24
45.192.178.0/24 maxlen: 24
45.192.179.0/24 maxlen: 24
45.192.182.0/24 maxlen: 24
45.192.183.0/24 maxlen: 24
45.192.184.0/24 maxlen: 24
45.192.186.0/24 maxlen: 24
45.192.187.0/24 maxlen: 24
45.192.188.0/24 maxlen: 24
45.192.189.0/24 maxlen: 24
45.192.190.0/24 maxlen: 24
45.192.191.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Aug 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93619 (0x16db3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 21 07:37:44 2025 GMT
Not After : Nov 1 07:37:44 2025 GMT
Subject: CN=68a6cccd-d5fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:05:e8:46:5e:93:42:8c:01:95:08:95:72:66:
5f:99:9c:09:46:f7:34:f2:02:eb:18:2e:21:79:57:
99:5e:a2:a9:fa:13:c0:b2:77:47:44:ef:99:38:4b:
65:ba:de:e8:b1:e5:97:30:6c:c9:d7:04:d3:4d:3e:
68:82:70:61:e3:08:3c:bc:b2:37:0f:98:26:e4:a4:
0f:cf:54:44:52:12:ef:17:76:ad:2f:40:1e:23:e9:
7d:1a:d7:41:16:8d:33:e6:16:9f:99:a9:4b:29:46:
f2:3a:6a:dd:03:14:33:dd:86:b3:23:18:91:95:19:
b1:57:2a:ca:d6:f3:9d:1d:cd:13:c4:6e:76:ca:ef:
f5:eb:c5:d7:76:2a:7b:81:69:ff:c6:c3:fe:c7:c1:
51:90:97:d1:ac:5a:ce:9a:43:8d:7a:5e:83:5b:b4:
7e:48:05:86:48:cf:5d:51:52:dd:d0:7d:93:15:6a:
2e:19:64:93:94:9e:68:57:ea:73:53:44:ff:b7:37:
da:7b:dc:d3:a8:9a:93:c4:c8:93:1d:1c:b4:0f:d9:
d9:d7:fe:08:83:73:c4:eb:a2:20:6a:99:df:dd:0e:
8c:29:b2:1f:a6:f2:85:81:59:0b:0e:d8:35:12:5d:
04:3a:ee:81:12:8b:66:06:a8:94:d8:44:b8:aa:15:
c0:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:DE:90:4F:4B:CD:77:D3:41:EA:EA:5F:2B:0A:CF:24:A8:E5:26:C4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BCAD56407E6111F0858E83B0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.162.0/24
45.192.172.0-45.192.174.255
45.192.176.0/22
45.192.182.0-45.192.184.255
45.192.186.0-45.192.191.255
Signature Algorithm: sha256WithRSAEncryption
0a:b8:dc:f4:ca:6b:24:a3:a9:78:14:9a:12:19:2c:22:57:f7:
75:d0:ac:ca:f0:41:86:c5:a2:90:72:82:43:08:92:31:97:5a:
d6:cf:81:09:8d:72:e7:d4:10:3e:55:2a:79:41:2a:16:02:17:
60:ac:b9:37:ee:26:76:04:ec:55:62:c9:d1:d7:b5:37:83:a7:
9b:83:36:a8:e5:bd:2b:de:8d:85:1b:73:a2:93:d2:ca:9c:5e:
0f:36:ba:e0:d3:ab:e1:1e:8a:a1:3c:47:e0:10:bd:b7:cd:8c:
6b:26:1b:64:55:4d:1e:2b:12:40:23:d7:5c:32:53:ca:66:2b:
7d:93:98:56:7b:d6:35:9d:f3:92:52:9f:d6:80:16:f8:c9:67:
8d:9a:01:6b:31:8f:6b:40:51:12:ef:c8:ef:0f:12:41:a6:bf:
58:bb:19:fe:56:55:7f:a3:dd:3e:88:cb:b6:b0:e2:de:ac:87:
65:ff:f9:94:fa:b8:4e:cc:5c:a3:b0:e6:72:96:c7:3e:0a:bf:
53:8b:f8:12:c4:44:4a:88:34:19:5d:8c:44:0f:a0:a7:11:62:
f9:90:b8:8e:71:a7:23:20:e6:2a:1e:ee:67:32:36:89:7d:59:
db:bc:99:aa:75:74:88:4d:8c:3a:1d:70:77:eb:85:7a:d6:0b:
28:a5:67:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 22 23:42:24 2025 by rpki-client