Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9875FB465E9511F1AC19F20DCF1D38B0.roa
File: 9875FB465E9511F1AC19F20DCF1D38B0.roa (raw, json)
Hash identifier: 1adpZ2ld6Pc5QRxZcJsV7yo/AfaP3usMm5HU4g4qWCo=
Subject key identifier: 6B:32:19:63:68:CE:5D:7E:9C:37:9C:1A:B1:3B:04:FD:8A:58:46:39
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01BB42
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9875FB465E9511F1AC19F20DCF1D38B0.roa
Signing time: Tue 02 Jun 2026 15:13:23 +0000
ROA not before: Tue 02 Jun 2026 15:13:18 +0000
ROA not after: Thu 09 Jul 2026 15:13:18 +0000
asID: 151407
IP address blocks: 45.207.152.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113474 (0x1bb42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 2 15:13:18 2026 GMT
Not After : Jul 9 15:13:18 2026 GMT
Subject: CN=6a1ef313-384e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:95:55:b8:44:61:f9:e8:9e:2d:c5:8a:9e:3d:
b3:df:90:9c:85:d8:38:e1:18:6c:81:49:8a:0c:8b:
9f:1f:9b:63:75:d6:0e:3d:e2:7f:33:87:91:c1:f9:
65:eb:b0:f2:f7:c2:a8:3b:2d:f8:44:77:17:2e:65:
2b:84:6d:59:52:89:cd:58:a6:41:a1:c2:57:6b:68:
e6:8b:f6:0c:db:f7:4b:bf:72:88:c7:61:15:3b:08:
71:bd:4b:11:0d:6a:cb:4b:24:df:e7:e8:9d:f3:bc:
db:f5:a5:3a:ea:b0:f0:48:f6:7a:6e:52:a1:8b:7c:
cb:06:16:41:08:45:4f:2c:ea:76:3b:97:1a:73:9d:
90:0d:42:f5:79:24:c9:23:c6:c1:63:fa:b7:ac:a6:
96:c9:43:15:4c:c3:cd:5a:81:d5:00:5f:2e:51:3d:
75:3a:6c:a4:38:c1:08:ec:69:60:4a:5b:3b:8a:f7:
22:4c:e8:73:55:41:be:d7:f0:21:9c:db:56:b2:bc:
bc:29:f2:e2:0a:ef:a5:10:c8:37:bf:f0:55:a2:74:
41:46:a7:bb:53:66:a0:99:9b:7c:e5:27:56:ff:86:
c1:b2:d5:91:3c:d9:01:fd:06:d6:cf:60:22:43:35:
75:49:6e:11:33:e1:00:a2:6e:43:24:d6:07:49:47:
ce:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:32:19:63:68:CE:5D:7E:9C:37:9C:1A:B1:3B:04:FD:8A:58:46:39
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9875FB465E9511F1AC19F20DCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.152.0/23
Signature Algorithm: sha256WithRSAEncryption
59:7a:ed:37:f3:bd:9e:11:c4:a9:ab:38:ba:47:50:0f:96:f6:
7e:75:08:1b:96:00:1a:84:c1:62:ab:c5:cb:96:7c:52:2b:c9:
c1:34:1b:de:e8:e6:9f:52:db:55:e6:24:28:14:bb:c4:af:d7:
ba:bb:04:6c:38:99:19:46:e9:04:c1:be:98:0b:19:c4:4e:3d:
8e:6c:b9:c1:66:06:b7:a6:6a:c5:e2:29:13:87:0a:41:a7:53:
c6:03:f2:8c:ae:40:56:65:26:76:27:06:7a:94:6f:2d:a6:0f:
63:ff:07:48:ab:f8:b3:b0:58:2f:d3:9e:38:a0:f6:1e:1d:90:
84:63:c5:52:13:13:f9:c3:50:5a:12:2b:4e:e8:74:36:13:e5:
3b:bb:06:2f:95:05:e3:93:5b:07:b8:35:c6:62:b2:80:9f:fc:
6a:7d:62:88:26:f6:d3:e2:b0:1b:13:a1:07:62:9b:a5:50:27:
39:09:28:33:ed:bf:e6:55:5e:82:db:8f:25:1f:73:81:a0:39:
2a:4a:f1:d5:f9:d1:b9:57:fb:f1:86:27:48:00:0b:ab:51:cd:
a1:f7:22:b5:d0:6a:5d:a1:15:17:53:dd:7e:a6:ea:d6:9d:51:
99:4a:3e:8b:16:85:80:c5:df:ad:88:c3:d9:70:a3:1e:ea:60:
02:61:c4:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:28:57 2026 by rpki-client