Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/45C82DCC8E2211F0BBA45A81DAE4EC9C.roa
File: 45C82DCC8E2211F0BBA45A81DAE4EC9C.roa (raw, json)
Hash identifier: mKFCZ7cxfk+1rhknnNc4hLsz+tpUf3UM/jZKi30o58M=
Subject key identifier: 3D:CB:DD:6D:B5:60:09:1F:9D:31:27:31:48:81:7F:2E:1A:39:F7:56
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017A5A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/45C82DCC8E2211F0BBA45A81DAE4EC9C.roa
Signing time: Wed 10 Sep 2025 08:43:50 +0000
ROA not before: Wed 10 Sep 2025 08:43:46 +0000
ROA not after: Mon 20 Oct 2025 08:43:46 +0000
asID: 151407
IP address blocks: 45.196.236.0/23 maxlen: 24
45.196.236.0/24 maxlen: 24
45.196.237.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 Oct 2025 08:43:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96858 (0x17a5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 10 08:43:46 2025 GMT
Not After : Oct 20 08:43:46 2025 GMT
Subject: CN=68c13a46-ca77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:8d:02:c5:8d:4c:27:05:b2:09:98:30:8a:21:
5e:59:33:f6:35:48:59:e1:be:86:4c:95:0d:28:8b:
16:30:a1:7c:5e:47:6f:25:26:b0:30:bf:4d:b3:a0:
c9:a4:c6:9b:bd:49:83:c3:5c:ff:a6:5a:dc:31:e4:
3e:6c:fd:a4:83:14:b7:cc:fd:74:f8:aa:f0:e3:54:
b7:45:d1:ef:d7:3d:2f:04:7d:d1:ae:23:c3:f0:d1:
97:e0:99:3c:5e:2c:4f:2f:ab:d3:fa:ea:b6:19:95:
ad:65:d0:43:82:8c:a3:ea:35:ce:63:81:7f:60:f2:
a5:01:84:ee:b2:9b:be:24:ea:e3:5b:8f:57:6b:fd:
b4:88:a6:9a:57:d2:e9:b4:34:b6:25:1b:d6:0f:ea:
a3:fa:01:24:e8:19:70:d3:23:bb:1c:57:e0:46:17:
49:d9:e5:27:93:30:41:31:9c:6f:ab:bf:1f:b9:92:
08:26:16:fa:70:6f:ba:cd:3a:87:cf:9b:7a:b6:f9:
dc:cc:5c:38:c7:78:87:a0:49:2a:a1:a4:ed:3f:9c:
cc:4d:de:0e:14:2c:4e:6b:8c:68:47:58:22:67:b4:
46:69:5d:e6:e8:6d:45:ca:5f:d9:30:ee:72:cb:61:
5c:a7:e8:cd:2e:b3:fb:c2:da:8d:dd:f3:0c:28:f6:
ea:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:CB:DD:6D:B5:60:09:1F:9D:31:27:31:48:81:7F:2E:1A:39:F7:56
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/45C82DCC8E2211F0BBA45A81DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.236.0/23
Signature Algorithm: sha256WithRSAEncryption
b1:3e:41:22:f5:a0:eb:d5:a5:23:5c:ce:44:46:2b:3d:29:3c:
bc:6e:93:b5:64:00:a4:fe:c3:10:25:10:dd:af:90:1e:3d:de:
49:92:11:f0:60:9b:d3:d6:b3:1e:34:d7:fd:7d:f7:ca:12:c3:
0e:9f:72:2d:78:b8:14:06:0e:36:13:49:b0:98:3a:af:60:a1:
75:cb:40:f0:00:ce:f8:0f:84:22:29:b2:2b:1c:4f:93:e8:7b:
ca:fe:24:69:98:33:a6:84:e6:80:27:d7:56:e9:d8:f6:17:db:
37:d9:fc:ee:71:d8:73:04:63:04:54:93:25:17:af:5c:00:e4:
94:4e:c1:50:b5:36:86:1c:be:1d:95:b0:e2:78:fe:5b:2e:27:
89:0a:63:39:3f:70:f3:13:3c:49:74:77:e6:46:3d:50:9b:22:
68:5c:e6:0e:c8:ed:f9:07:9b:49:e4:d7:c9:6b:c5:ac:95:a3:
6f:18:95:f1:2d:9b:3c:73:7d:a9:76:5b:94:00:fb:88:93:79:
bc:67:78:78:80:bb:98:77:59:ec:f2:95:3f:61:30:a7:b1:c0:
a4:b0:bd:71:62:56:b1:02:59:0d:fc:e9:fb:a7:cb:a9:cd:48:
3f:7c:02:f4:17:fa:00:2a:24:7b:0e:b8:16:1a:df:7f:b4:6e:
c1:dc:96:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:06:05 2025 by rpki-client