Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DC2EB5E694FE11F0BC0628E1DAE4EC9C.roa
File: DC2EB5E694FE11F0BC0628E1DAE4EC9C.roa (raw, json)
Hash identifier: lSBcjwbMMir/nnh7iXfX3OG5MdgPpVfR5TA1vg1aSIo=
Subject key identifier: EC:05:F2:C0:C2:2C:57:E9:4D:CB:0B:FF:4C:8B:E8:3E:0A:19:D7:3F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017C27
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DC2EB5E694FE11F0BC0628E1DAE4EC9C.roa
Signing time: Fri 19 Sep 2025 02:17:59 +0000
ROA not before: Fri 19 Sep 2025 02:17:54 +0000
ROA not after: Tue 06 Oct 2026 02:17:54 +0000
asID: 393294
IP address blocks: 45.199.161.0/24 maxlen: 24
45.199.162.0/24 maxlen: 24
45.199.163.0/24 maxlen: 24
45.199.165.0/24 maxlen: 24
45.199.166.0/24 maxlen: 24
45.199.167.0/24 maxlen: 24
45.199.168.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97319 (0x17c27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 19 02:17:54 2025 GMT
Not After : Oct 6 02:17:54 2026 GMT
Subject: CN=68ccbd57-620d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:39:21:3b:7e:21:65:03:58:7d:77:fe:0f:e6:
6f:96:15:d1:52:7f:51:d5:d4:34:a1:82:58:8d:b3:
7a:e5:fe:0d:04:a3:d4:14:7b:99:83:8e:eb:80:84:
59:ce:48:f1:7c:1f:bc:d9:e4:fb:d1:1f:fc:17:81:
41:16:dd:a5:98:95:56:da:f4:94:40:76:5b:cc:94:
ac:80:b9:02:d5:96:87:82:8e:d0:97:a4:5e:32:a2:
42:f1:6f:81:12:5e:67:9c:6a:89:a3:d7:b2:29:5e:
40:3d:3a:a7:db:35:35:0c:87:72:84:52:1c:2c:d6:
9d:2d:f9:79:8a:b7:94:75:ba:c7:7b:4f:f1:2e:0f:
40:14:79:f2:e6:51:e8:46:2d:37:d8:25:b4:da:5d:
ff:48:1c:8a:3c:4f:ba:89:31:a5:08:6c:87:1e:6b:
8b:92:66:c0:4d:5c:10:47:b7:88:74:ec:40:03:f2:
36:58:d6:f1:c8:d2:33:77:5b:2e:36:4b:94:fd:71:
9a:b4:68:df:34:29:41:da:ba:04:68:06:1c:77:5d:
26:40:33:8e:31:33:61:64:59:a5:e5:e2:18:07:0c:
44:7d:28:c1:f3:21:a0:f3:f6:0b:06:38:fa:8e:29:
30:99:fe:d7:09:f2:d9:5d:97:7d:f8:b7:e8:1c:54:
f8:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:05:F2:C0:C2:2C:57:E9:4D:CB:0B:FF:4C:8B:E8:3E:0A:19:D7:3F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DC2EB5E694FE11F0BC0628E1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.161.0-45.199.163.255
45.199.165.0-45.199.168.255
Signature Algorithm: sha256WithRSAEncryption
b1:a5:16:5e:55:38:7a:9d:ec:76:13:a6:08:ae:18:85:df:6b:
98:50:a9:da:75:1d:8c:ad:9c:01:95:ab:46:41:f5:b1:2d:3f:
cb:95:0e:b8:ea:1a:b4:16:53:9f:3d:20:74:8a:09:1d:5a:6f:
f0:5e:1b:0d:87:1d:a0:52:03:b4:ba:cc:f5:fb:3e:53:53:f9:
7e:83:53:a7:17:67:93:76:40:da:a5:02:d1:e3:33:64:6c:9f:
44:5c:da:fb:f0:27:f0:c0:17:26:08:5b:d7:10:72:be:5d:f4:
76:d1:13:41:5b:2c:be:7e:40:25:20:32:98:9e:d0:30:4e:2d:
9d:a7:e6:35:e1:a1:74:08:00:a1:81:9a:85:0b:3f:f1:fe:c0:
ba:c2:3e:d9:1e:10:6c:b6:6c:39:13:c9:e3:ee:48:4d:df:89:
7d:80:25:0e:5f:35:bc:e7:df:63:ff:20:54:88:78:21:f2:ad:
7c:8e:50:32:b7:87:29:86:e7:5f:b5:7f:0d:24:26:14:83:53:
b9:0f:26:d7:02:86:d4:34:96:17:9b:c7:1c:60:c2:04:51:44:
76:d5:3b:89:b7:5a:a4:f2:fc:5f:e6:04:39:bb:e2:21:f6:cc:
cf:d1:4b:8f:2c:57:66:b4:88:30:bf:d6:e0:e5:b9:6a:d4:ec:
27:c4:d6:e7
-----BEGIN CERTIFICATE-----
MIIFlzCCBH+gAwIBAgIDAXwnMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwOTE5MDIxNzU0WhcNMjYxMDA2MDIxNzU0WjAYMRYw
FAYDVQQDEw02OGNjYmQ1Ny02MjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAzTkhO34hZQNYfXf+D+ZvlhXRUn9R1dQ0oYJYjbN65f4NBKPUFHuZg47r
gIRZzkjxfB+82eT70R/8F4FBFt2lmJVW2vSUQHZbzJSsgLkC1ZaHgo7Ql6ReMqJC
8W+BEl5nnGqJo9eyKV5APTqn2zU1DIdyhFIcLNadLfl5ireUdbrHe0/xLg9AFHny
5lHoRi032CW02l3/SByKPE+6iTGlCGyHHmuLkmbATVwQR7eIdOxAA/I2WNbxyNIz
d1suNkuU/XGatGjfNClB2roEaAYcd10mQDOOMTNhZFml5eIYBwxEfSjB8yGg8/YL
Bjj6jikwmf7XCfLZXZd9+LfoHFT4HQIDAQABo4ICuDCCArQwHQYDVR0OBBYEFOwF
8sDCLFfpTcsL/0yL6D4KGdc/MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9EQzJFQjVFNjk0RkUxMUYwQkMwNjI4RTFEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MDUGCCsGAQUFBwEHAQH/BCYwJDAiBAIAATAcMAwDBAAtx6EDBAItx6AwDAMEAC3H
pQMEAC3HqDANBgkqhkiG9w0BAQsFAAOCAQEAsaUWXlU4ep3sdhOmCK4Yhd9rmFCp
2nUdjK2cAZWrRkH1sS0/y5UOuOoatBZTnz0gdIoJHVpv8F4bDYcdoFIDtLrM9fs+
U1P5foNTpxdnk3ZA2qUC0eMzZGyfRFza+/An8MAXJghb1xByvl30dtETQVssvn5A
JSAymJ7QME4tnafmNeGhdAgAoYGahQs/8f7AusI+2R4QbLZsORPJ4+5ITd+JfYAl
Dl81vOffY/8gVIh4IfKtfI5QMreHKYbnX7V/DSQmFINTuQ8m1wKG1DSWF5vHHGDC
BFFEdtU7ibdapPL8X+YEObviIfbMz9FLjyxXZrSIML/W4OW5atTsJ8TW5w==
-----END CERTIFICATE-----
Generated at Sun Oct 19 20:05:03 2025 by rpki-client