Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/551CF296781311F08C14CF85DAE4EC9C.roa
File: 551CF296781311F08C14CF85DAE4EC9C.roa (raw, json)
Hash identifier: SBWEQBwn5GCvMYbrcpI9Y7xmhP8KEiXxCF/QYUxBEXU=
Subject key identifier: 0C:B5:16:F0:59:9B:AC:06:E9:57:D2:21:03:7C:C3:71:CF:83:EC:FF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016A8D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/551CF296781311F08C14CF85DAE4EC9C.roa
Signing time: Wed 13 Aug 2025 07:01:28 +0000
ROA not before: Wed 13 Aug 2025 07:01:22 +0000
ROA not after: Tue 09 Sep 2025 07:01:22 +0000
asID: 327790
IP address blocks: 45.196.14.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92813 (0x16a8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 13 07:01:22 2025 GMT
Not After : Sep 9 07:01:22 2025 GMT
Subject: CN=689c3848-06e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:57:28:f6:7e:b7:95:2b:5f:e8:db:09:75:de:
5f:38:6c:53:cc:e1:0f:0e:18:1a:3b:11:9b:c5:81:
2f:47:90:83:5f:4c:43:2f:45:e2:60:3c:4a:c4:a5:
e2:41:9e:84:d7:17:58:61:61:f1:89:5f:17:f5:e8:
15:36:45:3c:ca:c1:77:83:fe:fa:0e:42:e3:f5:f5:
76:34:6d:ab:e3:71:eb:37:73:e5:3a:71:a1:f6:17:
79:5e:ce:48:24:3d:85:5f:32:76:11:88:26:40:9e:
fa:16:e9:f0:17:85:49:28:ac:fb:c1:ab:83:56:71:
37:cf:29:23:24:3e:bb:e2:ee:ba:bd:5d:7a:2a:24:
7d:12:04:8f:ef:a2:af:c3:98:25:b2:40:32:3f:ec:
e5:6c:27:90:64:af:ac:41:09:5b:73:fd:b3:8d:89:
14:92:be:7d:83:7b:88:65:9b:8f:46:e3:b4:62:fb:
75:ea:58:1f:d0:8e:10:e3:13:42:ef:b4:1f:af:ba:
91:da:fc:fd:e3:21:7a:03:31:7e:43:91:b9:0a:55:
99:9d:15:0e:09:38:16:f1:a9:f3:01:72:30:61:b1:
f9:d5:f9:c1:08:4e:86:3e:df:2b:e9:d3:20:10:d6:
e5:d3:75:6d:c2:03:19:07:e4:c9:53:da:f9:90:42:
70:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:B5:16:F0:59:9B:AC:06:E9:57:D2:21:03:7C:C3:71:CF:83:EC:FF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/551CF296781311F08C14CF85DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.14.0/23
Signature Algorithm: sha256WithRSAEncryption
36:6c:a2:16:de:75:83:09:b5:17:d8:08:07:89:ec:fc:ab:55:
2b:5c:ea:1a:6c:3d:dc:b1:1e:1f:64:f6:1c:57:8b:b6:18:e8:
59:6b:85:6b:69:7f:55:78:30:b0:65:ad:ae:28:c3:fd:d7:16:
25:b9:2e:c6:18:45:83:aa:72:34:2c:60:cf:ca:4b:00:26:e5:
34:e5:07:05:ae:5b:33:82:a3:d6:1e:ab:d3:76:1a:e7:27:f5:
c4:77:90:5c:79:31:ff:c7:af:ec:76:ef:e2:f7:2d:13:9a:82:
50:37:ef:a4:06:8e:f3:45:5f:3d:bd:24:61:80:66:f4:5a:1f:
23:fc:51:ed:b7:ad:2b:9f:13:e3:3c:54:e9:cc:52:e5:a9:6f:
4a:37:42:41:e0:85:17:3e:a0:bb:53:69:87:4f:d9:ac:09:9c:
d7:7c:01:b3:1f:35:0f:77:d5:be:c2:d5:9b:cd:d6:be:3b:04:
60:72:12:7b:74:77:9c:19:65:13:df:66:0e:c8:90:fe:4f:71:
92:8f:13:4b:19:2f:32:4a:58:d2:cf:63:0e:e8:15:a0:b3:6c:
b5:15:80:83:a6:97:15:ce:00:21:2e:52:6c:9c:14:44:c3:fa:
6d:af:74:8e:53:a5:cb:7e:92:8f:cd:40:3b:3e:3e:5e:4d:74:
a7:5b:39:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:03:17 2025 by rpki-client