Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/84666AAAA43211F0B0651AECDAE4EC9C.roa
File: 84666AAAA43211F0B0651AECDAE4EC9C.roa (raw, json)
Hash identifier: HGzqDtj3oZ46rv3Lr/EUXeymUwuEPLeKbNQh3ZPwWxk=
Subject key identifier: 5C:3B:24:87:2F:1F:02:2C:C4:9E:6A:07:A0:46:5F:00:5F:25:10:70
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017F6C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/84666AAAA43211F0B0651AECDAE4EC9C.roa
Signing time: Wed 08 Oct 2025 10:35:33 +0000
ROA not before: Wed 08 Oct 2025 10:35:28 +0000
ROA not after: Sat 22 Nov 2025 10:35:28 +0000
asID: 137899
IP address blocks: 45.205.16.0/20 maxlen: 24
45.207.192.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98156 (0x17f6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 8 10:35:28 2025 GMT
Not After : Nov 22 10:35:28 2025 GMT
Subject: CN=68e63e75-1e9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:68:c0:14:da:24:cc:13:96:20:2c:6e:ef:20:
a3:e6:a1:27:70:30:c6:19:98:d1:ab:4f:22:be:18:
ef:10:5d:e0:0d:a4:ee:61:4a:92:22:66:8c:0a:e4:
0d:34:2b:61:d9:26:68:30:5f:85:cc:f2:88:55:2b:
a0:01:60:43:0c:3e:a6:72:e7:26:2e:03:d8:11:e2:
41:c0:2e:04:a1:d5:04:6b:7d:fa:3f:1d:3d:98:26:
67:4f:97:3c:23:43:46:55:f0:85:73:11:88:58:b6:
e4:a9:4d:0b:76:03:fa:c6:8b:e9:e3:e1:aa:0e:e0:
a9:6f:8f:89:5a:b6:2e:99:c2:92:03:82:8e:a7:33:
01:11:a2:b4:a7:90:03:9c:f6:f2:83:5b:12:a7:85:
58:2a:1c:0e:f9:3e:65:2a:01:1c:43:06:2c:b0:6d:
6c:a0:59:87:93:3e:66:6d:09:4d:72:c4:9c:f5:77:
d6:8a:58:e4:bd:df:ed:d9:8c:0f:86:e3:b5:f9:56:
d5:0b:18:65:06:b7:eb:11:49:f2:38:ae:9d:14:12:
b0:92:30:9a:cd:eb:de:a0:7a:0b:10:3e:15:a5:23:
33:71:44:d8:ad:90:b1:2d:54:e5:3d:8b:a1:83:33:
d3:43:50:a5:f8:ea:cd:ba:5b:74:bf:f8:67:d5:50:
32:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:3B:24:87:2F:1F:02:2C:C4:9E:6A:07:A0:46:5F:00:5F:25:10:70
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/84666AAAA43211F0B0651AECDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.205.16.0/20
45.207.192.0/19
Signature Algorithm: sha256WithRSAEncryption
79:0b:ce:1a:ab:31:88:93:87:35:14:49:63:5e:31:f0:2c:a3:
c2:a2:e5:fc:a3:22:23:11:fd:49:52:22:d2:32:10:7b:5c:e4:
2a:95:bf:b0:f2:cd:51:32:89:92:51:67:ad:c1:6f:37:9c:de:
72:a0:c5:9c:a6:7f:b2:c9:65:fa:27:06:8b:9b:e7:1d:18:6b:
2a:04:e9:89:af:ed:dd:f0:fe:ae:9f:a8:ba:4e:03:21:23:b5:
fc:72:9f:e9:2a:aa:54:98:2b:a9:01:1f:5a:1f:97:14:78:42:
6e:ec:c5:bf:b6:d0:30:9f:2a:9b:6b:0e:07:96:ba:40:04:f9:
43:44:07:e4:fd:54:d6:4d:6d:a8:29:5b:17:59:b4:3f:0f:24:
f0:41:cd:c6:7a:f9:98:d8:eb:1b:72:55:e5:e5:69:da:41:ad:
70:40:01:7d:21:41:18:f7:f3:fd:40:2a:9f:b5:6b:30:b0:e4:
72:58:c3:63:b2:ea:a0:ab:ac:e3:e0:d2:53:81:e8:fe:32:42:
13:2c:f7:ac:4f:96:b5:48:cc:bd:78:bc:3b:aa:53:77:6b:a2:
7e:df:a4:78:32:3a:09:6e:2f:24:58:cb:76:7d:8a:e6:42:4e:
9e:23:e7:9f:ca:92:4a:08:2b:3c:b7:42:21:b7:08:92:5a:4b:
4a:da:79:7f
-----BEGIN CERTIFICATE-----
MIIFhzCCBG+gAwIBAgIDAX9sMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUxMDA4MTAzNTI4WhcNMjUxMTIyMTAzNTI4WjAYMRYw
FAYDVQQDEw02OGU2M2U3NS0xZTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAm2jAFNokzBOWICxu7yCj5qEncDDGGZjRq08ivhjvEF3gDaTuYUqSImaM
CuQNNCth2SZoMF+FzPKIVSugAWBDDD6mcucmLgPYEeJBwC4EodUEa336Px09mCZn
T5c8I0NGVfCFcxGIWLbkqU0LdgP6xovp4+GqDuCpb4+JWrYumcKSA4KOpzMBEaK0
p5ADnPbyg1sSp4VYKhwO+T5lKgEcQwYssG1soFmHkz5mbQlNcsSc9XfWiljkvd/t
2YwPhuO1+VbVCxhlBrfrEUnyOK6dFBKwkjCazeveoHoLED4VpSMzcUTYrZCxLVTl
PYuhgzPTQ1Cl+OrNult0v/hn1VAyRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFw7
JIcvHwIsxJ5qB6BGXwBfJRBwMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC84NDY2NkFBQUE0MzIxMUYwQjA2NTFBRUNEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQELc0QAwQFLc/AMA0GCSqGSIb3
DQEBCwUAA4IBAQB5C84aqzGIk4c1FEljXjHwLKPCouX8oyIjEf1JUiLSMhB7XOQq
lb+w8s1RMomSUWetwW83nN5yoMWcpn+yyWX6JwaLm+cdGGsqBOmJr+3d8P6un6i6
TgMhI7X8cp/pKqpUmCupAR9aH5cUeEJu7MW/ttAwnyqbaw4HlrpABPlDRAfk/VTW
TW2oKVsXWbQ/DyTwQc3GevmY2OsbclXl5WnaQa1wQAF9IUEY9/P9QCqftWswsORy
WMNjsuqgq6zj4NJTgej+MkITLPesT5a1SMy9eLw7qlN3a6J+36R4MjoJbi8kWMt2
fYrmQk6eI+efypJKCCs8t0IhtwiSWktK2nl/
-----END CERTIFICATE-----
Generated at Sun Oct 19 22:25:27 2025 by rpki-client