Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/52253BB6688711F092C29BB6DAE4EC9C.roa
File: 52253BB6688711F092C29BB6DAE4EC9C.roa (raw, json)
Hash identifier: OvsRUzpO+gLnQgk4Y002FXTjc2ncKCHBdpuu6ZzqKdk=
Subject key identifier: DF:22:9A:DF:EA:89:04:6E:5E:87:FE:27:A3:B8:FF:43:30:93:78:7E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016761
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/52253BB6688711F092C29BB6DAE4EC9C.roa
Signing time: Thu 24 Jul 2025 12:11:26 +0000
ROA not before: Thu 24 Jul 2025 12:11:20 +0000
ROA not after: Thu 28 Aug 2025 12:11:20 +0000
asID: 44559
IP address blocks: 45.199.207.0/24 maxlen: 24
45.199.208.0/24 maxlen: 24
45.199.246.0/24 maxlen: 24
45.199.247.0/24 maxlen: 24
45.199.248.0/24 maxlen: 24
45.199.251.0/24 maxlen: 24
45.199.253.0/24 maxlen: 24
45.199.254.0/24 maxlen: 24
45.200.179.0/24 maxlen: 24
45.200.180.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 12 Aug 2025 01:16:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92001 (0x16761)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 24 12:11:20 2025 GMT
Not After : Aug 28 12:11:20 2025 GMT
Subject: CN=688222ee-c1a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e5:2f:8a:d4:41:0c:c1:f8:fd:7e:01:7b:9a:
55:a4:64:0b:2f:e8:0f:52:63:05:d7:90:0c:44:47:
61:2e:80:65:9d:ce:c9:1a:cb:a0:a4:ce:dc:3f:80:
a9:15:b7:91:94:fd:b1:92:26:02:c5:a5:97:95:c7:
02:19:1e:56:25:14:84:a7:0f:bb:c1:a3:b7:97:e3:
ce:e1:b6:2b:eb:5e:af:77:ae:be:f3:00:76:46:c5:
2f:2d:21:b2:95:07:39:2b:1b:cd:1e:d3:74:d0:05:
af:2e:20:41:7f:ea:fd:96:b4:5d:01:ec:9e:b0:fe:
5a:ff:3e:cf:a8:b4:58:6e:f3:a5:bc:c4:c8:42:70:
7a:6b:9a:60:5b:51:69:a2:ee:13:26:65:27:80:b5:
7b:4a:3b:1c:4a:a6:01:b1:fe:4f:32:0c:ac:86:b5:
e3:1c:36:1e:f7:c0:3f:f1:5e:d0:7c:f6:ea:b0:d7:
44:bd:f7:71:d4:6d:62:8c:a3:2f:44:ad:44:bf:88:
ae:54:af:d7:3b:29:3b:73:0a:0a:42:c0:35:48:f4:
a2:01:f6:b7:c4:93:12:8f:dc:e9:05:24:45:9e:10:
ff:5c:31:65:d8:dd:fe:d6:5a:a1:43:8f:30:57:09:
7b:c8:5b:d8:ab:1e:47:02:9d:fb:e1:ea:3a:48:50:
a1:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:22:9A:DF:EA:89:04:6E:5E:87:FE:27:A3:B8:FF:43:30:93:78:7E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/52253BB6688711F092C29BB6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.207.0-45.199.208.255
45.199.246.0-45.199.248.255
45.199.251.0/24
45.199.253.0-45.199.254.255
45.200.179.0-45.200.180.255
Signature Algorithm: sha256WithRSAEncryption
07:8c:6a:57:d7:2c:d7:e4:51:d2:35:fb:15:d7:25:50:fb:7c:
24:78:f3:17:32:2d:9a:3c:b5:78:0c:5b:1c:12:90:7d:ca:65:
9e:f2:d1:cb:55:fc:68:a5:bd:1e:c2:67:c3:48:07:af:f6:58:
26:c6:90:a6:a0:dd:5b:ea:e0:54:09:04:46:9b:3a:36:c7:9d:
ca:8c:d2:49:78:5b:75:cf:48:69:33:12:be:17:0b:1d:67:d1:
76:17:23:44:9e:05:0c:7e:c8:87:b2:e6:fe:39:8b:f0:2b:fc:
f4:5b:d1:e1:5d:72:d1:e0:c3:37:f7:8c:87:b3:9f:07:56:5d:
d6:13:99:e7:94:91:87:d2:f6:45:53:f6:22:41:37:6c:c8:f7:
1c:0d:13:ba:af:5e:a9:f0:67:7a:e7:d4:ec:c9:13:60:59:d1:
5f:ec:a0:74:cc:26:be:02:98:8b:03:bb:ad:a7:14:41:60:7f:
2e:f5:aa:41:65:92:71:23:ec:65:a8:a7:92:cb:35:2e:8f:24:
72:64:7c:f1:ab:21:22:1f:44:c9:32:e1:7b:78:47:fd:de:b0:
c8:36:a2:26:5a:9f:b8:e1:1c:e4:ca:e0:c6:38:7b:11:ad:36:
44:d5:63:c6:23:59:3a:5d:ab:fe:6e:45:25:0b:ad:c7:6d:3a:
9b:69:c6:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 01:53:07 2025 by rpki-client