Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5C8924EA688D11F084C09ADEDAE4EC9C.roa
File: 5C8924EA688D11F084C09ADEDAE4EC9C.roa (raw, json)
Hash identifier: F6nqGCfjQIiwWpKI0u7f7V+gqL7tqjBMfGqo50+0V7c=
Subject key identifier: 65:EB:08:EC:0E:5F:30:AA:2F:53:D2:77:20:2B:37:C5:48:C6:16:C7
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016771
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5C8924EA688D11F084C09ADEDAE4EC9C.roa
Signing time: Thu 24 Jul 2025 12:54:40 +0000
ROA not before: Thu 24 Jul 2025 12:54:36 +0000
ROA not after: Thu 28 Aug 2025 12:54:36 +0000
asID: 202656
IP address blocks: 45.199.255.0/24 maxlen: 24
45.200.160.0/24 maxlen: 24
45.200.161.0/24 maxlen: 24
45.200.162.0/24 maxlen: 24
45.200.163.0/24 maxlen: 24
45.200.164.0/24 maxlen: 24
45.200.165.0/24 maxlen: 24
45.200.166.0/24 maxlen: 24
45.200.167.0/24 maxlen: 24
45.200.168.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 10 Aug 2025 00:26:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92017 (0x16771)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 24 12:54:36 2025 GMT
Not After : Aug 28 12:54:36 2025 GMT
Subject: CN=68822d10-d92a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:fe:3f:95:7d:d9:94:55:0c:8f:51:12:46:27:
ea:4c:ec:c3:79:ac:bc:16:4f:0c:fd:70:7f:fe:e0:
96:a0:5d:44:ae:cc:20:80:ff:bc:5a:30:95:10:08:
61:ed:c0:9f:c4:f1:7a:70:34:0f:d1:cf:3f:51:d7:
9d:ec:90:44:b6:01:42:47:de:e5:34:24:a6:98:14:
b7:a7:1d:48:5b:e7:ed:63:c1:32:66:99:78:5a:26:
aa:3e:73:1d:b3:ea:02:4c:74:83:2f:18:36:53:79:
86:0f:85:9a:35:1f:fd:13:fe:c1:97:72:31:df:eb:
33:5b:df:3f:9f:c4:78:96:5b:69:72:97:42:b5:12:
a8:d5:e7:9e:95:6d:24:70:20:c8:5f:e7:73:8c:2c:
f9:4c:a4:fa:bd:d0:c7:a9:63:8f:54:16:02:7f:df:
27:b4:50:04:4f:40:a2:12:da:22:46:55:a6:19:39:
02:21:48:ab:d8:08:ca:df:73:c0:fd:2c:28:b6:bd:
ff:98:2f:bf:f9:44:4b:2a:4c:79:e6:0a:33:49:a4:
dc:76:75:cb:a0:c9:2b:31:4c:88:9c:47:cc:85:9c:
3a:ee:41:ea:47:e8:ed:83:9d:0f:cd:b2:24:cb:8d:
39:7d:8d:83:e2:d1:8b:95:1b:0c:62:20:cb:72:03:
e7:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:EB:08:EC:0E:5F:30:AA:2F:53:D2:77:20:2B:37:C5:48:C6:16:C7
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5C8924EA688D11F084C09ADEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.255.0/24
45.200.160.0-45.200.168.255
Signature Algorithm: sha256WithRSAEncryption
a6:4a:1c:1a:f5:ba:46:f1:6b:93:79:42:51:0a:64:98:ff:55:
17:5a:13:48:56:af:53:68:09:f8:0d:29:5a:6e:c3:5e:03:33:
a5:7a:a1:a3:dc:e1:cd:ff:ce:00:e7:dc:6f:0e:dd:6f:59:f0:
51:5b:b9:3a:39:2e:7c:d6:6a:1d:09:4d:c7:02:d7:07:4d:1d:
cb:97:c7:d2:d8:49:af:51:a9:cd:a3:a6:0e:a7:bd:f3:ff:f6:
c1:0b:c6:1f:a2:a9:37:d4:bf:2a:e2:c2:cb:95:16:33:a3:1c:
ca:4b:e3:5f:b5:c3:09:94:d8:98:08:f2:de:15:c3:67:e0:34:
ab:d9:1d:dc:b2:68:e1:f1:87:95:1b:b5:a2:2c:7b:b3:f4:45:
cb:0c:e0:de:39:99:5a:d3:38:9c:76:ea:3b:34:74:32:c7:d9:
ea:27:5b:a2:b4:cb:b9:60:50:dc:0e:ab:78:f3:a5:50:b9:28:
c1:f4:16:e8:c0:99:8a:19:c8:c8:42:49:82:2a:ee:a2:ce:6e:
88:4a:0f:e8:f7:fc:5b:5f:d1:88:29:7b:60:97:d5:52:b0:c0:
b1:2a:c4:a1:fa:b8:29:a2:2c:03:ca:2a:f6:00:68:fc:76:56:
bb:a8:f8:6a:8e:d4:e3:b8:59:30:4c:40:71:d6:a6:ce:06:b3:
06:e2:f2:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 19:22:05 2025 by rpki-client