Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C011D5CCA5BC11F08D7971E9DAE4EC9C.roa
File: C011D5CCA5BC11F08D7971E9DAE4EC9C.roa (raw, json)
Hash identifier: 1Cppqr4vRUU7NPniFhxxhdi/JZmY6u26BtkT2JIo7i4=
Subject key identifier: 56:1F:B4:AC:61:F8:76:75:CC:1D:67:5D:42:62:D2:B5:19:8A:D4:BC
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017FF2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C011D5CCA5BC11F08D7971E9DAE4EC9C.roa
Signing time: Fri 10 Oct 2025 09:37:35 +0000
ROA not before: Fri 10 Oct 2025 09:37:26 +0000
ROA not after: Mon 17 Nov 2025 09:37:26 +0000
asID: 22773
IP address blocks: 45.192.4.0/22 maxlen: 24
45.194.72.0/23 maxlen: 24
45.194.75.0/24 maxlen: 24
45.194.76.0/23 maxlen: 24
45.194.78.0/24 maxlen: 24
45.194.82.0/24 maxlen: 24
45.194.84.0/24 maxlen: 24
45.194.121.0/24 maxlen: 24
45.196.116.0/22 maxlen: 24
45.197.28.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98290 (0x17ff2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 10 09:37:26 2025 GMT
Not After : Nov 17 09:37:26 2025 GMT
Subject: CN=68e8d3df-c365
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:c5:1c:7d:c6:04:3d:3a:0f:14:4c:8e:91:e5:
e0:03:ff:a4:2e:47:dc:e0:78:4f:1c:18:f4:18:60:
a3:12:7b:0c:46:cc:eb:76:2a:5d:8f:c6:31:85:c2:
3c:41:c6:c0:99:5b:0e:49:5c:37:02:5f:4d:13:7b:
8a:d6:40:44:b0:c7:8c:ca:82:83:02:56:8e:c2:bd:
83:66:57:26:bc:c5:0e:f4:1e:10:67:e3:dc:3c:f3:
29:41:31:23:61:60:c6:52:5e:cf:62:6b:e9:3e:88:
91:f3:82:a5:67:e8:30:2d:35:1b:f0:0d:2d:d6:9f:
df:9e:57:94:87:80:6f:50:42:ae:27:36:a9:5b:e2:
fb:2c:91:e2:7c:fb:8f:5c:b9:42:98:cf:b5:86:27:
bf:41:3a:78:ee:21:13:d3:2a:e0:0f:ac:d0:22:4d:
fb:7f:5c:9d:01:bb:23:e8:0b:f7:da:54:22:21:5c:
3e:4c:0c:48:26:f6:22:52:df:44:da:5e:5d:17:22:
78:e1:41:6a:54:4f:d1:2c:b8:1c:76:4d:0f:89:27:
9b:e2:df:49:cc:a9:e0:7d:3f:91:da:ac:b9:a5:ec:
7a:92:48:f3:09:e4:8b:8a:43:e9:ef:45:4e:53:bc:
54:27:90:cb:76:c3:46:6f:66:80:69:ba:da:e1:0d:
aa:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:1F:B4:AC:61:F8:76:75:CC:1D:67:5D:42:62:D2:B5:19:8A:D4:BC
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C011D5CCA5BC11F08D7971E9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.4.0/22
45.194.72.0/23
45.194.75.0-45.194.78.255
45.194.82.0/24
45.194.84.0/24
45.194.121.0/24
45.196.116.0/22
45.197.28.0/22
Signature Algorithm: sha256WithRSAEncryption
3f:e8:2f:52:a7:1c:a9:0f:a6:7e:a1:e6:7e:69:09:f8:0b:64:
16:77:c6:0b:a8:e7:ef:94:72:f0:fc:81:b1:3d:6f:32:7e:67:
31:ce:e6:b2:66:9a:e0:e6:cc:65:9e:90:7b:02:f2:62:6d:49:
93:f7:93:77:79:c9:04:53:5d:dd:c3:ec:4b:3d:29:d0:8d:9e:
eb:be:d3:0d:09:82:09:36:e2:4f:53:2d:64:13:c4:2a:3d:28:
e9:76:f1:ce:b2:2a:8c:af:1b:bc:d0:60:3b:99:f0:9d:06:cd:
e3:fc:f7:a1:21:a9:35:73:08:b2:1e:e7:39:92:60:b7:ee:48:
16:20:f8:99:85:4b:86:33:8a:a8:84:db:fe:2b:de:b4:31:e4:
f7:37:1c:e6:2d:4c:b1:72:1a:15:6b:5a:a3:7b:cc:76:ce:ac:
f7:d4:ae:65:06:84:8a:61:b9:0b:5d:a4:45:6d:0f:bd:3e:06:
a4:8c:dc:07:8b:04:71:4d:1a:1c:89:ce:84:2c:71:af:40:0c:
d9:c9:e0:b2:79:71:d6:a8:2f:a8:77:ee:43:85:a7:d1:95:fd:
7d:7c:7e:56:bc:37:d4:49:3d:88:a6:6f:4e:f4:7a:79:24:89:
5e:8d:77:e3:a4:ae:4a:ef:6e:58:c0:28:63:43:02:46:1e:f7:
0b:b4:5f:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 11:34:05 2025 by rpki-client