Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DF7F1C02952811F08705167CDAE4EC9C.roa
File: DF7F1C02952811F08705167CDAE4EC9C.roa (raw, json)
Hash identifier: AFY6PE6GhyYR7vs0oeBSr+6eiU5bLGJkQ+sRIV6dFpw=
Subject key identifier: D9:9D:59:4D:8C:1C:46:A2:15:FA:F9:83:3F:2F:83:FF:FE:95:D0:AB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 017C3D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DF7F1C02952811F08705167CDAE4EC9C.roa
Signing time: Fri 19 Sep 2025 07:18:43 +0000
ROA not before: Fri 19 Sep 2025 07:18:38 +0000
ROA not after: Sun 26 Oct 2025 07:18:38 +0000
asID: 395793
IP address blocks: 45.192.115.0/24 maxlen: 24
45.194.0.0/24 maxlen: 24
45.195.255.0/24 maxlen: 24
45.198.183.0/24 maxlen: 24
45.201.20.0/24 maxlen: 24
45.201.21.0/24 maxlen: 24
45.201.22.0/24 maxlen: 24
45.201.23.0/24 maxlen: 24
45.206.65.0/24 maxlen: 24
45.206.66.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 21 Oct 2025 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97341 (0x17c3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Sep 19 07:18:38 2025 GMT
Not After : Oct 26 07:18:38 2025 GMT
Subject: CN=68cd03d3-cce7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:37:76:a7:1c:27:77:68:99:da:26:5e:85:52:
ed:58:cd:7c:c1:2a:fb:d4:a8:6c:1a:25:67:03:3d:
f3:ec:59:98:f5:70:38:c7:62:0c:60:df:2a:34:2d:
d0:9d:09:00:9f:2c:72:2c:df:11:20:75:17:21:42:
9b:9f:69:6a:c2:b6:6c:e7:f8:da:f4:9b:4e:c5:31:
61:ac:aa:ef:23:76:c3:f5:3a:80:b8:65:39:ba:25:
10:9b:f9:11:0b:88:93:18:60:29:62:b6:4f:f6:53:
37:54:16:7c:3f:12:21:55:2f:43:78:98:bd:79:f2:
16:f7:92:7e:5c:d0:9b:61:2f:65:84:91:8f:3a:5e:
56:4f:da:ec:30:3d:f2:8a:95:9c:78:b1:84:44:b3:
fa:6c:8c:0c:bf:d7:14:b6:d1:e9:22:e1:7c:09:df:
f1:56:18:29:3b:61:c2:cd:84:dd:83:b7:0a:4d:a2:
e7:ed:0a:e0:fb:b4:32:9e:d1:b6:39:14:17:ad:5b:
d7:14:e6:4d:55:2e:ae:d7:06:2b:e5:f0:9c:5d:cf:
74:59:7d:ea:18:12:79:90:a1:10:66:1c:25:8d:d3:
ea:9d:48:d2:33:00:67:cf:ed:42:12:b2:f3:b5:b1:
c9:fb:35:d9:45:0f:53:af:fc:da:f4:89:7a:fb:a2:
72:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:9D:59:4D:8C:1C:46:A2:15:FA:F9:83:3F:2F:83:FF:FE:95:D0:AB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DF7F1C02952811F08705167CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.115.0/24
45.194.0.0/24
45.195.255.0/24
45.198.183.0/24
45.201.20.0/22
45.206.65.0-45.206.66.255
Signature Algorithm: sha256WithRSAEncryption
2e:87:17:4b:07:8d:a5:a8:96:1e:9a:e7:65:cb:6b:f8:23:b2:
7a:ce:bb:24:db:48:aa:56:30:8a:0d:96:30:6e:35:b5:28:08:
0e:c8:88:8b:98:0d:0d:53:1a:e7:c2:7b:9f:f3:c5:6c:77:6c:
e3:40:b2:6f:33:19:a8:50:b2:6e:8a:af:2d:a9:12:f8:b2:43:
89:db:0d:d5:df:37:7c:e9:e4:c6:7d:9d:4f:70:03:6b:ac:d6:
ab:b6:1e:02:be:4c:a3:da:17:90:e5:25:41:b2:d6:63:e4:11:
a6:91:af:23:7e:2d:de:af:7d:71:b9:71:21:e3:3c:02:b9:db:
26:e3:47:f5:11:7c:2d:42:e8:4a:9a:9b:bc:ef:53:5a:0b:e2:
a5:46:c0:08:d2:cb:34:d6:74:47:92:1e:a1:17:b5:92:34:40:
11:c6:4b:fa:ae:25:3e:58:63:17:86:26:ad:78:00:a9:96:61:
0c:f3:e5:02:7c:c8:5a:34:4f:2e:1b:65:7c:da:e4:e7:14:10:
1c:9d:c7:3f:13:76:45:b4:ce:c7:d3:dc:2d:8f:87:99:e0:16:
d1:23:a7:c1:3a:4e:72:dd:1a:53:4e:b5:2e:4a:91:b7:15:af:
22:16:c5:a7:04:9a:13:cf:ed:a8:6d:48:40:d0:7f:ad:55:ca:
88:84:ff:bd
-----BEGIN CERTIFICATE-----
MIIFpzCCBI+gAwIBAgIDAXw9MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUwOTE5MDcxODM4WhcNMjUxMDI2MDcxODM4WjAYMRYw
FAYDVQQDEw02OGNkMDNkMy1jY2U3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAzDd2pxwnd2iZ2iZehVLtWM18wSr71KhsGiVnAz3z7FmY9XA4x2IMYN8q
NC3QnQkAnyxyLN8RIHUXIUKbn2lqwrZs5/ja9JtOxTFhrKrvI3bD9TqAuGU5uiUQ
m/kRC4iTGGApYrZP9lM3VBZ8PxIhVS9DeJi9efIW95J+XNCbYS9lhJGPOl5WT9rs
MD3yipWceLGERLP6bIwMv9cUttHpIuF8Cd/xVhgpO2HCzYTdg7cKTaLn7Qrg+7Qy
ntG2ORQXrVvXFOZNVS6u1wYr5fCcXc90WX3qGBJ5kKEQZhwljdPqnUjSMwBnz+1C
ErLztbHJ+zXZRQ9Tr/za9Il6+6JyWwIDAQABo4ICyDCCAsQwHQYDVR0OBBYEFNmd
WU2MHEaiFfr5gz8vg//+ldCrMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9ERjdGMUMwMjk1MjgxMUYwODcwNTE2N0NEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MEUGCCsGAQUFBwEHAQH/BDYwNDAyBAIAATAsAwQALcBzAwQALcIAAwQALcP/AwQA
Lca3AwQCLckUMAwDBAAtzkEDBAAtzkIwDQYJKoZIhvcNAQELBQADggEBAC6HF0sH
jaWolh6a52XLa/gjsnrOuyTbSKpWMIoNljBuNbUoCA7IiIuYDQ1TGufCe5/zxWx3
bONAsm8zGahQsm6Kry2pEviyQ4nbDdXfN3zp5MZ9nU9wA2us1qu2HgK+TKPaF5Dl
JUGy1mPkEaaRryN+Ld6vfXG5cSHjPAK52ybjR/URfC1C6Eqam7zvU1oL4qVGwAjS
yzTWdEeSHqEXtZI0QBHGS/quJT5YYxeGJq14AKmWYQzz5QJ8yFo0Ty4bZXza5OcU
EBydxz8TdkW0zsfT3C2Ph5ngFtEjp8E6TnLdGlNOtS5KkbcVryIWxacEmhPP7aht
SEDQf61VyoiE/70=
-----END CERTIFICATE-----
Generated at Sun Oct 19 20:04:30 2025 by rpki-client