Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C65C0592547611F18AB45EF1CE1D38B0.roa
File: C65C0592547611F18AB45EF1CE1D38B0.roa (raw, json)
Hash identifier: pajeYvc7k7+fsmFhJXeUPn9gqTgznuYj7oQ9pl0VYoY=
Subject key identifier: 0F:55:FE:66:4A:24:57:54:4E:43:DD:4F:4D:FC:BD:90:CE:AC:35:3B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B678
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C65C0592547611F18AB45EF1CE1D38B0.roa
Signing time: Wed 20 May 2026 18:07:34 +0000
ROA not before: Wed 20 May 2026 18:07:28 +0000
ROA not after: Sat 20 Jun 2026 18:07:28 +0000
asID: 21244
IP address blocks: 45.195.150.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112248 (0x1b678)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 20 18:07:28 2026 GMT
Not After : Jun 20 18:07:28 2026 GMT
Subject: CN=6a0df866-711d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:f0:10:5f:bf:39:6a:8b:5c:26:d9:97:0e:34:
cb:0e:ea:49:2f:49:47:74:32:a3:ab:9f:8f:86:9a:
bb:7c:b9:ec:0e:d6:c3:aa:5a:ee:f6:1b:c3:77:16:
18:c8:f6:12:e3:d4:c0:e7:6b:bc:cd:81:37:93:29:
16:23:2a:30:79:9f:8a:b7:e9:a8:04:79:24:1a:d3:
7c:f9:5d:05:8b:ba:f8:88:9c:b1:a7:7f:fe:f1:58:
d7:40:71:b2:01:16:ac:9c:9a:97:11:21:c3:1e:ab:
7c:0b:f7:f5:2c:7d:4b:35:2e:c6:f1:8c:94:80:7f:
ee:22:e2:92:b4:3e:c5:a2:1d:87:75:f8:6c:4d:5d:
56:b5:6c:1a:42:18:ba:05:71:13:3b:6e:02:0d:a3:
24:1b:37:20:fe:d7:25:07:05:74:fb:95:0f:f6:17:
38:f6:37:2a:90:91:87:06:08:2b:8a:de:83:28:3f:
e1:1c:16:e6:95:a8:d7:90:d7:dc:47:8a:99:b6:2b:
e7:87:4a:6d:1d:f1:2d:a3:30:9d:49:2b:8d:d8:53:
32:3f:ec:e1:26:68:81:8d:1b:2d:cb:f9:33:b9:2b:
55:95:b4:29:b9:dc:f2:08:76:fd:95:d0:8a:58:18:
2a:63:c2:83:ba:c7:63:9f:4e:47:fa:17:0c:38:8e:
7c:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:55:FE:66:4A:24:57:54:4E:43:DD:4F:4D:FC:BD:90:CE:AC:35:3B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C65C0592547611F18AB45EF1CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.150.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:60:4f:b2:64:2c:68:98:6d:44:1c:0f:f2:21:08:23:0d:6a:
f1:14:b5:44:0b:cf:2c:f3:a8:db:e3:e9:c1:03:30:81:aa:05:
f9:a3:50:53:1d:1a:d3:39:c6:0c:1a:08:04:14:1d:55:6f:00:
27:22:b4:cc:9d:38:47:15:84:2e:bf:b6:7a:24:68:04:33:65:
12:e1:48:2b:0c:2a:0f:21:93:d9:13:80:4e:84:e0:81:c7:4c:
50:94:94:2f:12:ff:32:93:4f:66:81:1a:fc:96:67:e7:d4:ba:
0c:4f:40:10:19:d4:7b:61:20:29:c6:18:55:b9:1c:a8:17:a8:
c1:7f:d1:3e:5f:fa:b7:86:30:af:72:3c:9a:d2:9b:21:0b:ae:
25:b4:1c:fc:d8:b7:cc:56:5e:69:54:71:c5:0e:83:59:92:c0:
ab:25:15:d9:26:44:52:bf:83:3c:25:e8:2c:50:98:22:5c:b6:
6f:23:14:9f:22:d4:2d:8f:da:6f:84:9c:14:72:c2:42:37:f0:
e5:b4:1d:83:0e:ec:2f:4e:ef:60:d9:da:48:79:92:c0:3e:d0:
56:20:77:1e:a3:00:2f:cc:22:a2:b0:97:21:ed:d4:52:00:64:
3e:6c:6a:57:f3:4c:19:18:fc:2c:a8:b7:3e:6a:66:e2:13:12:
5f:1a:93:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:07:03 2026 by rpki-client