Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5AD4E67072AB11F08FCB00C6DAE4EC9C.roa
File: 5AD4E67072AB11F08FCB00C6DAE4EC9C.roa (raw, json)
Hash identifier: ubce7vVk6+/x/gSu0A6VZakA5bYJSJX27qDeAZ1ZuXo=
Subject key identifier: 38:AA:BE:62:1F:80:95:DD:90:C4:25:F2:F1:0A:A6:49:62:B4:6A:8B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01694A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5AD4E67072AB11F08FCB00C6DAE4EC9C.roa
Signing time: Wed 06 Aug 2025 09:54:34 +0000
ROA not before: Wed 06 Aug 2025 09:54:29 +0000
ROA not after: Fri 12 Sep 2025 09:54:29 +0000
asID: 401696
IP address blocks: 45.207.192.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92490 (0x1694a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Aug 6 09:54:29 2025 GMT
Not After : Sep 12 09:54:29 2025 GMT
Subject: CN=6893265a-cb62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:bd:b7:e1:a0:e6:8e:4f:9e:24:d1:8f:55:77:
77:d5:6a:38:e8:5c:8c:4d:f1:21:17:1d:fe:16:5a:
96:e7:72:85:33:30:b9:b1:d7:4b:44:22:2d:2a:6a:
3b:5f:91:82:5d:47:f2:7b:47:80:4d:60:2d:3f:3b:
fc:fa:71:42:1c:4a:d5:b8:04:6e:6a:82:e9:2d:04:
35:21:08:78:8f:0f:6f:4d:17:83:00:b1:b5:c9:70:
a8:47:0e:fe:72:d7:3c:d1:65:d4:a6:d3:c8:97:6e:
97:9b:8a:be:69:e6:e4:f0:08:c6:1a:c1:1e:14:22:
06:2c:f5:5e:4c:a6:96:7b:64:df:12:15:48:f3:63:
d2:48:92:3c:3e:9b:b0:5c:d8:09:4e:95:c2:b4:ca:
27:02:eb:0b:8f:af:82:38:fd:3b:3b:d5:7b:ec:41:
af:2c:aa:e5:6b:a4:58:68:35:37:5d:e1:7f:41:32:
f2:84:a5:75:12:4f:d8:81:2b:a3:bd:28:68:fe:33:
58:6e:35:2f:b7:0e:b0:6a:0e:25:30:ef:e0:6f:38:
88:01:05:ec:a0:4e:c8:bf:ad:0f:fe:23:15:c3:9e:
20:e1:cb:30:b0:d7:4e:77:27:22:49:7d:97:f7:d5:
97:1e:64:7d:3f:62:20:24:b2:ac:c9:4a:55:c9:b1:
05:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:AA:BE:62:1F:80:95:DD:90:C4:25:F2:F1:0A:A6:49:62:B4:6A:8B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5AD4E67072AB11F08FCB00C6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.192.0/19
Signature Algorithm: sha256WithRSAEncryption
9d:95:fb:34:3c:e9:1d:61:1e:3e:8b:7b:53:ce:8e:7b:95:00:
49:fe:9e:73:23:86:86:e4:3b:f5:89:ce:ed:2f:df:86:73:0d:
e8:2d:76:61:42:53:9b:b7:dd:b0:08:54:54:c8:91:e3:38:e9:
f3:c4:1c:20:9f:c8:1b:ee:63:63:71:8f:14:72:58:97:5f:5e:
06:48:9b:14:12:75:fd:6c:3d:c4:d9:4f:0b:cd:e8:72:01:ed:
e3:0c:9e:14:bb:78:9e:6a:c4:e3:2b:89:7b:92:7c:fb:d1:19:
77:8b:b1:25:39:e7:e9:73:4a:40:71:c1:5d:f7:34:3d:c7:b8:
a5:4a:05:0d:0b:18:9d:c9:2b:d3:df:66:36:3f:45:ff:1e:e3:
9b:bb:50:0a:b4:b5:f5:0e:89:9e:4e:d5:ea:80:fb:f8:27:38:
25:ec:e0:45:bd:df:a2:60:69:c5:8c:99:71:9e:6e:89:e5:ae:
95:d2:d7:47:54:20:c2:aa:40:88:c7:3b:94:9a:96:81:6f:e2:
02:3d:65:1e:63:c2:8d:5b:75:b7:ad:54:f4:22:37:0f:9b:ff:
b0:ef:61:57:c6:3a:84:f7:cb:a0:9b:d8:a9:a8:5b:75:aa:23:
a7:af:49:ba:00:9c:af:1a:3c:ba:2b:a2:53:8c:ec:12:cf:20:
66:17:c1:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 07:17:20 2025 by rpki-client