Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C049B08258FE11F1A21F221BCF1D38B0.roa
File: C049B08258FE11F1A21F221BCF1D38B0.roa (raw, json)
Hash identifier: ikRmsFs6p25kmZr+lNBGup+Re8sjlzqQSSswL4CC1f0=
Subject key identifier: 15:B7:62:70:C2:03:30:8C:85:C0:5A:8B:E9:6F:76:86:E2:D4:1B:9B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B9FE
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C049B08258FE11F1A21F221BCF1D38B0.roa
Signing time: Tue 26 May 2026 12:31:00 +0000
ROA not before: Tue 26 May 2026 12:30:55 +0000
ROA not after: Sun 05 Jul 2026 12:30:55 +0000
asID: 202662
IP address blocks: 45.207.40.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113150 (0x1b9fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 26 12:30:55 2026 GMT
Not After : Jul 5 12:30:55 2026 GMT
Subject: CN=6a159284-23e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:30:ea:ae:3c:8b:fa:98:8d:ea:33:20:1a:70:
a5:59:51:a4:7c:bb:04:a6:11:fc:41:89:6d:1c:75:
1a:9f:4c:bc:fd:d1:c1:ad:56:27:ba:2e:ce:7f:36:
0c:be:3b:8b:83:81:12:f0:ed:de:eb:23:ca:53:5b:
0d:ec:53:52:54:e6:ae:b4:0e:61:59:19:21:f9:f1:
43:7d:2f:c1:e3:64:9d:84:a3:eb:9d:d3:0f:35:d1:
db:db:bd:cf:2f:50:2b:f5:64:15:ec:96:54:2c:bd:
9d:86:f0:a4:ab:3f:8b:0d:dc:d3:b4:08:39:32:23:
eb:d9:c7:85:46:ba:7e:0d:1e:0a:74:46:1a:89:57:
17:45:75:f4:f8:fe:36:2f:b4:be:cf:ed:7b:b0:82:
33:50:8a:0f:6a:11:3d:fe:db:08:87:90:91:d0:f0:
2b:ad:32:0a:c2:bf:24:f8:3f:f8:9f:25:5c:39:70:
1d:a7:47:df:09:b5:92:fc:3b:0c:f2:43:dd:52:90:
96:37:d1:81:a7:85:9d:1c:81:4f:82:ec:82:a5:a4:
59:96:4f:cc:6f:b0:a5:e0:a3:c4:56:43:87:5c:77:
86:50:a5:00:d5:31:7e:53:d7:9f:30:26:b0:44:fa:
c2:d0:6e:77:16:fa:bd:6c:34:4a:2e:67:8e:50:e6:
04:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:B7:62:70:C2:03:30:8C:85:C0:5A:8B:E9:6F:76:86:E2:D4:1B:9B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C049B08258FE11F1A21F221BCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.40.0/24
Signature Algorithm: sha256WithRSAEncryption
83:30:60:41:b7:17:5f:6d:d9:9c:92:12:56:8d:e4:98:1d:2a:
49:09:ae:77:4f:53:72:d6:41:7d:04:01:58:90:b4:f8:34:27:
88:4e:5a:59:e8:83:3a:42:ed:b3:c7:7a:32:ce:8c:52:09:64:
a8:bc:34:b6:ec:93:93:48:8b:d9:13:67:af:63:ff:bc:6c:19:
d1:27:64:bd:11:4d:ed:13:d9:c8:ad:f6:14:e3:9a:0e:c5:16:
f1:d0:08:74:d4:2b:51:c9:bf:78:7f:4f:59:83:c7:2b:d9:8f:
6a:fd:13:2f:62:c0:9c:85:a1:c6:0b:03:6b:9c:51:82:52:6b:
53:8e:54:7b:01:67:01:c6:47:1b:ec:58:4e:5b:96:3b:d5:92:
4f:64:85:61:5e:06:9c:a2:89:b3:ba:01:bd:f0:02:23:5d:28:
c5:5f:51:bc:6a:e4:ff:d9:63:81:e3:70:6f:94:1b:d2:fc:8a:
33:82:04:96:18:fa:12:82:bb:8f:db:f9:ae:65:f6:1e:36:89:
56:b9:61:be:ed:fb:36:52:8f:e0:24:57:ca:25:16:48:60:9a:
e1:4b:fb:07:8c:63:43:c8:35:73:fd:24:51:fa:13:e3:e3:d2:
2c:1e:28:ca:9f:22:86:38:32:c8:55:e8:d1:3d:68:86:7e:31:
9d:1d:91:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:29:01 2026 by rpki-client