Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7BA0294E57C211F1AC71D408CF1D38B0.roa
File: 7BA0294E57C211F1AC71D408CF1D38B0.roa (raw, json)
Hash identifier: A2Goese7pE/R6gDcsN27SnyKeFbKDFyIXs/J7g3/eUo=
Subject key identifier: DD:96:67:21:0B:10:4A:EC:76:BC:A7:81:21:45:C6:CE:A2:6A:F2:B7
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B942
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7BA0294E57C211F1AC71D408CF1D38B0.roa
Signing time: Sun 24 May 2026 22:47:04 +0000
ROA not before: Mon 25 May 2026 22:46:59 +0000
ROA not after: Mon 29 Jun 2026 22:46:59 +0000
asID: 36352
IP address blocks: 45.202.114.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112962 (0x1b942)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 25 22:46:59 2026 GMT
Not After : Jun 29 22:46:59 2026 GMT
Subject: CN=6a137fe8-8d5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:6a:a5:bf:d5:42:2b:61:97:ab:80:c4:97:61:
7c:1d:9f:be:df:a3:62:87:51:76:32:25:67:85:f8:
c6:74:5c:f7:6f:80:ab:ed:0a:5a:e5:8f:81:9a:ed:
bf:79:a4:10:9a:a7:c5:26:15:82:95:90:49:84:76:
fc:d3:1b:64:ea:11:52:62:9b:84:07:d9:58:54:dc:
ad:f5:2e:ec:50:dc:3a:41:14:73:4f:e4:64:80:a0:
6e:47:50:db:09:74:44:9c:9f:b3:f1:ba:05:be:83:
2c:84:54:66:a5:88:f3:be:6e:14:9f:31:b1:82:31:
99:35:47:10:ab:b5:a6:9e:14:9c:cf:27:4b:8e:bc:
66:85:f7:95:f2:f6:59:da:a3:ae:b9:e3:37:47:e0:
11:10:bc:36:dd:f7:95:dc:95:f4:d3:23:53:e1:42:
fb:8d:4b:0c:3b:03:4e:93:59:34:23:89:fd:31:dd:
4e:f6:bf:24:f8:e4:b7:4b:0e:bb:93:ca:4d:74:6c:
05:1b:ed:7e:98:35:a2:d0:35:1c:19:19:50:7b:5a:
b5:d4:64:f2:12:d8:a3:8e:6d:8a:53:b6:52:57:35:
bf:81:d6:a4:1c:44:c9:b7:42:28:e7:5c:c5:e5:b6:
84:9a:85:83:0d:bb:19:77:a8:e1:4e:fe:e8:1a:1d:
01:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:96:67:21:0B:10:4A:EC:76:BC:A7:81:21:45:C6:CE:A2:6A:F2:B7
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7BA0294E57C211F1AC71D408CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.114.0/24
Signature Algorithm: sha256WithRSAEncryption
80:85:ab:60:56:fa:de:7b:d0:51:d1:42:96:b6:b6:f1:64:a6:
1a:29:14:51:27:29:b3:1f:bf:88:6d:43:e5:72:34:ec:92:ff:
f3:f9:00:1e:48:d8:4c:17:3f:fe:72:75:ee:a2:61:bd:97:07:
12:c0:6d:66:a0:d7:fc:35:6a:66:a9:af:29:50:4b:0e:4d:ad:
29:a9:a2:6d:39:e7:30:2d:d4:22:a2:ce:f7:02:7f:ad:54:37:
d6:b1:0c:8f:ef:41:6e:2c:4a:47:f1:6c:91:21:5e:ce:df:b8:
a8:0e:f4:89:fb:86:1a:6e:9d:bd:94:15:42:a6:17:e8:eb:5c:
64:0a:ff:3f:85:8e:e4:b4:3a:3c:5e:00:40:1b:3c:82:03:9b:
2c:6c:22:19:e7:1e:c3:36:3c:cb:10:c5:6a:10:28:4e:b4:6a:
d6:dc:a6:6f:c8:80:45:7b:d7:91:4b:e5:7f:97:a0:2b:03:d5:
96:a5:68:74:fc:62:6d:aa:ea:e9:41:db:fc:41:d0:70:95:39:
5f:3c:a8:d1:53:c5:87:ef:30:db:78:47:3e:1e:80:44:3c:50:
53:ce:38:0d:6f:21:b7:0f:95:66:61:27:18:0b:df:df:4c:c1:
86:a4:4e:c1:2a:a9:63:e4:48:b8:27:d8:31:73:92:91:c2:93:
91:a5:23:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:13:56 2026 by rpki-client