Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/22D3E8A4597C11F0A253DADFDAE4EC9C.roa
File: 22D3E8A4597C11F0A253DADFDAE4EC9C.roa (raw, json)
Hash identifier: D9AaItET3u/TVCkK2R9pG4vOXUGF3340gZVR4NA5tCU=
Subject key identifier: 60:99:78:31:00:3B:7A:ED:77:45:B4:0F:79:D5:25:FF:A5:53:AD:F5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01616D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/22D3E8A4597C11F0A253DADFDAE4EC9C.roa
Signing time: Sat 05 Jul 2025 08:43:35 +0000
ROA not before: Sat 05 Jul 2025 08:43:30 +0000
ROA not after: Fri 08 Aug 2025 08:43:30 +0000
asID: 147176
IP address blocks: 45.195.152.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 08 Aug 2025 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90477 (0x1616d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 5 08:43:30 2025 GMT
Not After : Aug 8 08:43:30 2025 GMT
Subject: CN=6868e5b7-c12d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:2b:88:76:bd:31:08:af:1c:7a:f9:fb:79:04:
a4:9c:76:ee:ef:8d:97:fb:3f:77:9a:f7:b7:6d:eb:
50:97:0f:5a:7a:57:8f:09:73:2f:d4:26:58:80:b1:
8e:91:32:87:0f:ae:ef:d6:22:92:f3:84:da:d7:64:
58:f4:e1:e3:f0:ea:59:68:a8:18:c4:66:62:28:c1:
64:17:9c:bd:89:39:49:1b:e0:09:97:50:52:b0:8e:
0a:15:bd:80:7e:e3:d7:45:f2:21:1c:47:ac:88:43:
54:d8:04:ad:7e:46:06:54:01:5a:94:04:c8:1b:94:
cd:5b:95:b0:64:60:43:b6:e1:64:38:3d:ac:c8:39:
7a:6d:4c:a6:4f:8b:f9:2e:3a:cc:96:f4:a5:16:4f:
11:0c:bc:19:0f:c0:56:c4:67:2d:01:de:48:3a:28:
6b:6b:33:a1:56:54:9e:5d:26:02:83:7b:cd:3c:d7:
47:d6:c1:ec:8b:3d:42:cf:ef:00:24:4c:77:f0:7a:
6e:7f:7a:3d:1a:18:16:b4:a6:26:a0:2e:32:06:43:
67:a3:75:71:2d:97:f8:37:df:87:e6:fa:ee:db:ac:
01:b9:e9:51:b7:93:f9:f2:9c:2e:ee:a9:8f:a9:f3:
6a:f3:ca:0e:b7:7e:d9:27:4a:38:9e:18:44:19:23:
68:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:99:78:31:00:3B:7A:ED:77:45:B4:0F:79:D5:25:FF:A5:53:AD:F5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/22D3E8A4597C11F0A253DADFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.152.0/24
Signature Algorithm: sha256WithRSAEncryption
73:98:e8:19:38:59:4b:c7:df:f6:6e:e2:24:88:8f:8e:9b:75:
4e:81:80:16:1b:cf:e6:de:fc:be:58:12:23:70:2f:a7:5b:c9:
02:5a:93:60:c0:d4:5d:29:79:33:1e:dc:5b:18:c9:ce:f5:1a:
65:ee:4e:20:94:f7:ad:79:41:d9:d3:ac:74:bc:56:35:f6:bc:
a0:7d:b6:84:63:ea:31:b6:8e:e1:66:ac:5f:9e:c2:43:3a:74:
f1:a6:74:22:a3:ef:91:3c:78:9c:f8:40:37:21:cd:4d:73:eb:
57:22:5c:dd:d0:40:17:60:35:83:3e:22:90:05:8c:af:17:25:
5c:3a:4d:0a:23:29:96:db:5e:26:70:c4:71:cd:ec:29:4d:9f:
a5:9c:25:00:b0:36:18:80:63:31:f0:1d:6d:29:bc:82:59:fd:
44:b0:94:81:50:5c:24:87:1e:91:c7:92:46:5c:19:f7:dd:2a:
ea:32:9e:5f:1d:9a:c0:eb:68:c7:35:a4:2e:51:4f:8d:59:d3:
91:91:17:dd:7f:9c:15:14:52:1d:74:45:9f:a7:21:b6:86:78:
2a:3a:87:09:7c:03:87:45:0d:f5:a9:d9:dd:78:74:e7:d2:e3:
66:4e:32:7f:e2:62:61:fb:e5:57:c2:c3:34:4b:84:e3:5d:ca:
13:11:c1:07
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAWFtMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNzA1MDg0MzMwWhcNMjUwODA4MDg0MzMwWjAYMRYw
FAYDVQQDEw02ODY4ZTViNy1jMTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA5yuIdr0xCK8cevn7eQSknHbu742X+z93mve3betQlw9aelePCXMv1CZY
gLGOkTKHD67v1iKS84Ta12RY9OHj8OpZaKgYxGZiKMFkF5y9iTlJG+AJl1BSsI4K
Fb2AfuPXRfIhHEesiENU2AStfkYGVAFalATIG5TNW5WwZGBDtuFkOD2syDl6bUym
T4v5LjrMlvSlFk8RDLwZD8BWxGctAd5IOihrazOhVlSeXSYCg3vNPNdH1sHsiz1C
z+8AJEx38Hpuf3o9GhgWtKYmoC4yBkNno3VxLZf4N9+H5vru26wBuelRt5P58pwu
7qmPqfNq88oOt37ZJ0o4nhhEGSNoOwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFGCZ
eDEAO3rtd0W0D3nVJf+lU631MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8yMkQzRThBNDU5N0MxMUYwQTI1M0RBREZEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALcOYMA0GCSqGSIb3DQEBCwUA
A4IBAQBzmOgZOFlLx9/2buIkiI+Om3VOgYAWG8/m3vy+WBIjcC+nW8kCWpNgwNRd
KXkzHtxbGMnO9Rpl7k4glPeteUHZ06x0vFY19rygfbaEY+oxto7hZqxfnsJDOnTx
pnQio++RPHic+EA3Ic1Nc+tXIlzd0EAXYDWDPiKQBYyvFyVcOk0KIymW214mcMRx
zewpTZ+lnCUAsDYYgGMx8B1tKbyCWf1EsJSBUFwkhx6Rx5JGXBn33SrqMp5fHZrA
62jHNaQuUU+NWdORkRfdf5wVFFIddEWfpyG2hngqOocJfAOHRQ31qdndeHTn0uNm
TjJ/4mJh++VXwsM0S4TjXcoTEcEH
-----END CERTIFICATE-----
Generated at Wed Aug 6 12:40:00 2025 by rpki-client