Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FE2CB2548EDE11F089850FC9DAE4EC9C.roa
File: FE2CB2548EDE11F089850FC9DAE4EC9C.roa (raw, json)
Hash identifier: 5QLKnqLXjVuOSDk63TMPUc5HsLBzQ29NmGvK0yLK16A=
Subject key identifier: EA:72:53:A2:8F:36:46:04:C3:CA:D6:EE:1C:8A:CD:D9:8A:37:60:EE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017A82
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FE2CB2548EDE11F089850FC9DAE4EC9C.roa
Signing time: Thu 11 Sep 2025 07:14:45 +0000
ROA not before: Thu 11 Sep 2025 07:14:38 +0000
ROA not after: Tue 16 Dec 2025 07:14:38 +0000
asID: 142002
IP address blocks: 45.197.12.0/24 maxlen: 24
45.197.13.0/24 maxlen: 24
45.197.14.0/24 maxlen: 24
45.197.15.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 18 Sep 2025 00:26:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96898 (0x17a82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 11 07:14:38 2025 GMT
Not After : Dec 16 07:14:38 2025 GMT
Subject: CN=68c276e5-87ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:6e:d1:e7:9a:f2:d5:58:58:e9:b9:7d:bd:8f:
29:55:b1:3c:d4:f1:91:9d:fe:77:06:5d:55:47:3a:
68:ea:ab:01:00:f6:2c:63:81:4a:25:94:f2:e0:15:
c1:93:7e:78:b2:b0:d8:6e:75:82:90:8b:da:5d:72:
ca:5e:30:65:dc:8f:e6:31:1e:7b:76:c6:cc:66:1b:
f8:46:4b:35:9f:ec:b8:b0:35:b4:6a:2a:0f:5c:b6:
29:de:20:36:61:eb:58:79:cb:86:4c:87:88:28:01:
a4:30:85:f4:fe:2e:ff:2a:af:dc:72:49:1b:38:22:
58:db:c1:63:76:24:a5:3d:63:a6:fa:a4:39:29:ea:
9e:93:6a:87:1a:07:b1:bb:47:ad:da:0c:c2:63:ab:
67:ce:b9:c8:a8:8f:a4:ef:99:83:a3:30:5e:0b:db:
4a:5f:aa:ec:ee:20:c4:f3:ed:d9:5c:02:dc:1d:e4:
5a:b1:5e:41:2b:f4:b0:dc:3b:6f:75:a7:ad:a7:5b:
74:b8:de:20:25:dd:10:d1:da:53:c1:81:46:b1:c1:
eb:1f:2f:c1:2b:78:7a:e1:65:73:48:87:69:e1:ab:
a8:48:a4:de:b3:33:82:63:1d:61:48:3c:f1:53:10:
5a:c2:45:12:16:d0:ef:db:6d:c5:03:ed:86:4b:f9:
f6:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:72:53:A2:8F:36:46:04:C3:CA:D6:EE:1C:8A:CD:D9:8A:37:60:EE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FE2CB2548EDE11F089850FC9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.12.0/22
Signature Algorithm: sha256WithRSAEncryption
2d:9a:fa:32:7b:52:79:c1:70:ea:a3:75:2d:8e:4d:b2:3f:8a:
86:84:77:eb:80:75:90:b1:0a:28:00:38:80:6d:6c:30:28:fd:
23:19:96:69:ff:c2:40:9e:80:97:f5:65:38:d6:b2:80:14:01:
39:61:4a:bb:f8:5e:ea:08:7c:a2:4f:41:ad:70:10:7b:37:f2:
1d:e8:f1:85:8e:3e:f8:c3:81:d2:95:20:c7:ab:58:ef:e4:a7:
6b:f8:ad:eb:1c:a9:ee:7b:8d:37:64:ee:5b:d2:a2:05:5c:9a:
ec:b6:7c:5b:e8:a9:68:87:81:e2:ef:80:c9:59:d9:53:07:5a:
cf:9a:9b:23:96:22:fa:bd:f8:28:9c:2e:88:56:22:95:03:2c:
80:0a:f7:c6:c9:23:88:9b:70:c2:88:db:a6:1c:57:82:a3:af:
55:7c:cf:00:9e:d1:11:dd:2a:e3:af:75:68:26:20:af:cc:40:
b6:e6:6d:00:55:04:5b:0f:67:fa:0c:4d:5a:95:28:ec:c9:2c:
64:d3:74:d1:36:cf:05:19:17:7b:c3:9a:08:58:01:d6:12:d5:
6a:9d:e1:31:44:23:90:8f:e1:ff:cd:f6:2e:0e:c4:87:bd:50:
84:07:88:cc:25:c0:31:ad:cb:17:85:36:c9:83:1f:7b:8f:3f:
e1:25:b6:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 16 05:49:25 2025 by rpki-client