Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0691636260C211F1B698FCCBCE1D38B0.roa
File: 0691636260C211F1B698FCCBCE1D38B0.roa (raw, json)
Hash identifier: fIOelZ+5nwRYRvlTYaVJRsoMa/DPTNIVFib1W4p0E2E=
Subject key identifier: B3:A4:CD:BF:C6:FC:A2:EA:C2:7A:33:0E:A0:BD:88:96:AA:47:12:DB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01BC01
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0691636260C211F1B698FCCBCE1D38B0.roa
Signing time: Fri 05 Jun 2026 09:36:28 +0000
ROA not before: Fri 05 Jun 2026 09:36:23 +0000
ROA not after: Mon 03 Aug 2026 09:36:23 +0000
asID: 8796
IP address blocks: 45.194.20.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 08 Jun 2026 00:26:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113665 (0x1bc01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 5 09:36:23 2026 GMT
Not After : Aug 3 09:36:23 2026 GMT
Subject: CN=6a22989c-fba0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:e2:4e:ae:53:54:b3:37:4f:4d:b0:55:4c:33:
bc:e3:3a:76:01:ab:3c:00:d5:e1:ac:f3:6c:50:c7:
36:01:c2:3e:8d:13:09:e5:da:5b:c6:f3:51:b1:51:
11:d5:05:06:e5:6d:54:aa:63:20:f7:54:e5:ed:13:
3d:3d:9f:a0:6b:fc:dd:db:f6:29:ed:6e:0b:9e:3d:
b4:5e:f5:f4:45:66:21:3c:cf:9c:18:8e:34:09:92:
be:b3:88:98:70:a2:2a:66:13:d6:b6:34:8a:45:57:
08:73:6f:a3:cc:c7:3a:07:c3:4b:2d:36:75:7e:0c:
f4:4f:47:05:54:f1:ee:0f:6d:7d:52:3d:ff:ae:21:
c0:73:f7:63:cf:ee:26:1d:ef:e9:52:20:26:19:d9:
2c:2e:0b:9c:1d:28:6a:02:4a:d8:96:57:84:5c:a6:
63:4f:0a:a3:a9:9a:9e:a5:d6:c5:53:b5:d1:24:e4:
40:26:eb:c5:27:52:68:38:f5:b5:df:16:f7:63:35:
3e:d9:c0:a8:8f:af:23:b3:86:76:1b:1b:ca:4a:93:
40:37:8e:8a:f7:08:79:07:c9:de:7a:fe:93:47:e0:
5a:80:49:fe:57:93:03:bf:d9:4d:0d:4f:1a:80:9a:
86:b2:10:ce:ee:c2:4e:d3:a7:72:37:07:35:7d:28:
e0:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:A4:CD:BF:C6:FC:A2:EA:C2:7A:33:0E:A0:BD:88:96:AA:47:12:DB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0691636260C211F1B698FCCBCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.20.0/22
Signature Algorithm: sha256WithRSAEncryption
45:80:e7:88:8a:18:81:28:54:52:a0:84:5a:46:ff:8f:be:7f:
6d:5e:b9:e9:d4:d0:26:a8:7f:04:f6:83:e2:5d:55:6f:0a:a4:
c4:17:af:aa:9d:53:7e:be:7f:de:f4:31:35:ba:73:c7:08:26:
c2:64:23:af:15:70:2b:4b:28:26:97:18:8e:e1:94:4d:59:a2:
7d:4b:fc:56:2a:5a:d4:82:55:a2:b7:f4:fd:ec:a3:ed:db:de:
65:46:5d:e1:74:91:e9:48:5f:7f:58:96:9d:4f:16:11:c9:43:
ba:72:7d:a6:f4:3f:cd:25:12:2a:33:19:d6:64:2f:26:b2:27:
6d:3c:25:47:e8:96:e3:5a:fb:63:6c:56:8c:72:79:bb:cd:a5:
e4:23:8a:9e:af:83:fc:e4:9e:24:ab:a8:4f:06:b0:92:b7:c2:
5f:28:22:00:0d:1c:ea:5f:5a:71:f7:9e:3c:55:b1:8b:4c:7f:
d2:80:74:28:9f:4d:02:d7:f5:d3:e3:ba:c9:9e:63:46:d7:85:
80:4e:a0:15:68:64:cf:68:df:79:7f:3b:b8:bc:e7:5e:b4:c6:
9a:4b:40:04:77:8d:18:20:48:b1:41:08:3f:f4:f8:56:7f:1c:
8f:97:0d:f8:1e:cd:6d:a7:88:85:24:6b:16:4f:7a:3d:a9:2d:
73:a8:18:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 05:22:23 2026 by rpki-client