Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BB3F4B5860C211F182760BD0CE1D38B0.roa
File: BB3F4B5860C211F182760BD0CE1D38B0.roa (raw, json)
Hash identifier: X+3QEZLwujB6NBUGlaVhEbvGhvsFXFX7OmVtB7+HzrI=
Subject key identifier: 3F:56:2B:F1:B1:8A:BC:EE:36:3D:6E:98:7C:4D:CF:B3:A2:34:CA:B5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01BC03
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BB3F4B5860C211F182760BD0CE1D38B0.roa
Signing time: Fri 05 Jun 2026 09:41:31 +0000
ROA not before: Fri 05 Jun 2026 09:41:26 +0000
ROA not after: Mon 03 Aug 2026 09:41:26 +0000
asID: 7607
IP address blocks: 45.194.16.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 14 Jun 2026 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113667 (0x1bc03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 5 09:41:26 2026 GMT
Not After : Aug 3 09:41:26 2026 GMT
Subject: CN=6a2299cb-eae0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:6a:a9:e9:73:84:6d:78:cd:10:0b:61:9f:f4:
57:de:f5:91:8a:45:4e:bf:74:25:e6:ce:57:9a:b1:
a2:58:24:51:68:8a:cb:c2:6e:18:95:e9:71:b7:63:
4d:0d:17:2e:b6:34:58:eb:24:01:c6:35:da:78:f8:
5f:15:bc:7b:6a:81:30:07:16:21:3b:80:2a:8b:60:
7e:f2:29:c9:59:2c:3a:06:54:ee:db:2b:8d:6f:be:
d2:c2:8e:a8:cf:5d:19:fb:1c:9a:b2:49:11:36:01:
1f:cc:cc:90:f0:2d:79:f5:a1:e5:2c:7f:ef:7e:a2:
6c:3c:ce:04:8b:08:a7:73:04:7b:2b:83:98:53:4a:
e0:ef:e4:22:f8:cd:e1:24:e8:10:a5:cb:08:31:df:
dd:d8:7b:bb:e7:30:54:3f:3b:d5:ea:ae:de:0f:e5:
ce:a3:4e:56:47:8d:d6:a5:a2:00:3c:06:ca:59:be:
4d:3a:8e:e5:f6:2d:ce:ee:7f:61:bd:b7:91:4e:d7:
a8:ee:12:b7:90:be:cb:f0:b4:d3:30:93:4d:c0:39:
4f:c8:01:60:24:1e:b0:41:41:d4:8c:9f:1b:4b:aa:
a0:48:87:da:42:58:56:87:04:eb:b0:b3:03:a0:ad:
61:8d:80:77:7a:8f:05:6f:0c:35:89:12:13:61:ba:
67:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:56:2B:F1:B1:8A:BC:EE:36:3D:6E:98:7C:4D:CF:B3:A2:34:CA:B5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BB3F4B5860C211F182760BD0CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.16.0/21
Signature Algorithm: sha256WithRSAEncryption
55:07:b7:10:9f:f9:25:68:75:ca:bf:00:21:8e:de:90:44:5f:
2b:bb:0d:f6:c0:52:93:9a:61:fd:c9:60:e1:ff:91:c3:9e:f6:
dc:d4:b4:dc:fc:02:f7:6d:5d:44:ab:77:b8:46:d5:a1:2a:24:
19:77:03:a7:85:19:8c:32:c5:4d:56:98:ac:5f:3e:e6:6c:8f:
54:10:cf:d8:5f:21:42:06:c9:7d:bf:b3:64:d6:e7:38:82:8c:
da:5e:d8:12:1b:d4:ef:6c:46:69:86:10:9e:0a:1b:5e:0b:f4:
0b:3b:9c:70:b5:71:4e:0a:ee:24:15:db:02:c9:df:63:15:bb:
f2:3c:e2:9e:b4:dc:f8:c3:7e:bf:12:fd:ba:1f:b8:93:b4:31:
9b:d4:90:2b:e1:26:b5:b0:4f:3e:5b:07:88:8b:41:b4:70:a7:
4c:9e:c1:a8:5a:a3:24:aa:26:a7:ca:4a:2e:bd:1e:89:a3:4d:
70:fe:55:5e:e5:c4:39:9b:c0:93:cb:a3:09:5e:4f:8c:cc:3a:
9d:4e:f8:97:94:10:3b:46:9d:71:b1:62:34:32:5e:dd:d9:ab:
3f:ba:1f:34:54:7f:48:b1:c1:57:f5:84:22:d2:d4:3f:14:00:
82:49:d4:bc:ba:b7:92:3b:eb:e1:56:7a:f9:3f:91:35:d5:17:
0d:90:35:59
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAbwDMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwNjA1MDk0MTI2WhcNMjYwODAzMDk0MTI2WjAYMRYw
FAYDVQQDEw02YTIyOTljYi1lYWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAnWqp6XOEbXjNEAthn/RX3vWRikVOv3Ql5s5XmrGiWCRRaIrLwm4Ylelx
t2NNDRcutjRY6yQBxjXaePhfFbx7aoEwBxYhO4Aqi2B+8inJWSw6BlTu2yuNb77S
wo6oz10Z+xyaskkRNgEfzMyQ8C159aHlLH/vfqJsPM4EiwincwR7K4OYU0rg7+Qi
+M3hJOgQpcsIMd/d2Hu75zBUPzvV6q7eD+XOo05WR43WpaIAPAbKWb5NOo7l9i3O
7n9hvbeRTteo7hK3kL7L8LTTMJNNwDlPyAFgJB6wQUHUjJ8bS6qgSIfaQlhWhwTr
sLMDoK1hjYB3eo8Fbww1iRITYbpn3QIDAQABo4ICojCCAp4wHQYDVR0OBBYEFD9W
K/GxirzuNj1umHxNz7OiNMq1MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9CQjNGNEI1ODYwQzIxMUYxODI3NjBCRDBDRTFEMzhCMC5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDLcIQMA0GCSqGSIb3DQEBCwUA
A4IBAQBVB7cQn/klaHXKvwAhjt6QRF8ruw32wFKTmmH9yWDh/5HDnvbc1LTc/AL3
bV1Eq3e4RtWhKiQZdwOnhRmMMsVNVpisXz7mbI9UEM/YXyFCBsl9v7Nk1uc4goza
XtgSG9TvbEZphhCeChteC/QLO5xwtXFOCu4kFdsCyd9jFbvyPOKetNz4w36/Ev26
H7iTtDGb1JAr4Sa1sE8+WweIi0G0cKdMnsGoWqMkqianykouvR6Jo01w/lVe5cQ5
m8CTy6MJXk+MzDqdTviXlBA7Rp1xsWI0Ml7d2as/uh80VH9IscFX9YQi0tQ/FACC
SdS8ureSO+vhVnr5P5E11RcNkDVZ
-----END CERTIFICATE-----
Generated at Sat Jun 13 01:17:27 2026 by rpki-client