Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BD6D55D0840611F0863D158DDAE4EC9C.roa
File: BD6D55D0840611F0863D158DDAE4EC9C.roa (raw, json)
Hash identifier: x8FUGwf9w8dUU27Q16dGdiOVEhEUTxPnkUMbCLrVnZU=
Subject key identifier: 54:3F:00:AD:B7:AB:48:4F:8C:9A:B6:47:B8:A2:77:9F:6A:CB:BA:DB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01728D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BD6D55D0840611F0863D158DDAE4EC9C.roa
Signing time: Thu 28 Aug 2025 12:01:33 +0000
ROA not before: Thu 28 Aug 2025 12:01:26 +0000
ROA not after: Wed 01 Oct 2025 12:01:26 +0000
asID: 44559
IP address blocks: 45.192.52.0/24 maxlen: 24
45.192.53.0/24 maxlen: 24
45.192.253.0/24 maxlen: 24
45.192.254.0/24 maxlen: 24
45.192.255.0/24 maxlen: 24
45.195.96.0/24 maxlen: 24
45.195.97.0/24 maxlen: 24
45.195.98.0/24 maxlen: 24
45.195.99.0/24 maxlen: 24
45.195.100.0/24 maxlen: 24
45.195.101.0/24 maxlen: 24
45.195.102.0/24 maxlen: 24
45.195.162.0/24 maxlen: 24
45.195.163.0/24 maxlen: 24
45.195.164.0/24 maxlen: 24
45.195.165.0/24 maxlen: 24
45.195.167.0/24 maxlen: 24
45.195.168.0/24 maxlen: 24
45.195.189.0/24 maxlen: 24
45.195.190.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 05 Sep 2025 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94861 (0x1728d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 28 12:01:26 2025 GMT
Not After : Oct 1 12:01:26 2025 GMT
Subject: CN=68b0451d-5733
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:e3:50:ee:77:b2:a2:70:83:71:b6:c3:9f:9d:
9b:3b:61:42:58:3a:18:44:f9:39:97:5d:67:fa:73:
0e:e6:ec:6a:48:4f:a6:95:de:d3:5d:29:cd:e5:7b:
06:e3:9c:ce:65:65:cd:75:3c:0b:91:cc:4b:57:0d:
1d:c3:e0:75:ed:58:c6:58:96:c2:a4:14:ca:56:c2:
96:23:f3:63:76:f2:ac:77:75:2b:61:6e:ca:d6:d3:
4a:f9:37:e1:d4:bb:d2:e4:12:1f:58:13:fe:2c:9c:
9d:9d:cc:6d:64:74:2b:9d:c7:3f:ef:b2:7a:06:42:
cf:97:74:f3:55:9d:b2:46:e1:51:d2:8b:99:9f:e1:
c4:68:3b:b8:25:f3:99:33:a2:3b:2d:71:cb:09:07:
6d:91:6a:e4:e6:c1:98:e1:5b:a1:75:2f:ac:5c:f3:
b0:da:77:c0:d2:80:a1:3c:f7:67:d8:c0:13:d5:43:
f3:06:49:a6:1b:7e:60:a2:97:4e:9d:8c:8c:ab:04:
f0:aa:15:30:a3:6d:82:ce:b8:6c:d1:05:30:a6:c7:
d6:9b:89:69:c5:c2:16:18:f2:b1:7e:3f:d3:d1:88:
84:9d:d5:82:7a:74:ba:9f:69:58:0c:5f:10:3c:df:
92:82:ab:6e:f2:57:dd:35:93:7b:68:bf:2c:74:50:
84:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:3F:00:AD:B7:AB:48:4F:8C:9A:B6:47:B8:A2:77:9F:6A:CB:BA:DB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BD6D55D0840611F0863D158DDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.52.0/23
45.192.253.0-45.192.255.255
45.195.96.0-45.195.102.255
45.195.162.0-45.195.165.255
45.195.167.0-45.195.168.255
45.195.189.0-45.195.190.255
Signature Algorithm: sha256WithRSAEncryption
2d:84:82:18:f3:f1:c1:d1:62:6b:d6:55:be:9e:00:df:0b:c5:
d5:5d:3f:43:a8:20:59:7d:7a:4d:41:b5:5b:c8:e4:a1:dc:fa:
c2:2e:c8:17:9a:0d:06:56:f1:65:55:23:69:78:c3:a9:e9:96:
d3:3f:42:4b:fa:8e:bd:ab:36:d3:2b:bb:ca:10:80:5f:55:9b:
e6:51:48:7d:7c:e2:fa:2c:af:22:5e:7c:fd:05:94:7b:a9:ee:
2c:a2:09:d6:73:f3:e3:0e:0f:5b:18:f2:01:27:65:f9:97:ed:
82:e2:c9:08:bc:8d:6a:54:67:f9:47:6f:6f:fa:e8:55:22:14:
1b:3e:e1:58:83:24:54:cc:e9:68:8f:ec:92:5e:54:b4:d9:6c:
d8:34:91:26:44:ce:23:a9:69:f6:0a:e9:5e:7a:08:3e:00:f3:
6b:e7:49:55:18:19:42:b8:73:4c:f6:90:02:8e:64:9b:49:cd:
19:be:28:02:c7:c0:e4:12:ba:ee:b9:d4:02:d9:eb:03:92:f5:
0e:b0:cb:f6:96:1e:7a:a3:97:33:d5:07:8c:56:d9:f7:9c:3f:
65:02:a7:06:83:60:6c:32:87:4f:b5:f1:b9:e5:ef:11:ef:0b:
46:fc:da:e3:3c:fc:a6:c7:06:24:7c:70:51:a7:1c:22:a2:66:
75:3d:73:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 3 18:21:59 2025 by rpki-client