Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F567BA4E688011F0A20C118FDAE4EC9C.roa
File: F567BA4E688011F0A20C118FDAE4EC9C.roa (raw, json)
Hash identifier: Vtv28xDEpAAMV+FeCrkolCBZzo3+zNPehUGRkZ1eoKg=
Subject key identifier: 24:94:24:EC:19:A9:BF:DA:57:17:D9:12:5B:FD:27:82:95:DC:28:A0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01674D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F567BA4E688011F0A20C118FDAE4EC9C.roa
Signing time: Thu 24 Jul 2025 11:25:53 +0000
ROA not before: Thu 24 Jul 2025 11:25:49 +0000
ROA not after: Wed 03 Sep 2025 11:25:49 +0000
asID: 203020
IP address blocks: 45.198.34.0/23 maxlen: 24
45.198.36.0/23 maxlen: 24
45.198.38.0/23 maxlen: 24
45.198.40.0/23 maxlen: 24
45.198.42.0/23 maxlen: 24
45.198.44.0/23 maxlen: 24
45.198.46.0/23 maxlen: 24
45.198.48.0/23 maxlen: 24
45.198.50.0/23 maxlen: 24
45.198.52.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 11 Aug 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91981 (0x1674d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 24 11:25:49 2025 GMT
Not After : Sep 3 11:25:49 2025 GMT
Subject: CN=68821841-0acf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:88:fc:fe:b6:24:67:d9:36:72:07:cd:6e:6e:
c5:44:ab:a3:e6:d6:32:92:72:ee:68:d0:2d:05:8f:
7d:4b:c1:70:29:c5:bd:80:9e:b8:af:3f:f7:a0:cd:
30:16:f3:3e:a4:16:fc:fd:fc:38:8b:ff:60:d5:66:
ce:dd:a3:6d:01:25:95:78:59:cd:6e:23:09:51:94:
37:c8:94:ff:be:6e:00:4a:ee:09:ef:0a:da:5f:3f:
7a:46:6b:e2:08:69:e4:ee:9c:5b:5c:9d:df:d1:62:
b1:d6:40:37:f3:ed:f7:0c:bc:18:61:02:e8:c8:d9:
84:c1:7e:68:11:a5:89:30:47:0d:d7:cd:66:d8:4d:
80:ce:6f:d3:11:ce:ca:55:5e:4c:2e:f5:fe:2e:e6:
85:76:4d:02:3f:ed:4e:27:d2:a2:23:7c:cd:95:72:
7a:9b:19:8b:2b:fa:a4:41:13:26:f8:c4:70:5c:46:
8d:2d:e2:7f:b4:ba:95:d2:cc:a2:97:b2:02:35:d3:
74:d9:38:9e:be:85:25:0d:a8:44:74:c2:24:48:41:
90:a0:87:ea:af:7e:cc:fb:92:d0:bb:a3:f4:27:af:
05:aa:b2:7c:61:06:27:08:16:20:9d:cf:10:d5:f4:
b3:1c:c0:ce:d5:e1:75:6b:cf:53:5f:b7:9d:f8:f1:
79:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:94:24:EC:19:A9:BF:DA:57:17:D9:12:5B:FD:27:82:95:DC:28:A0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F567BA4E688011F0A20C118FDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.34.0-45.198.53.255
Signature Algorithm: sha256WithRSAEncryption
49:59:1b:1e:ff:9d:61:9b:d5:56:2e:79:82:e6:12:00:11:b3:
a1:b9:93:b6:6d:16:5e:d1:9b:52:6b:dc:37:fd:eb:23:81:f4:
eb:c4:c7:cd:57:85:83:4f:44:ad:9d:7e:23:6d:ce:7b:53:68:
64:cd:56:08:13:dc:7d:50:e5:af:e1:0d:17:a8:f6:77:40:c2:
95:70:64:97:93:a3:16:10:cc:0d:d1:4c:5b:e9:ae:c1:f2:86:
7b:8c:76:53:a8:d9:e6:ad:2b:8a:33:7a:21:fe:32:10:5c:a5:
24:74:5c:dc:44:27:05:8a:b9:ef:0a:7c:55:a1:d9:7b:f0:ea:
4b:81:81:66:d0:40:aa:ad:50:e9:fb:48:9b:37:f6:4c:a1:6d:
f9:4a:e0:39:28:a2:90:f5:9b:6e:e8:42:13:23:4f:82:04:24:
80:63:0f:38:2f:05:fd:30:88:f9:f1:3b:b6:f1:3c:1b:b2:b0:
3a:c9:3f:66:9a:bf:f3:d0:85:68:be:61:9c:73:ff:d8:df:a7:
ca:c5:c7:71:f2:79:2d:d6:79:10:80:de:34:9d:df:52:8e:75:
14:1a:1d:e3:ee:16:49:5e:32:57:eb:8b:8f:08:b3:9b:be:da:
30:9d:4b:91:f3:e3:57:3e:b1:8d:a4:74:3c:bf:2d:27:85:34:
63:14:72:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 02:59:45 2025 by rpki-client