Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/054421B458FE11F19DAF1917CF1D38B0.roa
File: 054421B458FE11F19DAF1917CF1D38B0.roa (raw, json)
Hash identifier: X9PdMsyMoNh3ZU4WVrZwNUjDECxFIzkoS71YjBx+Hik=
Subject key identifier: 9A:A6:01:E9:D0:94:67:A6:8D:5B:6C:34:14:06:EA:F1:EA:A8:46:06
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B9FC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/054421B458FE11F19DAF1917CF1D38B0.roa
Signing time: Tue 26 May 2026 12:25:46 +0000
ROA not before: Tue 26 May 2026 12:25:38 +0000
ROA not after: Sun 05 Jul 2026 12:25:38 +0000
asID: 213800
IP address blocks: 45.207.58.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113148 (0x1b9fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 26 12:25:38 2026 GMT
Not After : Jul 5 12:25:38 2026 GMT
Subject: CN=6a15914a-cdc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:24:0b:20:d7:bf:30:27:94:a7:39:6c:c0:88:
60:ce:a4:96:f0:4c:3e:2c:e1:a6:11:04:07:28:2e:
b0:cd:50:70:83:e0:c8:af:ad:12:4c:77:1c:0d:a8:
44:c1:fc:ab:78:3a:32:6f:e3:d0:e6:09:ea:d4:31:
46:13:b1:a9:36:12:e9:2c:50:61:d3:0d:ab:f7:db:
59:60:e2:f4:40:41:18:63:db:5e:b9:2c:d5:d1:1a:
83:4c:9e:62:e4:94:e2:c1:e1:7c:18:76:1d:4e:2a:
5c:98:e8:d4:28:a4:ce:e3:5d:de:f0:64:15:ae:4a:
48:be:f9:80:62:2d:11:77:9b:72:e4:0a:ba:d1:51:
11:b7:af:4f:42:6e:da:74:af:03:36:6f:af:66:28:
08:e1:d9:62:f4:3f:c6:f8:01:f3:b5:e2:fd:14:a2:
ce:ae:e2:7c:cf:21:1d:cb:5b:22:22:5f:5b:7c:62:
f0:9b:46:41:82:43:1f:51:65:22:6f:c4:27:e2:39:
a8:ab:0d:dc:c0:39:e9:99:60:78:41:b9:4a:52:a7:
ad:bd:8d:5c:de:da:0f:c5:8a:d0:87:c1:71:0c:0a:
05:0a:29:da:6d:ee:37:33:d1:71:77:f4:33:a3:6b:
6b:2e:ed:1a:33:d0:32:55:57:9b:7f:4d:d3:3e:e2:
77:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:A6:01:E9:D0:94:67:A6:8D:5B:6C:34:14:06:EA:F1:EA:A8:46:06
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/054421B458FE11F19DAF1917CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.58.0/24
Signature Algorithm: sha256WithRSAEncryption
42:c0:31:46:9a:66:bc:dc:06:cb:71:00:ae:9b:8c:15:c6:05:
d8:78:ff:6a:51:20:ce:50:8d:76:f9:8c:06:40:8d:52:46:d8:
55:08:cf:73:86:56:59:47:e5:33:8a:10:87:1b:99:79:ef:68:
f3:63:39:10:9e:64:50:64:63:cb:0a:ea:48:ad:a1:3a:62:c0:
aa:6f:70:07:59:f7:be:69:61:69:38:01:b2:fa:e1:c9:9f:b6:
cb:1d:3a:1e:96:6d:c4:71:45:6b:b1:1a:d4:7a:56:68:fc:b6:
92:e3:ba:46:6a:bf:90:6d:c1:34:53:74:8f:b5:a0:5b:67:93:
6d:c6:70:c6:98:2f:71:b8:a5:1d:35:62:4b:80:f4:27:c2:f3:
1b:3d:5d:12:86:1b:18:f1:2d:b8:69:2a:93:fc:28:d7:d4:0f:
3f:9a:8c:1d:75:3c:d1:f0:1e:99:11:7b:86:b2:76:df:8f:c1:
1c:b7:00:13:8c:8f:6b:ee:d9:cd:8d:0f:59:97:fe:25:86:19:
d4:2d:dc:e4:ca:33:78:02:9c:77:89:65:96:59:b8:18:c7:58:
33:e1:f8:94:b3:2f:6a:24:1c:2b:a5:55:ec:a2:8a:c4:f7:0a:
34:3d:ff:35:d6:8a:f1:d6:7b:e3:3e:17:4d:b6:9f:ad:19:c0:
7d:6e:a9:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:07:20 2026 by rpki-client