Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F804DAA499DE11F0B7CAF77EDAE4EC9C.roa
File: F804DAA499DE11F0B7CAF77EDAE4EC9C.roa (raw, json)
Hash identifier: Mby9Ihis1OXWqkgunhEekhIC4OVFvfBr8gFtXzD+OcE=
Subject key identifier: 23:87:5E:CF:9B:74:E9:DA:4F:F1:6D:66:68:C1:2A:1B:42:7F:3C:21
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017D38
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F804DAA499DE11F0B7CAF77EDAE4EC9C.roa
Signing time: Thu 25 Sep 2025 07:12:17 +0000
ROA not before: Thu 25 Sep 2025 07:12:12 +0000
ROA not after: Wed 29 Oct 2025 07:12:12 +0000
asID: 273079
IP address blocks: 45.195.201.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97592 (0x17d38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 25 07:12:12 2025 GMT
Not After : Oct 29 07:12:12 2025 GMT
Subject: CN=68d4eb51-7723
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:67:33:c7:41:f7:6c:2d:c1:be:ba:19:44:f7:
36:28:4c:a2:d0:52:c4:3c:ff:bf:68:b5:24:63:b5:
d6:4a:2b:ef:40:07:02:81:e0:b1:31:8e:2b:9b:89:
b5:08:10:5d:ce:d3:9a:a3:2f:ba:60:74:91:79:23:
01:f9:a4:98:2f:06:22:63:76:87:21:0e:e0:35:0f:
4e:e4:bc:9f:ba:02:1d:79:bc:24:3b:01:ce:ce:04:
c7:90:95:d9:49:7f:34:40:78:de:00:28:45:c6:ca:
2c:b1:da:c7:6f:f7:85:78:b4:b7:e4:24:0f:85:53:
c6:3a:31:72:d5:dc:3c:66:04:50:68:40:df:2f:f0:
ec:dd:fa:7c:3b:13:c9:bb:4b:bf:82:d1:c3:cd:c0:
1a:89:ba:d0:9e:4a:dc:c5:db:64:34:1e:22:8b:54:
26:11:83:ea:6a:34:f6:c7:3a:94:1f:04:7b:12:2e:
f5:3f:e5:6a:e1:b4:15:ef:41:2f:b4:d6:0d:c5:92:
c5:33:53:7e:bd:7d:b7:6c:8a:67:5b:8d:0e:38:04:
67:7b:36:09:0b:98:3e:a0:c9:81:07:4c:5b:3c:b6:
bc:11:6f:ca:02:7a:b5:81:de:85:2b:d5:bb:80:b3:
9d:b5:4a:d1:1c:75:e7:3d:93:be:b3:aa:60:43:f8:
d0:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:87:5E:CF:9B:74:E9:DA:4F:F1:6D:66:68:C1:2A:1B:42:7F:3C:21
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F804DAA499DE11F0B7CAF77EDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.201.0/24
Signature Algorithm: sha256WithRSAEncryption
03:e9:5b:3f:b5:c3:77:9a:62:1e:1d:51:8e:99:b1:f3:3b:b9:
bb:7e:5a:33:92:fa:26:25:89:d6:53:df:06:68:2a:99:a5:4d:
df:cb:2f:5b:9a:31:62:90:4a:22:5a:52:8d:64:c0:ed:4d:3f:
a8:f2:60:f2:64:07:db:81:24:8e:f1:0e:d6:ed:10:7c:23:dd:
6d:89:5b:70:a1:e2:67:b8:3a:c4:59:e8:2d:c3:5c:9d:89:7a:
57:f8:55:ef:1b:01:57:d2:ae:ef:d7:8c:0a:3e:b2:8e:69:10:
14:81:cc:b7:2b:ae:72:97:f6:21:3f:84:9e:a1:dc:32:fd:86:
7f:42:fa:26:5c:bc:8c:d4:8c:8b:ad:5b:44:cc:f1:81:0c:f9:
13:bb:fb:f7:8b:51:0b:10:e9:a3:b6:02:0c:f2:4c:be:c4:60:
ce:3b:1b:c4:a7:58:e8:bd:d6:fa:8f:56:be:28:ce:91:93:03:
db:ca:07:97:39:77:9a:60:18:f8:ed:14:61:56:78:29:57:c4:
e6:5c:b1:5b:38:33:a3:f5:ac:f0:1c:4b:30:ee:00:74:13:ac:
02:aa:63:69:41:29:87:ae:73:c5:53:07:b6:0b:9a:ce:b1:27:
fb:51:a2:55:fc:b3:e4:7f:4f:eb:52:10:ce:66:7c:45:bc:eb:
ff:3b:0f:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 11:33:52 2025 by rpki-client