Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6E67C36657AB11F1AC766800CF1D38B0.roa
File: 6E67C36657AB11F1AC766800CF1D38B0.roa (raw, json)
Hash identifier: Bq3iDntSmCCWhcLfOFHI9Vcy1m3M9+XWufneqXrn3Vg=
Subject key identifier: 3A:68:90:7F:37:C5:16:D8:32:F7:AC:2B:FF:AA:AE:37:D4:94:75:51
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B934
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6E67C36657AB11F1AC766800CF1D38B0.roa
Signing time: Sun 24 May 2026 20:02:03 +0000
ROA not before: Sun 24 May 2026 20:01:56 +0000
ROA not after: Tue 30 Jun 2026 20:01:56 +0000
asID: 401783
IP address blocks: 45.197.24.0/24 maxlen: 24
45.198.16.0/24 maxlen: 24
45.198.17.0/24 maxlen: 24
45.198.18.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112948 (0x1b934)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 24 20:01:56 2026 GMT
Not After : Jun 30 20:01:56 2026 GMT
Subject: CN=6a13593b-5b98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:56:6f:74:4e:a3:33:ca:8b:b5:60:d0:00:f4:
b6:1c:00:6a:f4:11:34:f9:1a:b2:02:36:b4:05:2f:
a0:da:17:a1:a1:57:73:8d:c1:e9:1b:da:e1:e5:ae:
d8:af:4c:ee:7f:3f:85:01:b9:83:74:22:80:49:58:
20:37:95:c6:59:24:0c:ac:56:5f:3e:f2:92:0d:6b:
61:47:f9:c1:e4:57:f3:96:31:6c:aa:25:6b:88:22:
6e:5c:08:f6:14:79:ef:e6:8d:5a:6b:b3:6d:5e:8b:
cd:44:2f:f8:c7:2b:dd:df:45:85:45:75:32:21:8e:
0f:4b:6b:52:4b:dc:44:a7:da:56:1e:d7:bb:23:3b:
47:67:79:f9:2d:54:99:46:4d:19:cf:90:ba:13:bd:
07:07:9b:66:ac:2f:68:f2:de:54:ed:d3:3c:ea:70:
c0:a9:f3:95:0c:85:4e:0e:5e:d0:e3:23:c1:3a:e6:
aa:1e:67:92:05:7d:31:b3:30:2a:9b:97:bd:8c:7e:
8a:f7:c1:75:b1:9a:03:06:54:41:1a:a6:5e:f0:2d:
ce:22:ea:d5:86:e9:13:c0:96:e9:44:94:8e:62:bd:
12:67:65:e1:89:14:c8:84:36:10:a7:78:80:be:30:
1d:81:08:12:9d:b4:3d:c8:42:ca:f8:20:4f:b1:33:
c6:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:68:90:7F:37:C5:16:D8:32:F7:AC:2B:FF:AA:AE:37:D4:94:75:51
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6E67C36657AB11F1AC766800CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.24.0/24
45.198.16.0-45.198.18.255
Signature Algorithm: sha256WithRSAEncryption
b7:db:10:7d:c8:ac:21:47:5a:93:af:80:0b:34:0f:b8:fc:45:
41:26:9f:14:b7:a3:f9:72:cf:be:4b:13:78:3d:82:8e:04:1d:
70:3c:ed:e6:63:a8:38:2b:3f:a4:e3:37:ab:35:83:3a:ea:99:
cc:c7:13:98:6d:64:8d:ea:0e:74:1e:57:1e:f8:a7:5e:88:88:
8f:20:cd:70:b9:c9:f7:e6:05:af:b0:2b:f9:62:80:52:d2:e3:
b1:41:d6:25:fb:bc:ba:d3:70:0d:46:93:10:14:aa:47:76:55:
29:88:fe:6f:a2:00:38:ea:34:23:72:d7:f3:22:9c:17:5b:0b:
79:05:3d:de:e4:55:d8:e8:a6:0c:98:4e:5f:3d:f7:45:53:90:
d0:84:33:32:48:b8:4a:a2:de:b9:98:65:e0:90:70:d2:bb:c5:
19:f6:0f:a7:6b:b2:0b:af:16:6d:f8:ff:6e:7c:ed:e0:c0:73:
76:7c:5a:68:cc:17:d9:5f:44:0a:c6:85:d6:8b:88:a9:4c:e9:
d9:8e:16:17:53:8c:06:aa:25:75:d0:58:0d:b1:ce:e5:e0:89:
f1:10:57:23:c3:7e:b4:c7:6e:2a:4f:97:e0:c0:c0:a2:8f:ca:
03:66:13:4b:9a:a3:65:06:37:6d:ff:95:55:dd:c3:34:a4:ed:
28:6e:c6:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:07:10 2026 by rpki-client