Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CD1DA4D4550D11F1A138D717CF1D38B0.roa
File: CD1DA4D4550D11F1A138D717CF1D38B0.roa (raw, json)
Hash identifier: wOVDA13u7py3j0R23d0ykl85gPh/c0Ah/8tZjqxejWU=
Subject key identifier: E6:5B:77:AE:4A:D8:3D:4F:8C:C6:0B:37:E5:94:AC:B6:78:D7:45:AC
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B6F1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CD1DA4D4550D11F1A138D717CF1D38B0.roa
Signing time: Thu 21 May 2026 12:08:39 +0000
ROA not before: Thu 21 May 2026 12:08:35 +0000
ROA not after: Wed 19 Aug 2026 12:08:35 +0000
asID: 402169
IP address blocks: 45.195.112.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112369 (0x1b6f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 21 12:08:35 2026 GMT
Not After : Aug 19 12:08:35 2026 GMT
Subject: CN=6a0ef5c7-63ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:02:cd:44:d4:d3:1d:aa:fa:9d:d7:91:44:96:
42:b2:d4:06:ee:57:41:29:f2:15:bf:9a:e1:3c:dc:
7e:8f:58:8b:18:bf:3e:86:1f:d4:4d:73:a6:32:99:
8d:ad:3e:e4:f3:26:2f:46:01:5c:21:7c:cf:dd:2b:
70:ce:29:2e:96:04:4e:ab:ca:0e:61:fc:35:0b:72:
d3:fe:f3:e7:25:1e:59:3e:6e:a9:7c:eb:7d:bd:3a:
6d:64:f5:f8:4f:10:f4:c1:b8:50:a3:37:6e:0c:6b:
e8:50:07:a4:fb:22:6b:d6:89:ca:36:ca:92:d7:36:
a3:87:34:2e:b4:a3:d2:92:95:83:c7:a7:d4:5a:cd:
6c:0b:9b:09:4e:83:85:05:7a:af:66:b1:fe:63:dd:
c9:b1:40:62:08:96:75:49:66:4e:af:ca:e0:aa:55:
c6:42:9f:4f:05:47:19:24:5b:93:09:25:f3:8c:b7:
0d:5f:81:65:52:63:60:a8:76:f9:e1:28:c1:2c:aa:
84:11:90:8f:a0:60:8c:62:ef:e8:14:82:31:41:51:
e8:ef:9b:f3:90:37:9e:86:2f:25:3f:7c:da:d1:25:
91:ae:b3:fe:e3:cc:e5:0d:fe:93:aa:a0:2d:01:52:
8b:23:7d:36:50:b8:55:4b:6e:a4:ce:1a:d0:fe:d2:
69:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:5B:77:AE:4A:D8:3D:4F:8C:C6:0B:37:E5:94:AC:B6:78:D7:45:AC
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CD1DA4D4550D11F1A138D717CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.112.0/21
Signature Algorithm: sha256WithRSAEncryption
90:77:2e:fa:1f:74:71:a0:00:03:11:b7:47:2e:fd:dc:99:6a:
18:e9:a8:2f:f4:37:72:bd:52:03:49:6e:96:74:84:9d:9c:e2:
5a:a7:e6:23:dd:91:ac:42:8b:2d:07:0e:56:fd:90:69:92:27:
6c:e7:85:55:36:a9:8b:76:18:92:88:16:85:1e:55:66:37:6a:
f9:7e:45:c3:a9:f1:f8:dd:83:e9:b7:1f:9b:fb:76:ce:03:d6:
1f:10:ee:14:d8:50:bb:b1:7c:47:f4:7b:05:dc:65:1a:70:f8:
08:9e:ca:47:c9:ca:8e:a7:41:50:b0:af:52:23:7f:4d:a2:ff:
b0:ba:a5:b6:db:6c:e2:9d:80:5a:b6:66:ae:8b:2d:d1:f6:77:
fb:88:34:f5:b7:0b:a2:8b:a1:09:35:5d:ea:71:09:2c:b6:e8:
8f:e7:ec:a8:06:22:d4:21:ed:bd:a4:f9:d6:2f:b9:22:9a:d3:
7f:b3:b7:d3:92:6e:72:19:9e:7e:10:e2:a8:1d:04:41:18:0a:
a0:c5:56:a0:3d:f2:bc:09:a5:01:c6:19:a0:d6:75:6d:de:b9:
d7:b3:65:0f:ca:8f:f4:ec:12:4e:8c:e0:0d:0c:25:43:39:28:
4f:29:82:e2:92:f6:fc:ca:fd:7d:f4:ac:4f:cd:74:7c:e7:1e:
b7:43:c8:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:06:52 2026 by rpki-client