Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B2235FBCB4A811F0965319E1DAE4EC9C.roa
File: B2235FBCB4A811F0965319E1DAE4EC9C.roa (raw, json)
Hash identifier: eJSl8abHnwCPEYZtYsudDUpA/BiKjnGc/CW99x70dr4=
Subject key identifier: 97:E6:5B:F3:35:80:48:41:11:F1:84:2E:6A:F1:71:FE:EA:A8:42:F6
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0183AA
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B2235FBCB4A811F0965319E1DAE4EC9C.roa
Signing time: Wed 29 Oct 2025 09:21:49 +0000
ROA not before: Wed 29 Oct 2025 09:21:43 +0000
ROA not after: Fri 05 Dec 2025 09:21:43 +0000
asID: 214808
IP address blocks: 45.207.41.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 07 Nov 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99242 (0x183aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 29 09:21:43 2025 GMT
Not After : Dec 5 09:21:43 2025 GMT
Subject: CN=6901dcad-6e56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:80:9c:35:41:a4:bb:60:d7:8c:a0:12:21:e4:
ee:1a:09:5a:aa:5a:57:ce:ef:d3:67:d6:80:d2:7c:
bb:8b:bf:e8:93:0a:50:b7:cf:8b:99:16:66:a2:a9:
6c:d5:19:16:bc:b8:1e:77:9d:7b:20:6d:ef:dc:76:
38:1b:84:c9:e5:4b:1c:1d:29:2c:64:14:9f:a4:99:
5b:f5:88:00:ce:7d:11:9a:fa:e1:c9:32:f1:3d:e3:
68:df:17:d1:ab:32:7b:8b:25:24:1b:06:0a:9b:49:
81:ab:ac:95:c0:75:31:7c:8c:d5:86:e4:c7:b9:b1:
d7:36:57:69:c7:84:aa:33:eb:af:ce:d1:95:19:8d:
94:98:4e:a9:0b:7c:7e:38:bd:1e:e3:97:26:9e:5e:
9c:d1:7f:00:b8:93:c2:0f:f4:ef:81:da:89:37:da:
66:60:0e:40:d8:55:56:7d:e4:2d:ab:62:de:ad:b5:
8a:79:8e:a7:7b:97:d4:8d:05:a4:65:d6:b1:9e:32:
a1:b2:69:34:0c:8a:b1:48:1b:ae:c1:d2:97:a6:02:
1e:d6:91:cb:b9:f9:a4:91:2e:80:9a:28:5d:5c:74:
d1:e0:cd:4f:42:75:95:01:1e:1a:45:58:c7:ce:32:
9e:ed:7c:80:07:40:b9:5a:58:ee:ca:66:e0:06:4b:
4b:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:E6:5B:F3:35:80:48:41:11:F1:84:2E:6A:F1:71:FE:EA:A8:42:F6
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B2235FBCB4A811F0965319E1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.41.0/24
Signature Algorithm: sha256WithRSAEncryption
72:38:21:43:e9:f6:bc:ba:02:76:d3:fa:a7:a3:8f:84:e7:d4:
d1:6f:e2:0d:b1:ae:25:20:32:0d:ac:1e:64:e9:3f:c4:99:23:
bd:3e:ab:19:3c:9d:5b:57:95:2a:98:c5:e1:71:8c:87:f6:35:
a1:c2:50:2e:50:5f:4a:85:25:28:8c:b1:7b:5b:9c:96:b8:7e:
1f:f4:f6:9f:55:94:9e:35:3c:85:70:73:e3:70:90:2f:60:53:
94:db:97:3d:65:c1:18:31:c1:5d:aa:39:3d:47:fb:93:c3:de:
3b:38:79:ff:ef:9b:c6:4d:5f:8b:59:7b:13:4d:79:7f:17:a6:
76:2a:82:b2:5b:f6:0f:ad:88:ac:91:3d:3c:f7:29:99:61:7d:
e9:6e:bd:95:c7:05:53:f2:c6:98:57:e4:c8:a7:45:46:b9:af:
31:7c:55:d5:83:f0:fe:28:42:44:94:27:42:fd:1e:b7:a9:55:
9e:e3:51:f9:9a:c2:88:74:b8:07:ab:6b:63:a8:fb:42:1a:a2:
da:9f:27:79:f1:cc:ba:c6:14:75:d0:bd:d5:bb:bf:1a:af:71:
21:b3:4c:c8:26:0b:90:be:a6:16:d4:fc:e6:11:62:96:7e:18:
c5:8d:04:0b:05:de:d6:7a:dc:11:79:77:48:5a:1a:76:7a:e7:
54:fb:6f:fd
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAYOqMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUxMDI5MDkyMTQzWhcNMjUxMjA1MDkyMTQzWjAYMRYw
FAYDVQQDEw02OTAxZGNhZC02ZTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA6ICcNUGku2DXjKASIeTuGglaqlpXzu/TZ9aA0ny7i7/okwpQt8+LmRZm
oqls1RkWvLged517IG3v3HY4G4TJ5UscHSksZBSfpJlb9YgAzn0RmvrhyTLxPeNo
3xfRqzJ7iyUkGwYKm0mBq6yVwHUxfIzVhuTHubHXNldpx4SqM+uvztGVGY2UmE6p
C3x+OL0e45cmnl6c0X8AuJPCD/TvgdqJN9pmYA5A2FVWfeQtq2LerbWKeY6ne5fU
jQWkZdaxnjKhsmk0DIqxSBuuwdKXpgIe1pHLufmkkS6AmihdXHTR4M1PQnWVAR4a
RVjHzjKe7XyAB0C5WljuymbgBktLowIDAQABo4ICojCCAp4wHQYDVR0OBBYEFJfm
W/M1gEhBEfGELmrxcf7qqEL2MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9CMjIzNUZCQ0I0QTgxMUYwOTY1MzE5RTFEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALc8pMA0GCSqGSIb3DQEBCwUA
A4IBAQByOCFD6fa8ugJ20/qno4+E59TRb+INsa4lIDINrB5k6T/EmSO9PqsZPJ1b
V5UqmMXhcYyH9jWhwlAuUF9KhSUojLF7W5yWuH4f9PafVZSeNTyFcHPjcJAvYFOU
25c9ZcEYMcFdqjk9R/uTw947OHn/75vGTV+LWXsTTXl/F6Z2KoKyW/YPrYiskT08
9ymZYX3pbr2VxwVT8saYV+TIp0VGua8xfFXVg/D+KEJElCdC/R63qVWe41H5msKI
dLgHq2tjqPtCGqLanyd58cy6xhR10L3Vu78ar3Ehs0zIJguQvqYW1PzmEWKWfhjF
jQQLBd7WetwReXdIWhp2eudU+2/9
-----END CERTIFICATE-----
Generated at Wed Nov 5 03:23:13 2025 by rpki-client