Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/27FE4F6C65CF11F19CCFB9F0CE1D38B0.roa
File: 27FE4F6C65CF11F19CCFB9F0CE1D38B0.roa (raw, json)
Hash identifier: Mslq/ETojWCVDYIUVIc3+bl4rkAow7cS0qFY20kU1jQ=
Subject key identifier: CC:DD:6A:0E:A5:46:5A:19:E3:E4:14:0E:C0:3F:49:E3:D8:BC:C3:67
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01BCFB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/27FE4F6C65CF11F19CCFB9F0CE1D38B0.roa
Signing time: Thu 11 Jun 2026 19:53:03 +0000
ROA not before: Thu 11 Jun 2026 19:52:58 +0000
ROA not after: Sat 20 Jun 2026 19:52:58 +0000
asID: 135097
IP address blocks: 45.207.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 13 Jun 2026 19:56:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113915 (0x1bcfb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 11 19:52:58 2026 GMT
Not After : Jun 20 19:52:58 2026 GMT
Subject: CN=6a2b121f-fcc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:59:ce:17:21:50:50:5d:eb:36:13:90:c1:c1:
60:3e:6a:b1:7f:02:26:97:ea:5e:6d:c5:a8:2a:ee:
ac:91:8e:ba:3e:3d:68:77:e0:b1:ae:e2:3e:e9:37:
fb:90:47:87:3b:df:61:ff:09:d8:1e:39:fb:38:45:
ea:38:6a:61:33:1b:3d:02:a8:b4:91:ba:7d:c0:67:
0b:61:1e:b7:12:6e:64:02:6e:22:93:3e:e6:49:37:
65:dd:bd:0d:52:a5:b0:68:a4:91:8b:1b:6d:5d:dc:
f1:af:d7:34:ff:b4:b9:82:a0:12:cd:d0:cf:0a:20:
65:03:33:82:8f:f2:bd:58:1e:0f:f3:93:29:e2:e0:
30:74:f0:7e:29:cd:0e:99:ab:b3:15:a5:aa:0e:f3:
93:08:07:32:bb:50:ad:47:87:97:b0:a1:20:39:25:
15:cf:52:de:f9:1b:74:58:49:1e:53:87:92:f1:24:
9f:db:7e:15:6a:d1:30:3c:16:f1:4c:3f:3c:b2:43:
b3:91:9e:c7:ca:18:1c:ce:ec:b1:98:a8:05:99:a8:
94:37:5a:cc:12:d1:2a:d1:54:9c:d0:bb:35:67:ca:
2d:a5:7f:5a:7e:77:fd:91:3d:bd:63:9c:13:e2:6a:
6a:ed:ad:01:3d:91:5b:cb:90:51:36:9b:3e:d3:21:
d3:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:DD:6A:0E:A5:46:5A:19:E3:E4:14:0E:C0:3F:49:E3:D8:BC:C3:67
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/27FE4F6C65CF11F19CCFB9F0CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.64.0/18
Signature Algorithm: sha256WithRSAEncryption
20:31:f5:54:4e:68:eb:52:3c:50:b7:a3:a9:0c:9e:30:f2:5f:
cc:7d:85:1d:38:71:b3:13:0a:4e:b9:40:7b:5b:ff:c9:97:fd:
bb:1b:5e:57:7b:dc:e0:65:a6:8b:8a:a7:77:5a:ae:c5:63:2c:
65:67:22:6c:5c:7a:3c:77:f5:90:c2:58:07:9b:2d:35:f2:a7:
cf:39:5c:31:72:13:55:20:7f:df:57:35:2a:6e:19:7a:11:43:
cc:12:b7:c9:ab:da:04:61:72:a6:42:98:40:ef:90:a0:89:a9:
d4:22:4c:fd:2c:8f:b4:c9:19:bb:3e:95:f2:b0:21:97:f1:2b:
1e:1a:45:d3:7e:11:cc:0f:a2:4e:66:af:36:8e:74:b5:15:81:
fa:ea:09:bc:aa:e2:b1:f0:74:f2:90:02:44:12:02:9f:02:da:
b0:bd:2a:11:18:a8:d9:99:d2:7c:bd:78:2b:0a:75:66:25:d5:
0d:a0:38:f7:b4:e9:1d:58:5c:83:91:0b:16:1b:f0:e3:fc:9d:
14:3d:fa:d0:dd:4f:bb:d8:13:ea:01:4e:ce:53:4c:38:a1:e9:
39:04:b9:16:27:1c:ce:0c:e6:e7:58:a3:11:af:9a:f8:f2:90:
5e:9f:07:9c:3e:3b:f5:85:db:87:0d:46:4a:0e:0d:f7:62:72:
7a:64:60:03
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAbz7MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwNjExMTk1MjU4WhcNMjYwNjIwMTk1MjU4WjAYMRYw
FAYDVQQDEw02YTJiMTIxZi1mY2MwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA2VnOFyFQUF3rNhOQwcFgPmqxfwIml+pebcWoKu6skY66Pj1od+CxruI+
6Tf7kEeHO99h/wnYHjn7OEXqOGphMxs9Aqi0kbp9wGcLYR63Em5kAm4ikz7mSTdl
3b0NUqWwaKSRixttXdzxr9c0/7S5gqASzdDPCiBlAzOCj/K9WB4P85Mp4uAwdPB+
Kc0OmauzFaWqDvOTCAcyu1CtR4eXsKEgOSUVz1Le+Rt0WEkeU4eS8SSf234VatEw
PBbxTD88skOzkZ7HyhgczuyxmKgFmaiUN1rMEtEq0VSc0Ls1Z8otpX9afnf9kT29
Y5wT4mpq7a0BPZFby5BRNps+0yHTCwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFMzd
ag6lRloZ4+QUDsA/SePYvMNnMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8yN0ZFNEY2QzY1Q0YxMUYxOUNDRkI5RjBDRTFEMzhCMC5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGLc9AMA0GCSqGSIb3DQEBCwUA
A4IBAQAgMfVUTmjrUjxQt6OpDJ4w8l/MfYUdOHGzEwpOuUB7W//Jl/27G15Xe9zg
ZaaLiqd3Wq7FYyxlZyJsXHo8d/WQwlgHmy018qfPOVwxchNVIH/fVzUqbhl6EUPM
ErfJq9oEYXKmQphA75CgianUIkz9LI+0yRm7PpXysCGX8SseGkXTfhHMD6JOZq82
jnS1FYH66gm8quKx8HTykAJEEgKfAtqwvSoRGKjZmdJ8vXgrCnVmJdUNoDj3tOkd
WFyDkQsWG/Dj/J0UPfrQ3U+72BPqAU7OU0w4oek5BLkWJxzODObnWKMRr5r48pBe
nwecPjv1hduHDUZKDg33YnJ6ZGAD
-----END CERTIFICATE-----
Generated at Fri Jun 12 02:40:43 2026 by rpki-client