Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BED34B2663C811F1821D4FB7CE1D38B0.roa
File: BED34B2663C811F1821D4FB7CE1D38B0.roa (raw, json)
Hash identifier: e06OS2nxtwEEGp/2omLWQsN+Zzb33ZNHnsFA8Z0KezM=
Subject key identifier: 52:78:7C:D5:C9:1C:6A:55:5C:28:93:E2:13:5E:B3:3E:66:65:D0:E5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01BC69
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BED34B2663C811F1821D4FB7CE1D38B0.roa
Signing time: Tue 09 Jun 2026 06:02:07 +0000
ROA not before: Tue 09 Jun 2026 06:02:03 +0000
ROA not after: Wed 08 Jul 2026 06:02:03 +0000
asID: 147176
IP address blocks: 45.195.152.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 12 Jun 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113769 (0x1bc69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 9 06:02:03 2026 GMT
Not After : Jul 8 06:02:03 2026 GMT
Subject: CN=6a27ac5f-ecd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:25:58:ca:9a:02:6e:f6:e9:c5:fe:a9:09:c8:
f5:00:c4:ea:dd:fe:26:10:73:ff:cb:fd:e1:4c:9e:
c2:13:94:0d:74:aa:c2:1b:dc:b8:c0:d8:ec:27:8c:
84:c9:75:54:8f:ae:b7:5b:c6:00:58:da:c1:4e:34:
7e:ee:cd:79:de:60:ba:dc:fc:86:52:26:2f:60:56:
81:5e:37:fa:0e:61:b4:d1:68:cd:2a:5f:d9:65:6b:
e5:15:c0:97:08:73:2f:f8:4c:88:2b:20:52:3b:8c:
54:8b:ab:d8:01:09:bc:e5:86:18:4a:04:ce:ef:b1:
f8:14:75:5b:79:26:2e:bb:ab:05:3e:fa:2b:78:08:
fc:d8:62:22:55:39:52:cc:57:c4:10:eb:86:3e:53:
b5:ce:99:70:d7:90:ed:25:e8:e6:98:83:0a:63:03:
76:cd:97:f5:bd:7c:16:b9:0a:ef:2b:18:86:3a:0c:
ca:aa:72:ba:75:67:06:a0:2d:39:3b:b9:84:fe:81:
53:2f:d3:20:01:50:7e:ae:23:e5:75:30:da:ee:d6:
f9:6d:bf:88:7e:69:6e:69:ce:f8:96:dc:5e:0f:7b:
7e:cd:22:c3:9a:9d:86:08:3b:8a:43:4f:b1:c6:c8:
9a:d3:66:66:a6:63:7a:91:51:2e:d4:31:bc:d9:0c:
45:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:78:7C:D5:C9:1C:6A:55:5C:28:93:E2:13:5E:B3:3E:66:65:D0:E5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BED34B2663C811F1821D4FB7CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.152.0/24
Signature Algorithm: sha256WithRSAEncryption
46:f1:36:3d:bd:3d:bf:4a:ae:3c:13:3d:f6:9e:92:ff:f8:79:
70:b3:cc:58:47:46:ec:5e:bd:fe:c5:eb:69:eb:ed:e0:d4:97:
46:de:61:8a:0e:1e:10:27:ae:5b:f9:72:12:d2:bf:e2:96:3f:
0f:d4:e7:c5:2f:02:be:ae:f2:b7:4c:d5:37:f0:e3:e9:1d:b4:
06:3f:7f:58:b9:fc:2c:26:6c:9b:1b:e7:94:33:14:22:0b:6f:
d1:a6:dc:57:38:c6:aa:20:56:b6:10:69:86:64:83:16:e8:ab:
ee:05:5a:8f:bd:35:f4:95:ec:6e:94:84:2a:53:1e:b3:ac:a8:
66:23:19:5c:b1:0f:67:d2:e5:9f:b4:3f:34:49:45:4a:0c:d9:
bf:76:1e:64:1f:31:87:a8:ea:89:79:e3:e3:d2:e2:4c:fb:f2:
59:1a:44:0a:b4:4c:56:76:64:49:16:6a:5a:d8:2d:35:8c:26:
ba:08:2d:a2:75:2c:ad:35:c3:ad:f0:b4:60:75:12:9c:7e:4b:
b0:cb:6b:e6:56:b3:e3:ec:04:37:87:fd:c2:83:a3:1a:5f:82:
b0:a7:28:47:33:a2:bc:2f:13:35:66:c0:9c:36:62:a1:86:1d:
a9:d5:15:49:92:ec:26:b3:f4:0d:c2:c9:7e:d3:50:35:5c:c1:
87:5f:6e:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 10 04:58:02 2026 by rpki-client