Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B85B1A46664711F0BD6E068CDAE4EC9C.roa
File: B85B1A46664711F0BD6E068CDAE4EC9C.roa (raw, json)
Hash identifier: XaO2doNS2A9dI+99hyLRQKlF+Vb7+eK3KOz5kN0eViQ=
Subject key identifier: 98:D9:DF:2B:E5:40:77:C4:9D:8B:13:1E:FE:17:60:C2:A5:BC:41:C2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016630
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B85B1A46664711F0BD6E068CDAE4EC9C.roa
Signing time: Mon 21 Jul 2025 15:31:07 +0000
ROA not before: Mon 21 Jul 2025 15:31:03 +0000
ROA not after: Tue 26 Aug 2025 15:31:03 +0000
asID: 395793
IP address blocks: 45.196.64.0/22 maxlen: 24
45.196.68.0/24 maxlen: 24
45.198.183.0/24 maxlen: 24
45.198.184.0/24 maxlen: 24
45.201.36.0/22 maxlen: 24
45.201.40.0/24 maxlen: 24
45.206.65.0/24 maxlen: 24
45.206.66.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 Aug 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91696 (0x16630)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 21 15:31:03 2025 GMT
Not After : Aug 26 15:31:03 2025 GMT
Subject: CN=687e5d3b-cd01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:39:96:50:d8:14:e3:ea:8a:1c:a2:50:e8:7c:
0c:cd:ea:42:3b:6d:7b:2d:22:f5:70:94:6a:03:22:
d3:2a:66:ea:35:54:0e:b1:c9:75:59:bc:93:5e:9c:
f3:ee:c7:b6:8d:1d:33:41:42:7e:3b:03:b1:81:2a:
2f:8b:7f:59:38:f9:cd:ad:7b:ca:07:70:d7:68:a3:
03:f6:8f:c5:0f:a6:3d:38:f8:2f:67:be:89:cd:6b:
16:46:32:dd:26:eb:69:e4:59:b8:72:cd:18:17:15:
47:83:d3:d4:6d:1d:70:97:08:de:53:73:39:19:ab:
53:9a:2a:8d:f9:39:f2:67:bd:7e:f3:6e:3d:5e:a6:
df:a5:c1:de:a9:61:33:10:35:e5:55:e4:d6:72:fd:
6f:75:19:e7:bd:86:d3:94:40:25:66:33:d1:25:1d:
b4:6f:b8:bb:cf:69:9c:03:f9:53:26:dd:65:32:30:
53:75:9c:54:43:16:34:91:b6:65:74:33:d2:e7:53:
5b:9c:9f:60:ae:6f:40:4b:ff:a2:da:75:e9:4b:ec:
bf:8e:b8:38:e4:55:42:74:35:a3:d8:6c:95:04:4c:
32:b1:9d:fc:7d:b4:29:8c:2f:58:bf:81:a0:6e:52:
20:a9:59:9e:0f:55:33:a9:58:77:ba:fd:29:1d:00:
20:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:D9:DF:2B:E5:40:77:C4:9D:8B:13:1E:FE:17:60:C2:A5:BC:41:C2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B85B1A46664711F0BD6E068CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.64.0-45.196.68.255
45.198.183.0-45.198.184.255
45.201.36.0-45.201.40.255
45.206.65.0-45.206.66.255
Signature Algorithm: sha256WithRSAEncryption
bb:0b:7d:5e:33:ea:35:df:1f:4e:10:a5:ea:a0:f2:ca:ab:71:
0f:a6:a8:a3:18:e4:94:f1:2e:94:d0:a8:00:e9:33:cc:c9:c4:
4b:48:93:3c:97:d7:82:4a:cf:6a:59:30:60:d4:bd:23:31:c4:
00:ab:89:31:e1:34:06:1e:54:2c:f8:b6:d6:59:58:cd:bf:df:
68:76:8c:e7:68:46:0f:26:33:68:a6:da:c4:80:96:64:b2:33:
ce:16:d6:72:14:3f:ea:fa:25:77:40:3c:88:c5:d5:72:c9:98:
77:09:a2:58:21:eb:56:04:26:59:1b:85:d9:b4:7f:f3:60:e1:
73:69:3d:1b:1c:56:01:af:54:07:d6:2f:e2:39:d6:c1:85:ec:
29:3c:9d:2b:45:37:07:79:70:99:a6:ab:6f:43:45:9e:2a:28:
dd:bf:75:7e:a8:ef:67:c3:ed:fe:b7:4c:54:63:0e:fc:38:d1:
2c:91:46:99:1c:c7:32:78:04:d5:70:99:7a:5b:9a:1f:c7:bb:
0f:39:4d:b5:60:d1:7a:48:98:4b:45:4e:9f:9a:a7:96:a0:2d:
8d:28:45:93:c6:49:4f:d3:2d:7a:f4:5f:f3:ba:a4:d4:19:e5:
87:c0:15:98:c7:74:07:a0:61:9e:e0:3a:d1:2d:74:1e:61:f1:
99:16:66:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 02:57:16 2025 by rpki-client