Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BF25E5E06FC011F0ADC8C0BDDAE4EC9C.roa
File: BF25E5E06FC011F0ADC8C0BDDAE4EC9C.roa (raw, json)
Hash identifier: rxdVBwv22Es0sWHeFFylrnD1uv/XXL+4XfakQ4s/SkY=
Subject key identifier: 4F:6B:EF:5F:88:24:D9:EE:5C:30:1D:A5:8F:BA:9F:AA:A4:AB:CA:F1
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0168B8
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BF25E5E06FC011F0ADC8C0BDDAE4EC9C.roa
Signing time: Sat 02 Aug 2025 16:50:08 +0000
ROA not before: Sat 02 Aug 2025 16:50:01 +0000
ROA not after: Tue 09 Sep 2025 16:50:01 +0000
asID: 200373
IP address blocks: 45.201.10.0/24 maxlen: 24
45.201.11.0/24 maxlen: 24
45.202.76.0/24 maxlen: 24
45.202.77.0/24 maxlen: 24
45.202.78.0/24 maxlen: 24
45.202.79.0/24 maxlen: 24
45.206.72.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 06 Aug 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92344 (0x168b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 2 16:50:01 2025 GMT
Not After : Sep 9 16:50:01 2025 GMT
Subject: CN=688e41c0-877b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:29:de:f7:24:a2:b6:53:77:8b:85:93:18:ab:
3d:0c:25:d2:af:dc:29:83:e1:0d:67:ff:32:f4:c9:
26:6d:6c:76:e1:76:a9:27:4a:57:53:4c:d3:fd:e9:
10:e1:39:1d:58:35:df:9b:7e:c5:c6:11:01:3c:86:
08:52:2c:12:80:4b:58:ce:20:99:e5:78:fe:2a:e4:
2d:0c:a9:bf:13:6b:99:02:9e:25:34:6b:c8:f6:8a:
2c:d7:47:72:53:9e:1c:7e:7a:c8:06:ad:f6:06:99:
b6:11:0b:86:97:4a:4b:1b:90:14:ad:96:4a:59:b7:
cf:6f:49:25:e8:96:0d:95:ae:72:62:94:45:e2:7a:
53:07:79:e1:e6:79:f7:36:29:51:46:a7:7d:e2:6e:
58:9f:03:f1:9c:81:c2:e5:2c:ba:1a:a3:cd:e8:8e:
ed:25:19:53:87:da:f5:5c:12:c2:00:8b:44:67:46:
39:b5:de:bf:50:04:1f:69:b7:40:26:3f:01:aa:b5:
95:70:7f:ce:b1:96:04:7e:24:2f:1d:fd:e9:55:89:
06:56:d1:55:a2:75:10:53:74:c3:39:d6:82:0b:5a:
87:99:18:e1:a5:ab:3e:ad:c1:41:2b:29:7f:be:14:
eb:2d:5c:d2:36:48:89:b4:34:e9:01:a5:e9:32:f8:
22:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:6B:EF:5F:88:24:D9:EE:5C:30:1D:A5:8F:BA:9F:AA:A4:AB:CA:F1
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BF25E5E06FC011F0ADC8C0BDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.10.0/23
45.202.76.0/22
45.206.72.0/23
Signature Algorithm: sha256WithRSAEncryption
5a:96:e2:65:d7:a4:30:1d:15:47:c8:81:5c:ac:dd:b5:8b:38:
15:cd:e1:55:8f:55:ad:f4:b5:91:55:7e:8b:17:32:4a:5a:b6:
12:90:86:7f:a7:a6:6e:d3:43:69:f2:6b:5c:47:a2:19:07:e2:
87:43:08:39:e2:b9:83:b3:16:8f:8d:32:ee:1e:6e:a1:11:13:
d7:1d:03:48:7e:2d:d3:2c:ae:66:16:7a:b3:8a:ae:52:04:87:
bc:89:12:cd:04:77:07:52:d8:4f:c2:f3:65:22:3a:f0:ff:56:
82:8f:fa:f5:61:2f:1e:af:ab:4f:2b:e1:58:33:36:97:80:b8:
0a:0c:be:f7:3d:c2:6f:2b:9c:b7:60:ef:e1:e3:57:b9:9e:75:
01:f0:66:f4:3a:97:28:af:a7:56:9d:67:d8:24:25:29:67:ab:
68:fd:5a:b0:eb:6d:d1:4d:f7:60:5a:f8:04:80:17:32:4c:f9:
e2:dc:7f:00:a8:80:4b:3a:99:6d:aa:58:74:3a:7d:9b:bd:37:
03:50:7b:72:62:56:23:b7:9d:f6:0b:9f:f1:ef:11:ed:af:89:
51:d9:65:94:3f:f5:59:3e:fe:20:9f:04:bb:2f:b2:78:da:97:
a1:f7:a2:c5:7b:05:4a:df:58:f7:f5:1a:b1:1c:15:2c:30:07:
9e:0d:4f:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 07:56:45 2025 by rpki-client