Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BDDEA24266C611F0814FDED1DAE4EC9C.roa
File: BDDEA24266C611F0814FDED1DAE4EC9C.roa (raw, json)
Hash identifier: 0cuhWdBNgvF5K2tZyzjdeclz/dll2BiSs7glP6Csuo0=
Subject key identifier: 66:4E:CF:B3:27:91:2D:20:1C:43:B1:01:94:E3:C6:3F:8C:7D:C9:F8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 016675
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BDDEA24266C611F0814FDED1DAE4EC9C.roa
Signing time: Tue 22 Jul 2025 06:40:23 +0000
ROA not before: Tue 22 Jul 2025 06:40:18 +0000
ROA not after: Wed 27 Aug 2025 06:40:18 +0000
asID: 20326
IP address blocks: 45.198.162.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 25 Aug 2025 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91765 (0x16675)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jul 22 06:40:18 2025 GMT
Not After : Aug 27 06:40:18 2025 GMT
Subject: CN=687f3257-3eeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:86:1d:d7:ee:a7:3f:d0:ef:6b:b0:25:04:6b:
1b:61:f5:fc:16:e1:6e:aa:57:25:67:44:9c:56:2a:
fb:d7:8b:7f:ac:be:5b:83:e4:6c:4c:7c:84:af:f1:
6e:98:57:a7:61:27:e7:fa:ae:a7:1c:22:ab:c4:c2:
a4:87:54:ff:e5:04:12:aa:e9:7c:f7:bf:ee:04:29:
12:ac:22:7a:74:f9:c1:f9:06:7e:17:7b:13:b1:4e:
70:dc:37:72:9c:af:42:46:9b:e9:dc:1e:4b:00:c6:
49:9d:2d:00:ea:bd:5f:55:d4:4c:0a:99:6b:4b:35:
89:47:5d:c3:58:c0:d2:81:84:f1:b3:c6:2b:07:62:
69:ce:4d:c3:e7:1c:50:a1:b2:cb:2e:1c:74:42:33:
85:8d:05:cf:42:86:25:cd:69:43:e2:13:91:46:7f:
8e:50:75:fb:fb:87:28:03:49:09:82:e2:ae:1d:fe:
a3:9d:83:dd:81:0d:4b:99:be:db:36:e0:27:34:f7:
55:33:6a:b7:d9:af:dd:1d:14:49:15:84:0e:93:7e:
de:c0:3e:f9:74:30:e4:49:72:0d:a9:2e:92:58:fc:
bb:79:7b:39:98:dc:02:9c:68:61:87:a8:18:68:b9:
12:50:c0:c4:5d:00:23:20:cc:1a:ca:51:6e:dd:c8:
ef:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:4E:CF:B3:27:91:2D:20:1C:43:B1:01:94:E3:C6:3F:8C:7D:C9:F8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BDDEA24266C611F0814FDED1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.162.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:82:62:f7:23:1b:86:7c:28:76:8e:1b:71:5b:49:77:a8:53:
25:4e:31:16:13:51:c9:b6:d1:04:5f:03:03:e5:d0:6a:bf:95:
5e:a6:95:7e:fb:40:01:4f:9f:ad:21:cf:35:c1:56:c9:d2:fd:
1d:b8:66:44:38:62:c2:34:e0:ec:94:e2:1d:2d:fa:cc:f3:b8:
29:90:9e:67:f4:b8:c8:41:21:93:52:b6:45:35:03:91:22:bf:
b0:7c:4d:30:0b:6c:cb:1e:34:47:63:28:9d:7a:83:95:1c:0a:
bb:16:e9:db:96:4e:8d:c0:66:2a:e9:89:78:8a:3c:c2:ba:5d:
f0:f6:11:57:f9:5e:21:73:f1:7f:15:4c:91:d5:b7:7a:c7:ae:
56:b4:51:66:15:d0:57:0e:d3:09:e3:b7:99:9a:fe:54:4a:ea:
34:27:f8:22:66:db:6f:56:ef:83:49:10:59:a4:6f:02:d1:5c:
67:88:c9:6a:a2:3e:e9:21:23:73:64:70:a7:a2:7d:98:57:99:
3a:89:b4:4b:15:98:b2:a1:a1:20:eb:95:a2:ad:18:8b:40:be:
f0:1e:d5:ba:b9:4f:63:6e:90:0a:ef:8e:6c:53:07:75:96:7c:
78:9a:5b:18:9d:45:d1:db:90:5d:44:78:d6:88:82:ea:bd:ba:
4a:1c:72:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:05:54 2025 by rpki-client