Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D01A427EA35511F09E1AD0D8DAE4EC9C.roa
File: D01A427EA35511F09E1AD0D8DAE4EC9C.roa (raw, json)
Hash identifier: iBWLSycbl6O3LFPN3Mw1xnMuVxfWxKZXvLL6C9RNFWU=
Subject key identifier: B8:89:F6:B0:61:6D:FA:BC:BF:BE:A9:A4:D1:51:F2:E5:23:A9:98:85
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017F2C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D01A427EA35511F09E1AD0D8DAE4EC9C.roa
Signing time: Tue 07 Oct 2025 08:15:41 +0000
ROA not before: Tue 07 Oct 2025 08:15:36 +0000
ROA not after: Sun 16 Nov 2025 08:15:36 +0000
asID: 401696
IP address blocks: 45.192.96.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98092 (0x17f2c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 7 08:15:36 2025 GMT
Not After : Nov 16 08:15:36 2025 GMT
Subject: CN=68e4cc2d-0147
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ee:65:19:31:76:41:ca:0a:56:1e:72:de:d8:
85:48:94:20:43:63:01:3d:5d:39:b4:02:bd:06:3a:
6f:24:98:9a:8d:3a:28:fe:a0:ee:4a:99:71:12:e8:
81:f1:d7:52:55:9d:e3:3c:57:55:7c:27:03:95:5b:
df:12:00:23:32:6f:33:18:f3:c3:18:bd:a5:db:12:
1c:ef:d1:3d:8c:8c:23:17:ba:9a:a5:f2:0d:c9:e5:
ac:2b:d5:94:a7:62:b1:66:00:60:5a:1d:b4:c3:34:
40:4e:09:0c:f3:c9:94:43:66:68:a3:66:10:f2:8f:
94:75:ce:46:a4:df:ea:06:f9:c2:88:a9:a7:e8:85:
6f:38:7d:58:09:8b:f6:ef:c5:bd:e4:0d:cd:8a:e7:
97:f5:ff:79:21:b1:f5:94:11:78:fc:e7:1c:90:a8:
b3:2a:84:f2:83:fa:24:42:f7:24:e4:4b:a0:6f:fa:
0b:31:bb:e5:db:6c:40:c3:4e:b3:a0:15:d5:7e:68:
40:93:16:21:9b:c2:d1:2e:97:e7:e5:42:b8:f5:29:
55:1a:be:2d:04:f6:4d:f1:de:07:29:0f:ae:9f:2c:
5b:91:e1:1e:26:45:4e:77:45:91:ba:85:65:37:c1:
57:cf:ce:8e:67:61:86:9d:2f:c7:fe:3c:3c:ef:20:
d2:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:89:F6:B0:61:6D:FA:BC:BF:BE:A9:A4:D1:51:F2:E5:23:A9:98:85
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D01A427EA35511F09E1AD0D8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.96.0/20
Signature Algorithm: sha256WithRSAEncryption
76:c7:dc:c2:31:f3:0f:eb:73:98:61:de:6b:5e:f6:10:42:8a:
5d:a9:f0:04:25:8a:d4:56:d4:55:f2:f2:86:d7:f7:b1:b7:91:
35:47:36:12:00:ed:55:34:19:f0:d9:8f:3d:b8:62:83:f3:7a:
a3:39:05:75:0a:93:85:df:20:5f:05:f3:18:f8:fa:01:1c:b9:
fd:4c:b9:cd:98:ba:2c:f1:09:3d:40:54:86:36:f5:a1:dc:fb:
4e:33:c9:3b:65:36:ef:24:11:ad:a5:69:5f:74:31:45:35:08:
bf:70:e7:8b:ca:99:7e:ba:fc:ce:5b:57:d7:bd:9f:58:d6:81:
8f:b6:d4:2b:dd:b6:d0:73:9e:0c:b5:8c:3a:b7:54:a2:c0:57:
be:76:31:ce:34:2f:b9:90:09:91:a8:29:a0:f0:84:8d:9e:f8:
2b:ba:9e:14:de:0f:41:27:62:6c:9b:69:4d:eb:8b:2b:92:31:
e5:c8:f2:92:c7:e1:88:ce:d1:86:76:13:86:3b:a3:42:aa:ff:
b6:10:36:bf:27:38:05:39:4c:ba:92:65:67:62:5c:ff:cc:af:
c2:77:0c:5d:62:96:26:d4:f5:ea:85:b9:8d:e8:17:50:1a:80:
39:0c:32:f2:5b:bf:e9:77:0c:04:03:02:fb:bc:6c:5e:9b:83:
68:33:f6:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 08:52:42 2025 by rpki-client