Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D5E9B948993F11F097D9B9ECDAE4EC9C.roa
File: D5E9B948993F11F097D9B9ECDAE4EC9C.roa (raw, json)
Hash identifier: OrG6CZWnjTAXONltX2dZCtY7t5360/9OGTAEfzLNliY=
Subject key identifier: C7:3E:A5:20:EE:12:BF:09:72:16:6B:F6:34:45:5B:11:E2:EF:33:BC
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017CC7
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D5E9B948993F11F097D9B9ECDAE4EC9C.roa
Signing time: Wed 24 Sep 2025 12:13:10 +0000
ROA not before: Wed 24 Sep 2025 12:13:05 +0000
ROA not after: Thu 24 Sep 2026 12:13:05 +0000
asID: 13335
IP address blocks: 45.195.14.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97479 (0x17cc7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 24 12:13:05 2025 GMT
Not After : Sep 24 12:13:05 2026 GMT
Subject: CN=68d3e056-a9c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:f6:64:14:79:73:e3:b5:7b:f1:64:9f:cf:1c:
25:df:4e:65:bd:95:60:63:27:e5:d2:a6:b3:57:6b:
f9:9a:11:65:bd:48:4b:2c:4b:99:9c:a8:f4:59:b8:
83:cc:dd:78:ec:ef:26:e1:c7:ae:1c:5d:11:fd:33:
59:41:76:02:98:f6:ea:56:ae:59:d1:a9:27:82:fa:
a2:e6:eb:94:d4:b7:89:dd:b1:05:9a:70:3f:3d:ee:
3c:b8:92:78:a9:f9:e6:11:9c:67:16:f3:99:5b:93:
e7:61:c8:7e:c4:9c:4e:8b:27:fe:7f:2a:26:b7:87:
f9:58:f3:26:8f:af:13:ed:94:c0:7f:e0:d3:2e:89:
65:01:24:a5:11:5f:15:8a:4c:1b:be:bd:5b:34:99:
fe:d2:8c:a8:60:21:5a:5e:a4:b9:86:d9:5e:5a:74:
ab:ad:a3:43:47:68:eb:85:55:0a:d7:2d:da:af:f9:
c3:18:b1:cc:60:9e:13:5d:90:98:dd:59:e1:90:e4:
17:0f:ad:33:5c:6b:5e:e8:86:96:6f:a9:26:92:75:
cd:d9:67:63:b9:64:ff:d1:5d:9e:2b:2f:30:08:66:
c1:49:b7:85:c5:11:c2:da:88:33:d6:ce:01:7e:cb:
2b:7d:56:af:85:d8:7c:f9:0e:a0:5a:ee:9e:3a:d3:
6f:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:3E:A5:20:EE:12:BF:09:72:16:6B:F6:34:45:5B:11:E2:EF:33:BC
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D5E9B948993F11F097D9B9ECDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.14.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:95:f5:58:7b:54:04:da:53:06:28:3c:90:3d:95:94:be:fa:
7c:a1:93:35:35:ea:08:8d:94:93:1b:16:87:59:27:57:6f:91:
37:10:d1:bd:03:54:bd:f6:68:e9:68:37:30:16:67:f4:2f:51:
3d:ef:48:47:5f:91:c7:5d:50:32:b6:7f:59:2f:b4:51:29:da:
7b:13:54:2f:65:f3:0f:13:8b:be:96:8f:31:17:4c:6a:04:f6:
e8:c7:18:8c:25:91:1e:40:8a:c6:a1:5e:ce:bc:93:61:e3:fc:
c9:b6:8f:32:51:34:cc:08:85:2c:8f:11:1d:96:76:e4:47:4a:
cf:f0:1d:d0:5e:fe:cb:34:fa:7e:21:fe:69:92:cb:22:21:48:
3f:38:07:79:39:99:41:18:77:11:58:16:e8:88:32:7f:4f:bc:
01:41:f0:16:03:ae:49:2d:33:d0:44:03:fb:e1:e0:9f:e3:a4:
4c:af:1b:b1:fa:bd:46:09:85:5f:82:c4:12:5a:e2:06:e4:59:
f5:7d:65:36:26:31:4a:b5:4f:69:72:3a:f2:8d:aa:1e:b7:11:
b8:a1:9d:91:99:c0:45:8c:c5:ac:49:f5:7a:71:e2:c4:85:e1:
92:a0:51:3c:20:1b:82:48:b2:dc:e9:d0:8c:82:c1:84:50:10:
cc:6b:41:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:04:28 2025 by rpki-client