Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6CBAE9C4376911F18F1034D4CE1D38B0.roa
File: 6CBAE9C4376911F18F1034D4CE1D38B0.roa (raw, json)
Hash identifier: 3RxOBvKacYNPfGHtgX8GsGNFlAV4NVMmRdoIpvcRkhI=
Subject key identifier: 5B:00:4F:E8:3E:79:F2:5C:EB:16:90:E1:F6:1F:97:BA:DC:6C:85:F7
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AC72
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6CBAE9C4376911F18F1034D4CE1D38B0.roa
Signing time: Mon 13 Apr 2026 18:48:57 +0000
ROA not before: Mon 13 Apr 2026 18:48:51 +0000
ROA not after: Wed 13 May 2026 18:48:51 +0000
asID: 273980
IP address blocks: 45.192.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 Apr 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109682 (0x1ac72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 13 18:48:51 2026 GMT
Not After : May 13 18:48:51 2026 GMT
Subject: CN=69dd3a99-8a26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:6c:81:82:c8:cd:70:36:e0:7c:d0:4d:0a:62:
97:ff:36:0b:40:91:27:a4:fe:03:6c:1d:56:41:06:
f3:d8:fc:fa:11:4f:cf:f8:90:f9:41:41:32:e5:88:
b4:7f:98:27:46:f4:d6:42:dc:31:bc:e7:29:f4:cd:
09:58:8f:40:f3:4e:a8:8e:f6:d5:fe:ac:ae:70:67:
5d:f9:af:8f:d1:70:6c:08:aa:85:9a:75:b2:1b:76:
4c:58:ca:cd:75:62:f6:c8:8a:85:ff:da:42:25:25:
a7:ae:8c:6e:bb:14:74:71:0f:dd:03:9a:f7:da:70:
98:0f:ab:16:78:69:7c:ef:79:b5:5c:51:05:1b:eb:
54:40:dc:38:bd:54:4e:9f:51:81:e3:8f:6c:f2:59:
ce:b5:73:08:af:3d:66:0e:ac:97:39:a0:f5:90:33:
71:b7:04:97:5a:8b:30:7a:48:0e:78:cd:03:88:e0:
6c:dc:fd:3e:3c:fa:a5:85:22:b3:64:24:2e:31:74:
21:f2:ed:92:75:1f:31:9e:d5:27:3d:e2:6a:da:77:
6b:19:2f:97:bd:32:1e:56:ae:6d:36:0d:e3:61:83:
d6:1f:c5:0b:2a:f5:47:53:9e:73:20:72:cd:f8:84:
d3:37:34:c9:5c:20:60:f6:0e:9e:24:d0:55:26:3c:
42:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:00:4F:E8:3E:79:F2:5C:EB:16:90:E1:F6:1F:97:BA:DC:6C:85:F7
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6CBAE9C4376911F18F1034D4CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.3.0/24
Signature Algorithm: sha256WithRSAEncryption
74:ac:aa:76:7d:03:3a:eb:52:bd:ea:ee:28:7e:5d:36:30:d2:
26:56:2d:11:d9:34:58:de:a3:55:7d:68:23:34:1e:00:4f:a3:
b6:9b:94:d8:e6:5d:59:f0:38:b2:e8:e9:4d:d7:fe:ba:c6:0b:
21:46:9e:b8:4c:e4:59:4a:83:3c:3e:d0:8c:62:5e:4a:74:46:
57:16:fa:09:8e:ee:f9:71:86:80:32:74:c0:83:7d:d7:f4:6d:
9a:08:8e:12:b6:7a:a6:a6:50:e4:07:15:0f:2b:87:8e:af:b7:
a5:90:c8:6d:97:b2:5e:c8:bb:34:84:25:9a:cf:b5:3c:8b:94:
0b:5f:b1:e4:2a:75:92:fb:9f:d4:bf:ce:b0:ce:5d:5c:04:c7:
6d:a7:36:4e:da:cc:6b:c1:2c:1f:fc:8b:8f:c8:3e:a3:f2:ee:
1a:f4:b0:4d:67:d7:75:98:b5:0f:e7:d8:94:7e:b0:7a:65:42:
4a:72:83:80:cc:fd:b8:3a:99:b0:b4:8f:a1:b2:76:ce:7c:24:
87:15:cd:3c:5d:20:35:9c:c4:e7:62:fe:37:58:4b:e5:96:f2:
56:f3:35:21:17:60:7b:37:1e:1a:78:8d:b9:f0:4f:2d:d3:89:
31:1a:fe:be:75:4a:a5:a3:18:fe:af:a0:4d:57:28:6f:30:3a:
9d:96:a5:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 14:29:33 2026 by rpki-client