Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2BB828CE567C11F19B3755DBCE1D38B0.roa
File: 2BB828CE567C11F19B3755DBCE1D38B0.roa (raw, json)
Hash identifier: q8epyJCPcWhm5fawni7/gz58xgCn3QKNBXK5AdqoxBw=
Subject key identifier: DC:54:3A:21:68:35:9B:12:47:35:09:48:50:8C:90:6D:4D:C0:E7:17
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B85C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2BB828CE567C11F19B3755DBCE1D38B0.roa
Signing time: Sat 23 May 2026 07:51:14 +0000
ROA not before: Sat 23 May 2026 07:51:09 +0000
ROA not after: Wed 08 Jul 2026 07:51:09 +0000
asID: 214049
IP address blocks: 45.194.6.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112732 (0x1b85c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 23 07:51:09 2026 GMT
Not After : Jul 8 07:51:09 2026 GMT
Subject: CN=6a115c72-2643
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:df:da:cd:3e:79:fc:5f:e6:cc:d7:e6:72:c6:
93:f2:9d:09:a7:30:33:e3:46:50:7f:e4:38:44:55:
73:cb:e2:48:52:63:35:05:fd:27:1e:66:fe:5b:c7:
b8:34:5e:56:71:69:35:32:b0:a8:36:c3:0e:72:f5:
71:fd:48:0f:87:8a:23:4a:3e:fe:b1:58:ed:6e:09:
ac:82:81:98:83:94:46:e6:92:34:73:8b:a8:62:7c:
44:e5:25:9d:fa:f1:0d:e8:18:2d:44:be:a3:7e:69:
20:5f:8c:30:e2:73:bc:30:2d:13:ef:77:37:2e:ae:
90:e3:4a:73:1b:61:21:e0:ba:be:51:8c:d3:b8:d7:
4b:02:e3:8e:4d:39:f9:af:83:21:e5:4a:4a:88:f9:
db:27:b5:03:52:62:a3:bd:c3:6b:d8:ad:70:cb:ad:
69:64:63:93:11:8b:d0:03:bc:cc:0e:dc:98:cd:46:
15:22:97:6d:d8:e7:4d:a8:b4:9d:d1:d0:98:57:9f:
02:7a:14:ae:58:5a:78:54:c6:de:01:55:d5:bd:be:
13:0e:7e:73:f2:9a:f6:f1:85:5a:51:7b:3f:27:bc:
d2:9a:86:ee:ba:1a:d8:36:03:3e:af:92:e3:b8:66:
bf:cc:45:77:b8:45:d3:75:e3:4e:38:7b:82:6b:86:
0e:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:54:3A:21:68:35:9B:12:47:35:09:48:50:8C:90:6D:4D:C0:E7:17
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2BB828CE567C11F19B3755DBCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.6.0/24
Signature Algorithm: sha256WithRSAEncryption
af:e1:ed:97:d0:c9:51:72:81:84:ab:61:f0:cc:26:52:8b:5e:
3a:b5:2e:2a:30:ef:bf:84:93:bb:1e:bd:48:7a:f2:45:f7:54:
a7:1c:48:79:9f:50:e2:c9:fb:f8:41:a6:7f:31:93:66:34:d6:
e2:c1:7b:01:ff:9d:7c:31:59:4e:63:52:ee:45:83:7a:ae:79:
af:30:9e:24:77:d2:0a:68:96:67:cd:37:b6:3f:31:6f:91:fb:
5e:e7:6c:53:aa:99:93:f4:e0:a2:b3:44:41:a8:79:f3:05:bb:
00:be:9d:2f:ec:14:78:36:9f:cd:88:78:0a:72:cd:61:f4:e1:
96:3d:ea:3e:c5:5b:1d:7a:69:be:0b:39:07:66:79:13:be:41:
68:8e:45:b6:4a:4a:ed:a9:67:87:3a:82:0d:34:a8:0a:0a:fa:
c5:88:62:6a:9b:26:9e:59:21:b8:d2:f9:fd:f7:da:f4:a1:b3:
01:d7:8f:c3:77:6f:5f:64:8f:ac:5c:0d:d9:ea:9a:8a:2e:83:
32:5c:a6:8c:a7:0a:b1:2e:4f:ea:ef:13:54:a2:b4:9c:cb:d6:
db:69:d6:1b:5f:aa:ee:51:df:55:46:da:15:58:06:65:2d:ae:
b3:ef:db:ea:3b:ac:0f:5b:47:07:76:64:eb:17:5b:45:7c:eb:
5e:b1:5a:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:14:20 2026 by rpki-client