Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/67BE86264EE111F19F107000CF1D38B0.roa
File: 67BE86264EE111F19F107000CF1D38B0.roa (raw, json)
Hash identifier: OLgknVk1YOwt8f9iM/B4RiJoXqZyrUl+xn7emLJZmmw=
Subject key identifier: 47:48:9E:8C:C3:FD:80:6C:93:BA:AD:C5:8D:E7:CD:B0:83:BE:F6:44
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B44B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/67BE86264EE111F19F107000CF1D38B0.roa
Signing time: Wed 13 May 2026 15:35:44 +0000
ROA not before: Wed 13 May 2026 15:35:39 +0000
ROA not after: Wed 24 Jun 2026 15:35:39 +0000
asID: 9009
IP address blocks: 45.198.108.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111691 (0x1b44b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 13 15:35:39 2026 GMT
Not After : Jun 24 15:35:39 2026 GMT
Subject: CN=6a049a50-c489
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a8:a9:6d:23:41:68:b6:fe:cf:d1:71:07:ed:
a8:e7:7c:dc:42:18:fd:22:bf:4b:b4:bc:85:cf:3c:
32:bc:1c:6e:37:c8:33:91:f5:d6:06:0c:0f:64:44:
87:80:23:96:c8:83:d5:c1:0c:a6:7d:30:ea:4d:72:
92:56:fa:4e:56:1e:e8:69:0e:c1:21:9e:bc:b9:7e:
4d:a1:cf:b2:f9:45:64:01:ab:46:9b:f3:73:a4:51:
16:f7:c2:83:bd:ae:f0:e5:31:c0:62:7d:49:96:d3:
43:27:6e:29:af:b2:0a:0d:4b:42:35:f5:84:87:eb:
15:94:90:d0:cb:95:75:99:67:ee:30:30:c6:76:cc:
2b:26:2e:a8:00:8b:29:4b:34:90:aa:7e:ce:68:1c:
7c:70:a0:fb:ea:ca:70:f3:c5:60:79:dd:15:2e:70:
d4:6f:a3:21:0f:d3:56:8d:ce:f3:19:03:83:2c:70:
52:ae:ae:a0:6f:1d:e4:42:d5:f4:28:ca:ea:e5:de:
36:e8:08:5a:c9:b5:76:2d:64:bf:24:36:5c:c5:8f:
82:0b:dc:6a:7c:4f:ba:5b:ee:2c:1f:aa:54:13:6f:
22:ea:ae:f6:17:07:47:0d:ca:c1:93:32:e7:e5:36:
b0:d0:8f:20:80:34:6e:73:5a:7b:ae:6a:f3:8a:e3:
95:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:48:9E:8C:C3:FD:80:6C:93:BA:AD:C5:8D:E7:CD:B0:83:BE:F6:44
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/67BE86264EE111F19F107000CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.108.0/24
Signature Algorithm: sha256WithRSAEncryption
64:0b:b8:d5:91:e6:91:2a:5e:ea:b8:aa:26:44:6b:1f:81:ed:
f4:09:c4:51:d9:89:8d:fa:64:c9:fa:85:c1:8b:70:98:f9:a6:
67:3d:61:8d:63:ca:8a:19:72:93:31:17:c9:df:14:25:fe:1a:
af:b0:46:15:cb:d6:8e:72:88:0b:13:1d:73:f3:d2:1d:a5:02:
d6:c2:f6:2d:c2:4d:bb:45:38:ff:d2:b4:70:17:c2:1b:fa:55:
1e:74:6f:24:a3:0f:f5:32:53:ce:ba:05:46:0b:25:1b:4a:24:
8c:75:c8:80:8e:fa:f3:cb:4b:d0:3e:e7:9e:c0:b6:fd:63:d3:
cb:46:9f:3d:6d:10:e9:9c:48:0e:f9:e3:04:6b:12:80:00:1c:
91:c8:88:8c:02:76:50:e0:54:66:d7:ae:17:cb:1c:41:e3:12:
73:93:c6:b1:8f:1f:40:56:dc:27:fa:ea:f5:6e:5b:84:50:da:
5b:60:ee:f8:a3:81:47:60:19:6f:d7:7f:cb:18:e9:23:37:77:
2e:41:a8:e0:08:be:86:58:40:70:65:58:c9:05:dd:db:e1:e8:
01:81:86:6e:c5:03:2d:fa:0a:95:7f:1c:4c:89:8e:eb:57:b4:
9c:d9:96:d7:ae:4c:a4:ee:c8:6a:63:f9:f7:f4:5a:23:63:7a:
bc:8a:10:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:07:15 2026 by rpki-client