Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BCF91D8A693711F0B936F8B8DAE4EC9C.roa
File: BCF91D8A693711F0B936F8B8DAE4EC9C.roa (raw, json)
Hash identifier: P4OaUcmEoK+8K0erKk/15seOow8Q+jDNq4Rpzlzpf0w=
Subject key identifier: 16:2F:85:99:9C:93:A3:B2:BC:7D:BC:A4:F9:6E:12:26:8A:BA:43:88
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0167A0
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BCF91D8A693711F0B936F8B8DAE4EC9C.roa
Signing time: Fri 25 Jul 2025 09:14:17 +0000
ROA not before: Fri 25 Jul 2025 09:14:11 +0000
ROA not after: Thu 28 Aug 2025 09:14:11 +0000
asID: 202656
IP address blocks: 45.192.61.0/24 maxlen: 24
45.192.62.0/24 maxlen: 24
45.195.160.0/24 maxlen: 24
45.195.166.0/24 maxlen: 24
45.195.169.0/24 maxlen: 24
45.195.171.0/24 maxlen: 24
45.195.172.0/24 maxlen: 24
45.195.173.0/24 maxlen: 24
45.195.178.0/24 maxlen: 24
45.195.180.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 09 Aug 2025 00:26:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92064 (0x167a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 25 09:14:11 2025 GMT
Not After : Aug 28 09:14:11 2025 GMT
Subject: CN=68834ae9-9383
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:62:df:c5:e3:5e:db:63:9a:98:55:0e:70:fc:
c0:17:0f:34:ae:ca:48:20:10:28:fb:dc:d0:94:d3:
79:ca:15:b1:b9:3f:ba:6c:07:c5:a7:7b:a7:27:ea:
ac:a6:dc:e2:32:35:6c:0f:1d:e4:d7:6a:29:f1:99:
4c:8a:fb:8e:80:51:a8:84:e2:62:91:68:c7:66:9b:
77:1c:5c:04:f3:76:09:14:ab:d1:8e:61:75:08:d1:
bb:09:78:17:20:ec:d3:20:a3:a3:b7:da:2e:a4:be:
cb:1b:0e:fa:d7:d7:6e:10:ec:a5:13:34:b5:91:75:
06:31:36:e2:86:3e:47:64:95:d2:76:9f:eb:61:9d:
ec:5a:36:db:19:20:eb:fa:b4:bb:00:4a:d0:d5:1a:
1c:4e:92:8c:58:bc:e7:d5:7b:d0:f4:f7:19:db:9f:
7a:5e:45:02:7e:e0:57:45:78:46:d3:55:18:bf:de:
82:f2:ae:d3:91:99:49:20:29:e5:41:89:11:2a:23:
11:68:69:89:98:49:3f:5f:d0:8e:9b:2f:54:37:18:
db:62:98:bd:21:fc:df:cd:6f:ba:7c:9b:92:dd:ec:
79:31:ed:47:6a:7e:21:93:1a:35:2b:7f:fb:b5:12:
2c:9e:2d:d9:41:a0:37:cf:77:09:27:32:28:d1:5e:
16:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:2F:85:99:9C:93:A3:B2:BC:7D:BC:A4:F9:6E:12:26:8A:BA:43:88
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BCF91D8A693711F0B936F8B8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.61.0-45.192.62.255
45.195.160.0/24
45.195.166.0/24
45.195.169.0/24
45.195.171.0-45.195.173.255
45.195.178.0/24
45.195.180.0/24
Signature Algorithm: sha256WithRSAEncryption
49:0e:60:f7:da:07:a2:a3:00:89:fc:63:f4:78:cd:0a:22:eb:
5f:56:93:b3:13:7b:0e:2f:68:c2:e6:f5:0b:c3:b3:8d:89:de:
f6:3d:67:21:9b:5a:d5:6b:dd:a6:4a:5e:2c:4d:fa:72:58:bd:
1f:5b:4d:b3:fe:86:e4:0a:29:be:4c:96:5f:41:9b:79:a3:06:
45:2d:81:8e:45:2e:d0:72:e8:a0:89:66:a8:bc:68:78:cf:a6:
50:65:e4:54:6f:05:69:5e:e2:75:c3:c3:6f:82:0b:30:25:07:
79:97:47:2b:d5:df:f7:e2:c9:ec:f4:d6:44:5d:49:44:50:d3:
21:1c:d6:5f:6d:53:b7:75:7c:13:32:c2:b7:01:89:7b:d5:d7:
bd:46:74:ea:d0:8c:e1:da:aa:2b:6d:f0:db:cc:7e:28:70:05:
1f:2f:3a:b5:13:60:20:a5:1b:64:ba:a2:e5:50:ec:8e:cf:78:
68:3d:05:61:6a:22:ae:43:d6:ab:05:27:a1:a7:10:ff:01:8a:
ed:a4:6e:ed:1e:a4:d4:3c:5d:74:2c:85:c1:60:dd:a3:f1:e4:
08:05:10:4c:2e:ff:c7:e6:76:54:84:32:68:ce:de:95:ba:89:
d5:8f:43:c5:d5:93:ea:4c:05:52:ee:30:2b:9f:63:14:d8:e3:
fc:cd:f5:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 05:12:57 2025 by rpki-client