Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/37F20CDAB4AC11F09C9A37F6DAE4EC9C.roa
File: 37F20CDAB4AC11F09C9A37F6DAE4EC9C.roa (raw, json)
Hash identifier: TgY8WRdUqZLBYP+md8E7Zsbjvu6fvzlizzz7yGNZbKo=
Subject key identifier: 07:16:E9:EA:8A:01:E6:D0:3B:A3:CC:82:E8:EB:ED:27:46:E9:B6:97
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0183B2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/37F20CDAB4AC11F09C9A37F6DAE4EC9C.roa
Signing time: Wed 29 Oct 2025 09:47:02 +0000
ROA not before: Wed 29 Oct 2025 09:46:57 +0000
ROA not after: Tue 25 Nov 2025 09:46:57 +0000
asID: 25160
IP address blocks: 45.201.12.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Nov 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99250 (0x183b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 29 09:46:57 2025 GMT
Not After : Nov 25 09:46:57 2025 GMT
Subject: CN=6901e296-e96f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f8:fc:1f:5d:9b:17:18:b4:e8:e1:9e:cd:49:
46:4e:af:dc:bf:56:b0:21:3b:c4:ff:17:4a:df:8d:
23:32:ab:5e:e5:1c:f7:6b:57:35:bb:f4:3a:bb:8b:
b2:58:43:14:54:e7:3c:c9:dc:df:26:ee:48:3a:7d:
41:02:3f:e0:52:43:33:9e:c7:50:2f:e1:02:23:2f:
28:8b:9d:9d:51:5e:37:18:49:18:6e:b0:e7:61:2f:
13:87:2b:a2:be:2b:fe:89:dd:39:fe:4e:2b:79:65:
9e:1e:8d:fe:3e:e5:a9:91:60:61:52:65:bb:57:0d:
ea:6c:a9:f6:f9:ee:57:1b:34:f1:a3:1f:5a:6d:ca:
6d:12:df:0d:9e:e4:34:a8:ff:bf:53:80:00:c8:fd:
1d:69:d4:e1:30:50:bb:04:cb:e9:10:fa:2d:00:c6:
1b:a0:9f:ca:9d:66:d7:58:04:78:dc:62:b2:3d:d8:
0d:16:0f:78:72:c9:4e:93:db:ab:e9:4a:f4:82:18:
7b:70:fb:73:b4:4d:91:e5:98:ce:b4:90:a4:78:dc:
54:4d:82:4d:52:1a:73:1f:d0:53:e6:6e:b0:df:00:
8e:9a:14:27:00:30:9d:b7:33:30:4c:1b:33:b4:53:
88:33:5d:ce:f9:ba:ac:cf:7a:49:73:ce:33:03:74:
22:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:16:E9:EA:8A:01:E6:D0:3B:A3:CC:82:E8:EB:ED:27:46:E9:B6:97
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/37F20CDAB4AC11F09C9A37F6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.12.0/22
Signature Algorithm: sha256WithRSAEncryption
93:2b:a1:77:5f:67:43:e9:7e:94:3c:2c:eb:18:40:a9:36:5b:
80:78:2f:19:58:9e:19:53:c4:05:c5:e3:30:f8:6a:94:50:c0:
9e:bd:19:23:ee:36:de:76:f8:f3:a7:32:70:44:6f:43:20:a5:
05:00:95:ad:b3:78:db:a2:3c:db:cf:0c:17:25:75:32:7e:e0:
9b:fe:86:dd:6d:bc:37:6a:63:a1:50:18:a1:16:16:24:34:a7:
d1:3d:79:4b:d0:d1:8b:d1:fe:36:68:d3:d0:81:f8:ee:af:5c:
d5:9d:b6:a0:bd:1d:c7:00:79:9c:d8:ac:b1:5c:4c:02:56:d2:
6a:24:18:41:8d:e0:64:fc:70:44:22:ff:39:de:a2:34:f5:bb:
b3:96:db:92:d7:ec:9e:eb:e7:10:f6:70:20:c2:4c:22:4c:fe:
8c:05:da:06:84:9e:34:b7:f8:13:df:aa:c8:49:0c:41:82:e2:
a9:61:d7:94:a6:b2:af:ce:87:eb:04:0c:77:57:ce:ea:0e:81:
c4:f2:90:b7:f3:b9:f8:e4:08:ee:0b:c2:23:0b:dd:27:9c:bb:
02:fe:04:37:de:97:a2:2a:e5:db:d9:50:87:07:a1:58:b3:67:
dc:48:ee:3d:18:e3:3b:4d:95:e3:0a:ea:cd:5e:fa:2f:02:38:
db:f8:c5:52
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAYOyMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUxMDI5MDk0NjU3WhcNMjUxMTI1MDk0NjU3WjAYMRYw
FAYDVQQDEw02OTAxZTI5Ni1lOTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtPj8H12bFxi06OGezUlGTq/cv1awITvE/xdK340jMqte5Rz3a1c1u/Q6
u4uyWEMUVOc8ydzfJu5IOn1BAj/gUkMznsdQL+ECIy8oi52dUV43GEkYbrDnYS8T
hyuiviv+id05/k4reWWeHo3+PuWpkWBhUmW7Vw3qbKn2+e5XGzTxox9abcptEt8N
nuQ0qP+/U4AAyP0dadThMFC7BMvpEPotAMYboJ/KnWbXWAR43GKyPdgNFg94cslO
k9ur6Ur0ghh7cPtztE2R5ZjOtJCkeNxUTYJNUhpzH9BT5m6w3wCOmhQnADCdtzMw
TBsztFOIM13O+bqsz3pJc84zA3QiCQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFAcW
6eqKAebQO6PMgujr7SdG6baXMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8zN0YyMENEQUI0QUMxMUYwOUM5QTM3RjZEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLckMMA0GCSqGSIb3DQEBCwUA
A4IBAQCTK6F3X2dD6X6UPCzrGECpNluAeC8ZWJ4ZU8QFxeMw+GqUUMCevRkj7jbe
dvjzpzJwRG9DIKUFAJWts3jbojzbzwwXJXUyfuCb/obdbbw3amOhUBihFhYkNKfR
PXlL0NGL0f42aNPQgfjur1zVnbagvR3HAHmc2KyxXEwCVtJqJBhBjeBk/HBEIv85
3qI09buzltuS1+ye6+cQ9nAgwkwiTP6MBdoGhJ40t/gT36rISQxBguKpYdeUprKv
zofrBAx3V87qDoHE8pC387n45AjuC8IjC90nnLsC/gQ33peiKuXb2VCHB6FYs2fc
SO49GOM7TZXjCurNXvovAjjb+MVS
-----END CERTIFICATE-----
Generated at Wed Nov 5 13:40:52 2025 by rpki-client