Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6D9BFE6EA29511F0A78A7C79DAE4EC9C.roa
File: 6D9BFE6EA29511F0A78A7C79DAE4EC9C.roa (raw, json)
Hash identifier: s9cd0zekeOqoWeqnjN3KhxzqJ5JUV9E758STYzXdh88=
Subject key identifier: 25:59:DB:89:55:DB:D4:4E:3E:49:64:01:3A:B0:53:7D:02:1B:BE:9B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017EFE
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6D9BFE6EA29511F0A78A7C79DAE4EC9C.roa
Signing time: Mon 06 Oct 2025 09:18:32 +0000
ROA not before: Mon 06 Oct 2025 09:18:26 +0000
ROA not after: Wed 12 Nov 2025 09:18:26 +0000
asID: 272854
IP address blocks: 45.195.12.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98046 (0x17efe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 6 09:18:26 2025 GMT
Not After : Nov 12 09:18:26 2025 GMT
Subject: CN=68e38968-d1a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:32:18:4e:76:ac:e8:42:a1:d6:11:6b:a3:71:
ea:88:87:a1:09:87:a1:e5:98:75:c9:30:40:33:2d:
f2:52:60:d5:1c:e7:82:5f:18:24:98:b2:4d:c2:ae:
53:de:79:af:35:da:42:7d:06:38:95:aa:b5:df:89:
03:69:40:d4:a7:ab:af:c1:65:d7:c4:90:97:ed:23:
28:ae:5d:b1:e8:ac:d5:7b:19:15:18:2d:76:b2:94:
59:ac:52:a6:51:50:8a:20:ba:a6:db:b3:a6:30:8a:
5f:88:d9:4c:48:eb:af:fa:4c:18:15:4e:58:79:96:
f2:c0:e5:9a:82:00:0c:df:17:e5:a3:f4:d1:bd:43:
3d:d5:94:22:43:14:61:d7:b2:b6:d1:80:ec:c1:f9:
cb:27:f9:11:ab:ab:85:52:7e:94:50:ed:5b:16:13:
b0:3a:38:d7:b7:ea:e7:d9:96:c4:09:08:88:1c:90:
a2:c8:cd:62:d9:c5:d4:fc:73:27:8f:6f:7a:a3:89:
98:94:d7:c3:b9:91:1c:2b:36:41:3e:03:93:8a:34:
dc:15:bf:62:15:e0:a5:ad:f6:d4:0e:5a:c5:bf:7e:
08:a5:f1:57:6d:07:4c:64:64:8d:26:79:72:fb:0b:
9f:5d:85:25:d9:0f:1a:35:32:99:58:a4:7c:5e:e5:
04:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:59:DB:89:55:DB:D4:4E:3E:49:64:01:3A:B0:53:7D:02:1B:BE:9B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6D9BFE6EA29511F0A78A7C79DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.12.0/23
Signature Algorithm: sha256WithRSAEncryption
74:c1:55:94:40:25:d7:12:00:56:d8:eb:d3:37:a6:a0:cc:f7:
08:fe:f7:3e:23:75:55:4e:e6:23:d3:6f:18:8e:b6:cb:cb:c1:
c3:61:f8:7e:e6:46:a4:09:7e:af:eb:e7:c8:38:25:d0:a7:8d:
9b:a4:97:ff:70:3d:5f:c3:67:61:3d:f0:96:7a:90:ee:e6:bd:
fc:3f:2d:42:d7:2d:00:d9:1d:56:06:25:a5:58:b3:c2:c9:2b:
36:7d:d8:fb:ba:ef:05:f5:87:ac:e9:87:ad:b0:c4:01:93:3d:
56:b5:1e:d8:ca:33:b8:aa:6a:cd:94:c1:b0:3e:b4:cc:fe:1e:
d1:e7:69:c4:e3:bc:2f:6b:35:08:4f:ad:a2:f5:45:69:35:b4:
96:87:a1:4b:ad:94:5e:af:63:ea:cb:fa:a7:aa:51:2e:20:79:
8b:35:22:b0:e2:c6:9e:13:1e:7a:df:9c:39:26:52:4f:64:db:
76:12:b2:47:10:12:e5:c7:6f:d4:56:62:e1:1e:b3:dd:8c:4f:
8e:8d:d2:07:cc:8c:35:d5:f6:76:2c:df:9b:b2:42:d6:e6:4e:
78:10:04:1c:31:cf:a3:1d:bb:0d:59:cf:19:1c:d9:57:40:ad:
fc:10:70:78:48:23:26:b2:ae:3b:04:38:23:58:77:77:36:b5:
c2:a0:81:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:05:57 2025 by rpki-client