Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0187E16A664611F0A62ADE82DAE4EC9C.roa
File: 0187E16A664611F0A62ADE82DAE4EC9C.roa (raw, json)
Hash identifier: DQxX9bSGLH+hAvCqWNsQUhiNWX1yy/4THm/42Uk/56E=
Subject key identifier: 5E:B8:E7:97:25:92:D4:B5:B4:BE:A0:F1:D9:CD:26:D2:F9:A7:04:B7
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01662E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0187E16A664611F0A62ADE82DAE4EC9C.roa
Signing time: Mon 21 Jul 2025 15:18:52 +0000
ROA not before: Mon 21 Jul 2025 15:18:46 +0000
ROA not after: Tue 26 Aug 2025 15:18:46 +0000
asID: 7029
IP address blocks: 45.194.40.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 10 Aug 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91694 (0x1662e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 21 15:18:46 2025 GMT
Not After : Aug 26 15:18:46 2025 GMT
Subject: CN=687e5a5c-afea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:c6:13:a7:b4:c9:3d:79:9e:74:1a:e7:a6:4e:
77:74:3b:e4:29:9b:46:4f:f9:12:a9:04:dc:9e:95:
65:00:68:50:5c:d5:ba:bf:db:37:d9:5f:3e:be:cf:
39:0f:be:52:89:ef:ac:77:18:f1:7c:23:b8:0e:cb:
8c:60:1b:6d:ca:19:17:e3:9f:f0:3b:96:9f:54:ea:
57:69:f4:74:53:40:09:20:82:74:fc:22:f4:0c:0b:
16:9e:9d:b6:c5:5c:35:c6:a4:8f:cf:ec:a0:db:43:
2c:6f:4b:ab:b5:b1:47:54:b4:13:5c:01:79:f5:7b:
0f:4b:64:ca:dd:95:d7:a8:8c:84:25:4c:54:80:bb:
58:31:be:11:5a:d3:35:c6:f7:6b:21:f7:aa:18:e4:
f3:73:0f:ba:fa:13:6f:0b:74:c2:db:69:8a:3d:2f:
7a:e5:49:47:2e:85:d0:0d:63:d6:99:4a:81:eb:36:
3e:9a:25:a2:d0:23:93:33:ad:0b:78:38:85:3b:84:
95:f8:c9:1d:0b:ef:70:85:7f:1b:e5:97:39:09:98:
8d:de:15:10:08:73:94:df:03:0c:2c:32:e7:1c:59:
26:14:50:05:41:c2:48:5e:75:f0:7c:59:24:84:a4:
f1:d9:f3:f2:c9:31:bf:34:54:2b:8b:64:96:b8:1d:
1e:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:B8:E7:97:25:92:D4:B5:B4:BE:A0:F1:D9:CD:26:D2:F9:A7:04:B7
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0187E16A664611F0A62ADE82DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.40.0/24
Signature Algorithm: sha256WithRSAEncryption
50:a4:9f:a5:ac:6b:8c:7c:18:9e:0c:60:d7:2d:1b:a8:4a:de:
63:80:06:df:af:48:a5:a0:31:5c:64:46:84:e4:1f:17:8f:f2:
a4:e6:35:dd:5b:61:f1:e0:41:76:e7:62:6e:71:45:33:92:dc:
3d:0b:d4:65:fc:2a:cc:f3:6b:5a:26:5f:41:05:f2:55:68:3c:
89:96:f6:5b:10:da:93:11:ed:33:20:a4:87:19:3c:30:0f:4d:
48:59:d6:bd:d5:59:60:dd:41:e5:8f:1b:09:9a:ce:63:4c:2a:
e0:a2:b7:82:ea:8c:88:4b:12:d7:cd:c7:f7:96:1a:86:54:2c:
ec:4d:c5:2c:b0:66:1b:51:6f:3d:7f:f8:c1:15:ad:08:dd:41:
77:07:20:ff:33:74:25:28:6a:33:12:f9:c2:b2:d6:df:64:08:
a5:5d:e2:30:20:ea:1d:3c:4b:10:d5:21:7d:22:56:16:9e:78:
ed:32:87:10:c6:2a:d1:56:ec:58:67:ea:8f:70:51:b3:f1:d2:
89:bf:cf:21:1c:f4:c6:2c:37:35:7c:7e:bd:35:d7:c1:bb:a6:
3d:45:44:d8:3e:ad:0e:69:f8:96:47:b8:af:48:38:40:47:4a:
28:0f:5f:65:b2:18:f6:0e:ee:c8:89:ab:6b:65:cc:74:76:bc:
33:03:5f:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 13:09:56 2025 by rpki-client