Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9040ECE4A9CB11F09E36FE99DAE4EC9C.roa
File: 9040ECE4A9CB11F09E36FE99DAE4EC9C.roa (raw, json)
Hash identifier: sg08EPZ3FsjOSk+Jmnnc5oQ4SZ8Mj5MwEfcotzoA1jM=
Subject key identifier: 90:C3:5C:AA:37:D3:3D:3B:89:2D:23:9A:EF:49:1E:7D:74:DC:19:66
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0180C7
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9040ECE4A9CB11F09E36FE99DAE4EC9C.roa
Signing time: Wed 15 Oct 2025 13:33:41 +0000
ROA not before: Wed 15 Oct 2025 13:33:37 +0000
ROA not after: Fri 05 Dec 2025 13:33:37 +0000
asID: 20326
IP address blocks: 45.202.89.0/24 maxlen: 24
45.202.115.0/24 maxlen: 24
45.202.118.0/24 maxlen: 24
45.202.126.0/24 maxlen: 24
45.207.25.0/24 maxlen: 24
45.207.28.0/24 maxlen: 24
45.207.30.0/24 maxlen: 24
45.207.44.0/24 maxlen: 24
45.207.47.0/24 maxlen: 24
45.207.56.0/24 maxlen: 24
45.207.61.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98503 (0x180c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 15 13:33:37 2025 GMT
Not After : Dec 5 13:33:37 2025 GMT
Subject: CN=68efa2b5-5d89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:cb:c7:35:0a:bd:88:36:00:3b:73:4a:f1:2f:
01:8e:79:df:67:c4:c0:19:8f:9a:78:72:81:74:bd:
f1:30:00:48:29:1a:04:d9:d9:44:9f:56:c6:8c:ef:
ca:cf:27:15:d1:1d:2e:07:d4:c4:51:89:3a:eb:7f:
7c:ac:a4:b5:c5:5e:ad:6a:0f:97:07:03:90:01:b1:
da:f0:5c:c7:8b:80:50:9e:27:ae:dd:99:0c:c6:84:
30:7d:bf:fd:d4:c8:bc:e4:e5:6c:5c:a6:9c:0f:c2:
0b:0f:d0:e0:4e:4b:a9:9c:84:cc:51:a6:06:22:4f:
4e:a4:00:41:df:f7:9c:e1:ae:38:55:79:1d:d1:9f:
e2:2e:56:98:7c:5e:81:5f:48:84:47:de:2f:c0:61:
cd:19:e9:4f:7b:d8:f5:be:38:8c:00:b0:d8:ef:2f:
c4:ff:0c:7b:5c:ee:10:87:c2:ad:4e:99:7d:1e:7a:
f2:e4:df:ad:b8:ef:d3:2e:ac:61:45:ff:8e:c7:6c:
47:7d:e2:c2:d3:8a:c9:20:b9:fd:50:0d:9d:97:9f:
ba:68:9f:85:1c:a4:fe:ff:c7:29:02:7e:93:71:83:
52:85:07:2b:cd:ac:bb:5f:f6:42:0c:e3:fe:41:e6:
4a:38:f2:18:71:5b:74:63:86:33:11:60:50:31:e5:
b3:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:C3:5C:AA:37:D3:3D:3B:89:2D:23:9A:EF:49:1E:7D:74:DC:19:66
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9040ECE4A9CB11F09E36FE99DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.89.0/24
45.202.115.0/24
45.202.118.0/24
45.202.126.0/24
45.207.25.0/24
45.207.28.0/24
45.207.30.0/24
45.207.44.0/24
45.207.47.0/24
45.207.56.0/24
45.207.61.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:e8:b6:33:d1:49:98:33:6a:1d:33:46:c7:a1:b1:ac:a3:68:
11:dd:8f:6a:12:0d:b5:84:8c:e9:d9:80:de:c9:e9:3d:21:dc:
15:2c:0f:bd:cd:ba:e0:87:70:31:7a:22:62:d0:1d:82:74:10:
7a:15:a7:d3:42:10:4c:41:d5:c0:c9:a5:dc:7c:04:1a:f0:9c:
d7:ba:c3:41:93:fd:8c:17:c2:81:b7:05:69:a8:ba:73:bf:fc:
c6:40:8d:e4:f8:79:4e:92:d0:49:fd:ab:64:94:e0:87:b7:0e:
b5:16:f3:5e:cc:08:b2:87:f3:33:68:d0:90:a9:04:cf:d3:bb:
52:39:9b:23:ad:6e:3c:b2:f5:af:38:b4:37:0f:b2:1c:c8:94:
b6:be:b3:93:ce:3d:29:1c:62:ec:3c:97:8f:14:1b:b6:d6:28:
bf:e7:39:50:cf:5e:1c:89:29:8c:59:8b:90:30:ca:3c:0f:a5:
94:64:21:41:3c:ea:6b:bc:97:0b:1f:72:b0:09:10:fa:65:4e:
cd:9e:67:af:36:22:74:d1:73:1f:89:34:6c:e2:20:21:7c:08:
0b:33:9c:07:29:c9:8a:66:4d:b5:46:f3:f5:37:2b:4f:7c:46:
06:1f:b0:61:02:a4:da:a2:c7:8d:02:b9:66:3b:62:37:ab:7d:
ee:c1:cc:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:03:39 2025 by rpki-client