Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FA5838A2803711F0AFA53CBEDAE4EC9C.roa
File: FA5838A2803711F0AFA53CBEDAE4EC9C.roa (raw, json)
Hash identifier: hglCDysJ1gTOd5z4S5xxsThJL8yseXHThNqvcoWjIYo=
Subject key identifier: C0:77:18:A7:B5:44:2B:32:10:C6:3E:2A:AE:04:ED:5C:93:22:FF:67
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016F35
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FA5838A2803711F0AFA53CBEDAE4EC9C.roa
Signing time: Sat 23 Aug 2025 15:43:56 +0000
ROA not before: Sat 23 Aug 2025 15:43:51 +0000
ROA not after: Mon 22 Sep 2025 15:43:51 +0000
asID: 20326
IP address blocks: 45.207.36.0/22 maxlen: 24
45.207.48.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 06 Sep 2025 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94005 (0x16f35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 23 15:43:51 2025 GMT
Not After : Sep 22 15:43:51 2025 GMT
Subject: CN=68a9e1bc-3267
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:7f:d4:bb:41:f0:8a:2a:d5:ec:24:18:47:89:
c1:73:c0:f2:70:51:14:b6:a6:70:70:e7:59:17:20:
43:bf:9e:1d:91:0b:52:19:86:2d:d7:62:7d:28:59:
3c:97:2d:4c:01:5c:be:4a:b1:da:4d:a2:4d:b2:a2:
dd:61:f4:47:38:40:75:2a:ef:a1:3f:2b:bc:cf:51:
d8:69:d0:91:97:f3:27:b2:78:f7:f5:02:18:24:2c:
26:6c:ff:3b:fa:61:5e:2d:ab:28:18:ae:76:91:e1:
93:88:78:71:10:76:d3:fa:f6:c0:4b:d6:3c:6a:24:
0e:6c:d7:15:23:c1:c0:9a:5d:e9:cf:77:11:be:89:
f1:03:f6:b8:c1:21:92:d4:53:59:87:aa:49:cc:a5:
67:c0:d7:22:b0:e8:fa:cd:7c:3b:53:c1:28:8a:e7:
bb:7c:78:7e:7c:4d:12:6f:53:46:08:af:92:f4:3d:
30:b3:e2:21:41:83:0d:58:62:cf:51:57:49:9c:e6:
bf:85:76:ac:d4:ba:9b:96:67:c2:85:67:47:4c:3f:
57:72:d1:37:42:eb:e4:f8:70:68:37:7a:7d:6f:d3:
45:40:2e:45:16:e7:bd:5a:af:d9:9d:90:19:fd:88:
cd:4e:6d:95:02:91:e5:37:eb:5e:aa:c2:20:9a:bf:
6c:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:77:18:A7:B5:44:2B:32:10:C6:3E:2A:AE:04:ED:5C:93:22:FF:67
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FA5838A2803711F0AFA53CBEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.36.0/22
45.207.48.0/21
Signature Algorithm: sha256WithRSAEncryption
1f:1c:89:dc:17:d1:9d:f7:bc:1c:1c:e4:4d:cb:8e:d8:97:67:
e8:07:e7:f3:3f:17:c4:c7:90:9c:05:56:ae:08:83:22:9c:87:
d2:8c:7f:03:a9:1d:2d:3f:e0:6c:b9:a5:83:62:1e:58:bc:d1:
b7:34:a4:f5:2c:97:4c:4a:03:bb:91:3b:1b:06:64:ee:a4:eb:
b2:84:6e:1d:c9:97:0b:51:99:0f:ca:85:8d:0f:19:5b:25:81:
d3:f4:52:14:20:b4:7a:27:67:87:1e:3c:95:cb:a0:3f:04:62:
7f:e3:78:f3:30:27:54:ea:1c:3f:19:00:a1:15:29:30:36:b8:
0d:71:1d:87:b4:65:1d:ba:ee:e5:da:ef:f0:b2:a3:a7:66:3c:
0a:fb:8e:f3:85:1b:5d:12:6c:1c:f6:0c:04:b4:10:d4:c3:bf:
86:2a:1f:68:03:c6:ed:a0:44:9a:29:86:81:70:04:b1:ab:83:
92:dd:94:f4:6b:75:97:aa:98:90:5f:de:80:9f:00:4b:f3:f8:
8f:44:16:3c:49:1d:db:64:e9:38:50:ff:d3:6e:7d:46:c2:d8:
ab:52:83:64:b0:55:58:af:48:7b:6f:57:0f:fd:96:53:9e:87:
7b:5e:5d:6b:ca:e8:8e:1d:37:9e:b9:50:08:cb:8a:cd:10:bc:
62:6d:67:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 4 05:17:55 2025 by rpki-client