Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/C846AFA0BA0811F0897BA0AFDAE4EC9C.roa
File: C846AFA0BA0811F0897BA0AFDAE4EC9C.roa (raw, json)
Hash identifier: tbRZdDruSpx1PsuG6dZ7OFsSD8iTbNA3MN4lgHIMy4c=
Subject key identifier: 2C:4F:B5:EB:9B:E9:9F:CE:BF:23:40:63:D9:D2:15:0F:1C:FB:33:A6
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 0D83
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/C846AFA0BA0811F0897BA0AFDAE4EC9C.roa
Signing time: Wed 05 Nov 2025 05:32:14 +0000
ROA not before: Wed 05 Nov 2025 05:32:07 +0000
ROA not after: Mon 05 Nov 2035 05:32:07 +0000
asID: 214036
IP address blocks: 192.142.45.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Nov 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3459 (0xd83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR, serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Nov 5 05:32:07 2025 GMT
Not After : Nov 5 05:32:07 2035 GMT
Subject: CN=690ae15d-ac70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:a9:e2:61:5a:2e:6b:6d:64:30:dd:d2:66:94:
32:64:b7:67:9c:6a:7f:73:7d:41:1e:1c:d9:7e:73:
09:c6:24:1f:1c:6f:d0:5d:d7:ec:f9:37:38:9a:ac:
54:ff:9d:32:7f:c7:8d:cf:ad:b5:9b:e7:b3:be:b1:
ef:41:72:f0:2e:66:3c:14:cf:ad:0e:42:21:95:df:
77:aa:09:13:64:b6:47:ce:40:d2:39:72:c8:ca:47:
ec:12:21:4e:0b:5a:2f:50:0a:f1:6f:f3:0a:94:21:
f5:6c:24:d0:34:22:b4:38:44:95:28:ae:13:ca:18:
e8:03:e6:44:30:20:95:7f:a4:99:3f:cc:9d:31:8f:
36:68:f4:59:a8:af:66:87:c4:60:10:e9:8c:65:50:
4f:63:03:d0:b2:4b:56:49:8c:b8:be:49:db:e8:18:
b2:b1:c0:09:a6:1e:40:4b:06:5b:38:64:f9:cc:b9:
cf:4e:bf:a4:85:45:d3:5e:28:0e:3a:bd:63:59:0a:
2e:ff:4e:40:e3:1c:b9:de:f2:25:fb:65:2b:89:d0:
c2:f6:d3:6f:cd:9f:a7:21:7b:05:01:ec:b9:f6:4a:
b4:28:1f:2a:13:10:4f:8f:b6:f4:7b:d6:c8:89:7b:
5f:f5:86:55:c1:4e:60:25:be:21:78:e6:5e:bf:39:
1b:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:4F:B5:EB:9B:E9:9F:CE:BF:23:40:63:D9:D2:15:0F:1C:FB:33:A6
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/C846AFA0BA0811F0897BA0AFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.45.0/24
Signature Algorithm: sha256WithRSAEncryption
76:b4:0b:7d:30:b0:9a:fb:36:e8:06:bc:2e:56:b0:bf:54:85:
9e:0e:b2:00:8d:df:76:3a:a4:39:d2:af:3d:a6:0a:f5:ca:75:
c8:df:52:9a:10:cb:d8:59:a4:6c:1b:b5:7f:32:bc:56:97:8a:
b4:50:06:9a:49:24:cb:69:2f:63:3e:a8:94:c3:25:10:fb:8a:
b3:01:5f:93:8f:95:f9:3e:78:7c:e1:2f:ab:f7:0f:26:b9:ea:
e4:89:42:12:1d:3f:20:22:bf:e4:59:68:3c:d2:b6:80:a5:4e:
aa:21:28:ed:52:72:b0:43:44:b7:b6:b8:9c:52:48:3f:70:78:
af:04:dc:7c:b3:d4:fa:d2:1e:1b:ae:d1:fd:61:3f:02:6e:20:
3a:67:a3:6d:4c:97:e8:7d:60:43:ba:cf:e5:cf:06:ba:ce:82:
0f:b9:66:30:27:62:63:57:2c:ed:3e:d0:94:b5:71:ae:05:26:
fe:4c:84:82:75:0c:db:48:b1:00:58:9c:41:12:ca:e7:ad:13:
9e:49:c6:b9:48:ae:6b:98:88:02:b2:34:8b:29:41:67:f0:cd:
ae:21:d9:f8:4e:e1:3c:2d:89:42:18:f0:55:4c:df:d3:66:5e:
0a:5f:73:55:a8:5e:50:16:70:58:2b:b4:dd:cb:15:79:b7:87:
9f:1b:45:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 16:01:42 2025 by rpki-client