Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/ABD8A2D4993711F09855A2B7DAE4EC9C.roa
File: ABD8A2D4993711F09855A2B7DAE4EC9C.roa (raw, json)
Hash identifier: jaQfrV2WOXNmSTF+ewjIcA4TkYip9HAvcGf4G8ZFh5s=
Subject key identifier: FB:4D:48:14:BE:48:65:D2:94:34:82:77:42:3E:24:7B:BD:44:D1:5C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017CB1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/ABD8A2D4993711F09855A2B7DAE4EC9C.roa
Signing time: Wed 24 Sep 2025 11:14:44 +0000
ROA not before: Wed 24 Sep 2025 11:14:39 +0000
ROA not after: Wed 22 Oct 2025 11:14:39 +0000
asID: 19318
IP address blocks: 45.202.120.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97457 (0x17cb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 24 11:14:39 2025 GMT
Not After : Oct 22 11:14:39 2025 GMT
Subject: CN=68d3d2a4-646f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:66:09:c3:e7:95:a4:bb:d6:63:e6:de:22:c7:
20:d1:f9:08:25:44:d7:ca:47:09:33:cc:61:3c:af:
0b:8e:14:2d:34:da:32:bf:05:e5:45:cf:b3:d0:37:
ce:f6:9e:50:20:23:66:b5:5c:c1:6b:a8:09:7e:90:
13:77:cb:6e:23:fd:d1:2f:c1:7d:fe:58:9b:e6:62:
20:e0:2b:d4:1a:f9:c2:a6:6e:b5:1c:4d:28:59:b3:
be:26:1a:29:ef:36:c3:ca:ef:6b:3a:ba:12:88:93:
14:c7:39:9e:21:7d:de:f5:21:ec:10:34:db:9b:18:
ba:c3:1c:75:1f:68:47:74:03:72:a3:50:bf:e6:bf:
77:9a:fc:16:7c:e0:09:2b:0d:26:bc:e0:1b:e4:eb:
0f:d9:2f:13:9d:8c:86:08:a9:2d:7d:ba:5c:7f:2f:
e5:ab:49:e4:e2:f1:80:f5:f2:12:f5:59:d2:cd:ce:
1f:13:bf:59:f6:f8:e8:54:a3:ef:f1:4f:5a:c2:cf:
7d:62:41:28:b9:89:3d:fe:d7:c1:cd:92:bd:2a:8a:
92:60:23:a6:ff:24:f1:b6:75:bc:60:a0:c5:0e:79:
fe:1c:ad:d8:c3:4e:5a:14:87:7b:f2:4c:b1:8e:6a:
a3:cd:1a:f0:3b:e9:70:3e:36:51:93:be:66:a7:8b:
9a:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:4D:48:14:BE:48:65:D2:94:34:82:77:42:3E:24:7B:BD:44:D1:5C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/ABD8A2D4993711F09855A2B7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.120.0/22
Signature Algorithm: sha256WithRSAEncryption
85:f3:dd:92:3d:a0:b2:02:54:b9:58:3d:39:26:92:bf:ca:29:
9f:85:37:26:e0:de:b9:b8:32:4b:d8:3f:1d:2d:06:6f:f6:13:
a3:0c:77:05:69:53:0f:8c:0e:f9:3b:0d:ac:6b:a7:34:3f:64:
86:76:e6:02:e6:8e:b8:bf:50:10:a6:b6:94:d0:c8:41:12:69:
e6:fe:36:a2:44:60:ec:d9:0b:49:53:5a:f0:7c:ff:db:e1:47:
d6:1a:88:e2:6f:a4:bc:b7:74:a3:86:cb:0f:fb:f3:ed:3e:80:
91:76:c2:5d:90:3e:4a:40:6b:b9:eb:17:62:96:45:c3:0e:64:
62:03:80:b9:73:a5:a1:5d:64:cc:57:26:de:c7:68:6b:27:a8:
85:bc:24:2c:e9:bb:1a:c5:c9:f4:b8:2a:ef:40:1a:e1:d8:59:
f0:bd:2b:a2:0e:76:02:72:af:c0:c2:b2:6c:3e:b9:4f:53:fd:
3f:cc:f0:5c:36:47:f0:08:cb:ca:37:74:c3:ef:18:2b:85:ef:
70:c1:5b:2f:c1:fe:49:b7:d7:60:e3:4e:13:15:08:77:e6:d7:
09:87:da:27:1d:10:46:9f:3d:3c:49:11:92:6e:94:cf:92:2e:
bd:35:93:7c:fd:49:db:ea:31:2e:78:a4:ec:11:b6:d2:41:78:
c3:ad:65:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:03:57 2025 by rpki-client