Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8F8A22405CD511F0964609ACDAE4EC9C.roa
File: 8F8A22405CD511F0964609ACDAE4EC9C.roa (raw, json)
Hash identifier: hNCy5jisKb85/B7PgDoWh5KB51YVRTpX+m6pt/2BIqw=
Subject key identifier: 76:F3:62:64:DB:9B:90:BE:23:02:6D:FA:82:35:70:21:C3:BD:11:AB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016404
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8F8A22405CD511F0964609ACDAE4EC9C.roa
Signing time: Wed 09 Jul 2025 15:01:16 +0000
ROA not before: Wed 09 Jul 2025 15:01:11 +0000
ROA not after: Sat 16 Aug 2025 15:01:11 +0000
asID: 273079
IP address blocks: 45.194.45.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 15 Jul 2025 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91140 (0x16404)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 9 15:01:11 2025 GMT
Not After : Aug 16 15:01:11 2025 GMT
Subject: CN=686e843c-4b32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:2c:d9:f9:51:5e:6f:2f:e6:1e:bd:e1:07:da:
88:41:4b:1d:24:a8:93:cf:da:72:99:56:64:6f:10:
00:94:87:48:25:d6:f0:6a:ef:45:c1:ba:44:b9:64:
be:0c:48:6e:f9:12:18:a7:17:e8:87:86:27:ca:4b:
d2:2f:23:e6:cc:da:ea:f4:ef:dd:94:b0:ac:3d:e2:
e7:78:85:b1:7b:ec:c2:a9:46:5f:b8:01:aa:62:6b:
32:80:56:5e:25:54:a6:91:6c:be:74:c0:2d:0d:86:
0e:78:0c:44:13:0a:8e:00:85:6c:af:25:d7:bb:aa:
16:9a:10:c8:68:34:a6:92:79:86:25:02:7c:b0:d4:
91:bf:11:20:b4:94:af:58:51:4f:48:43:50:89:b1:
2a:33:d0:84:47:ea:af:20:91:9b:e6:05:cf:6b:8d:
5c:11:a0:f4:34:d4:10:3d:b7:26:f6:33:31:13:c2:
f0:3f:35:b9:ea:aa:f9:7d:a1:cf:5d:38:fe:c7:ef:
36:27:14:f3:c4:0d:ed:89:82:a6:d6:8f:27:54:40:
30:31:ea:b6:90:78:70:e4:3e:3e:1a:58:63:f3:36:
f4:dc:17:65:09:27:96:7d:85:71:7f:76:01:1c:98:
98:bf:ae:f5:8f:b1:5c:66:33:59:a0:56:18:b6:dc:
b5:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:F3:62:64:DB:9B:90:BE:23:02:6D:FA:82:35:70:21:C3:BD:11:AB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8F8A22405CD511F0964609ACDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.45.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:c8:7b:be:5b:cb:1b:de:0e:aa:82:68:28:22:15:20:ba:78:
48:7c:20:ff:2b:a2:0f:f3:bb:86:ee:22:b6:a7:89:f3:29:38:
39:f3:05:a1:66:8f:52:18:95:88:df:bc:ee:de:10:ec:ad:6e:
5e:ee:4d:23:e8:51:8f:73:6c:44:fb:4c:2f:2a:87:50:ee:39:
33:5d:a4:92:1c:1a:eb:3e:33:00:9f:3f:69:8f:61:6d:ac:fc:
45:6c:c1:fe:a4:96:d6:fa:9b:f4:7b:75:8f:b6:ad:b8:71:f5:
04:c6:7d:5e:05:2a:4d:70:43:5f:2b:83:e4:8e:e6:a8:71:48:
8b:31:26:ec:43:a8:8b:90:8d:ee:61:e6:13:01:1f:eb:b2:41:
cd:b0:43:20:4d:38:73:ac:a6:c0:de:6f:7e:b3:46:ad:6e:2b:
5a:1d:56:56:c2:79:2e:04:0f:03:cc:bf:2d:a4:63:e0:f2:d7:
ad:95:36:48:b3:ef:95:6b:3c:38:67:a8:a9:c2:3f:83:ae:d5:
92:67:e6:4a:b5:c5:ec:f9:4b:77:5a:5b:a4:25:e8:52:e5:f2:
36:c3:c0:56:fe:78:e5:4b:b3:74:24:62:ff:dc:e7:da:b2:3e:
12:10:8f:88:a7:1f:5b:7e:ba:eb:20:ea:f4:2b:3b:ed:b6:f2:
d9:b6:95:36
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAWQEMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwNzA5MTUwMTExWhcNMjUwODE2MTUwMTExWjAYMRYw
FAYDVQQDEw02ODZlODQzYy00YjMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvSzZ+VFeby/mHr3hB9qIQUsdJKiTz9pymVZkbxAAlIdIJdbwau9FwbpE
uWS+DEhu+RIYpxfoh4YnykvSLyPmzNrq9O/dlLCsPeLneIWxe+zCqUZfuAGqYmsy
gFZeJVSmkWy+dMAtDYYOeAxEEwqOAIVsryXXu6oWmhDIaDSmknmGJQJ8sNSRvxEg
tJSvWFFPSENQibEqM9CER+qvIJGb5gXPa41cEaD0NNQQPbcm9jMxE8LwPzW56qr5
faHPXTj+x+82JxTzxA3tiYKm1o8nVEAwMeq2kHhw5D4+Glhj8zb03BdlCSeWfYVx
f3YBHJiYv671j7FcZjNZoFYYtty18QIDAQABo4ICojCCAp4wHQYDVR0OBBYEFHbz
YmTbm5C+IwJt+oI1cCHDvRGrMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC84RjhBMjI0MDVDRDUxMUYwOTY0NjA5QUNEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALcItMA0GCSqGSIb3DQEBCwUA
A4IBAQBcyHu+W8sb3g6qgmgoIhUgunhIfCD/K6IP87uG7iK2p4nzKTg58wWhZo9S
GJWI37zu3hDsrW5e7k0j6FGPc2xE+0wvKodQ7jkzXaSSHBrrPjMAnz9pj2FtrPxF
bMH+pJbW+pv0e3WPtq24cfUExn1eBSpNcENfK4PkjuaocUiLMSbsQ6iLkI3uYeYT
AR/rskHNsEMgTThzrKbA3m9+s0atbitaHVZWwnkuBA8DzL8tpGPg8tetlTZIs++V
azw4Z6ipwj+DrtWSZ+ZKtcXs+Ut3WlukJehS5fI2w8BW/njlS7N0JGL/3Ofasj4S
EI+Ipx9bfrrrIOr0KzvttvLZtpU2
-----END CERTIFICATE-----
Generated at Sun Jul 13 08:43:27 2025 by rpki-client