Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/75BA46A6567B11F18F4746D7CE1D38B0.roa
File: 75BA46A6567B11F18F4746D7CE1D38B0.roa (raw, json)
Hash identifier: fWAx8L29TMNfGo1oZ7ClY6DdFpQWlx4fwqQ4siyK8oo=
Subject key identifier: 48:89:81:F6:D6:3A:B8:E7:74:8E:B7:D0:6C:E7:FA:94:94:1F:50:56
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B85A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/75BA46A6567B11F18F4746D7CE1D38B0.roa
Signing time: Sat 23 May 2026 07:46:08 +0000
ROA not before: Sat 23 May 2026 07:46:03 +0000
ROA not after: Sun 12 Jul 2026 07:46:03 +0000
asID: 9009
IP address blocks: 45.195.110.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112730 (0x1b85a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 23 07:46:03 2026 GMT
Not After : Jul 12 07:46:03 2026 GMT
Subject: CN=6a115b40-b105
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:01:40:fd:b7:a7:c4:cd:b0:30:2f:45:f8:83:
d6:4c:53:65:c8:8e:ec:8a:74:3e:74:67:44:69:77:
07:11:85:fd:1c:ef:e3:0d:f5:8e:97:af:0c:56:3f:
36:0e:e3:30:20:73:4c:cd:33:3f:c0:1b:21:c4:29:
e5:df:b7:c5:33:cb:5d:4a:2d:d2:de:13:9a:b7:1b:
00:eb:ba:f8:49:80:e2:8e:83:7d:fb:70:90:af:8f:
53:77:28:d1:28:a5:ac:81:b7:25:93:25:90:e8:00:
96:9b:d5:71:e6:d3:fb:45:53:37:5e:d3:c2:7f:bd:
27:be:82:58:73:60:5b:a5:44:0e:98:e5:7d:2e:28:
df:ab:1c:5a:2d:34:27:7c:e8:59:b7:08:b1:84:a6:
e6:4a:e2:f8:b2:0d:53:bc:67:7b:ed:bb:df:21:60:
66:a3:2f:c8:52:08:1b:74:72:fb:2f:35:4f:32:31:
d3:21:d3:57:54:09:57:f0:e3:49:56:d0:14:ef:aa:
ae:ad:24:15:8d:b1:2b:4a:4f:d8:d3:04:85:8f:d0:
e6:26:51:4e:1a:2f:2b:fb:02:5f:90:68:ce:39:d5:
9e:fc:3d:65:4f:d9:73:6a:60:72:16:8b:4c:47:02:
45:11:39:17:1a:bf:ab:d2:e6:90:5d:eb:17:fe:10:
81:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:89:81:F6:D6:3A:B8:E7:74:8E:B7:D0:6C:E7:FA:94:94:1F:50:56
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/75BA46A6567B11F18F4746D7CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.110.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:2f:a3:97:4d:9e:8f:ca:58:cc:40:4a:cf:43:5f:45:ff:bd:
ef:f7:89:f9:36:f8:73:0e:61:1d:5f:1e:69:ad:68:36:92:65:
29:a8:9f:f8:ce:a0:80:bd:ec:d3:ad:ed:42:04:50:c1:4f:9c:
c6:09:18:64:a8:46:fe:2c:1c:de:50:f2:9a:1f:79:04:7b:cd:
91:61:81:23:71:8b:b2:04:bf:44:9b:a1:56:e7:13:7f:b3:30:
0b:09:0a:c9:12:74:55:d8:26:e0:7b:15:6e:07:4f:ef:46:d5:
db:06:8e:11:87:6b:10:b4:16:b3:78:db:d1:ca:00:a8:e6:eb:
29:c6:ca:60:ec:e0:0a:20:96:38:95:50:bb:4a:ff:d9:98:24:
20:b6:d6:27:87:29:7c:ed:0b:e1:91:6b:3e:cb:60:9a:ba:51:
05:9d:38:66:51:5e:79:4b:05:65:c7:2f:bd:10:97:d7:05:c9:
67:6c:ec:f3:f9:41:d4:c3:5e:c6:69:fa:4a:17:90:07:4f:85:
f8:1f:1a:30:a2:20:9d:7a:b9:7f:9c:ed:c5:23:f9:e5:d5:bb:
bd:56:75:23:14:21:38:b2:0c:82:26:96:5e:55:65:12:7e:b7:
ef:e2:71:bd:20:69:93:b4:43:90:d4:32:e0:c9:5d:a9:93:a2:
12:57:83:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:07:15 2026 by rpki-client