Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2E6577C6502C11F19E8292E7CE1D38B0.roa
File: 2E6577C6502C11F19E8292E7CE1D38B0.roa (raw, json)
Hash identifier: 0dnU+3LbocSnMCOa87XyqQYIGq3R/wIQdpO93Cd5yzM=
Subject key identifier: 74:D0:18:C8:3A:B6:0A:47:90:33:76:11:70:71:58:9D:E1:5E:36:22
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B494
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2E6577C6502C11F19E8292E7CE1D38B0.roa
Signing time: Fri 15 May 2026 07:03:31 +0000
ROA not before: Fri 15 May 2026 07:03:27 +0000
ROA not after: Fri 14 May 2027 07:03:27 +0000
asID: 36898
IP address blocks: 45.205.216.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111764 (0x1b494)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 15 07:03:27 2026 GMT
Not After : May 14 07:03:27 2027 GMT
Subject: CN=6a06c543-410c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:8d:1c:76:ea:f0:1f:cb:1f:47:58:c0:a9:91:
18:51:72:ac:13:c7:73:67:a8:82:db:58:0b:97:06:
a4:a2:cc:a7:dc:81:3a:7a:d4:cd:a5:a7:2d:57:7c:
f7:bd:93:0e:ff:d4:79:f6:a2:bd:93:d6:e9:11:46:
2b:82:cc:78:af:06:48:3f:e9:51:ae:c9:44:fb:93:
2f:13:8a:96:c4:bd:e7:d0:d7:dc:8e:86:f7:a5:9c:
af:20:21:0c:b2:22:95:27:07:4d:17:29:e9:fa:74:
1f:de:60:ea:f5:05:f6:c3:20:fa:1d:ad:84:a4:f2:
c7:eb:a7:8b:ef:f1:03:12:ee:e4:5d:9b:2e:9d:93:
c4:b3:f3:32:38:cb:02:a3:d8:0a:7e:62:b7:a5:bd:
f0:ca:0b:40:e2:3e:d2:5e:ac:8d:70:a4:f7:46:d3:
31:e4:d8:b8:f9:cf:ea:73:17:3e:f9:92:1c:45:98:
2e:5a:2c:d7:be:12:66:a0:22:44:23:52:e3:01:29:
26:d7:4d:91:1d:c1:e2:ae:6e:98:ad:da:1f:6b:10:
8d:b4:48:b7:1a:fe:d6:07:98:5f:92:f6:e6:0f:84:
ec:f0:1a:4a:0e:93:f4:b1:45:06:18:a0:61:47:5a:
fe:0b:f7:17:45:0d:e8:32:e7:a8:ce:1c:29:8e:24:
6d:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:D0:18:C8:3A:B6:0A:47:90:33:76:11:70:71:58:9D:E1:5E:36:22
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2E6577C6502C11F19E8292E7CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.205.216.0/24
Signature Algorithm: sha256WithRSAEncryption
06:5a:60:7d:64:7b:13:9a:7c:ac:63:4d:f6:f7:3a:f3:b8:04:
49:02:09:f9:30:58:8d:b6:29:0c:56:32:2f:ee:ea:a7:0c:7f:
6a:f0:1a:7f:8d:1b:63:49:90:f9:84:2b:38:5a:c5:83:d4:97:
9d:71:4e:2b:07:e6:bf:7b:46:f5:8e:1d:ba:b6:07:fa:40:87:
91:de:a9:58:e2:c0:23:47:47:7c:2c:4c:40:03:9e:95:ad:fc:
dc:8d:9b:27:ca:9c:a3:55:14:3e:8e:c4:db:82:d0:9d:79:0d:
90:cf:27:8a:80:d1:f1:9b:27:bd:c6:b6:d0:45:90:97:f1:63:
a4:e7:e1:4f:5a:5f:c9:7a:dd:22:27:39:e7:65:9e:c7:fa:3a:
46:a3:45:b7:3b:a5:c0:a4:7c:c5:9d:b8:01:c0:d1:46:09:30:
cc:ef:80:b7:ab:70:3a:39:78:35:fd:1a:1b:51:e7:70:f9:42:
b9:c1:46:e4:88:39:73:40:c8:d3:3c:eb:84:ae:aa:8a:2f:f2:
88:6c:e6:b0:23:fc:6a:de:d8:bc:7f:7f:98:87:f8:2e:89:88:
7e:0b:a7:6a:74:a7:4c:3a:01:69:f0:70:19:73:4f:bf:e0:8e:
21:74:cc:7e:55:48:33:05:65:24:99:c2:3d:47:19:16:7e:c1:
80:8c:04:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:14:40 2026 by rpki-client