Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/06F0D5FC397811F181924CEFCE1D38B0.roa
File: 06F0D5FC397811F181924CEFCE1D38B0.roa (raw, json)
Hash identifier: vtrKeLIXdqGzOnxr1+snGPAFcMrmTXidnpVyRKiNCZQ=
Subject key identifier: BB:83:F9:94:5E:7F:30:F0:2D:47:B3:5E:30:1E:7F:C4:81:0C:31:A3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AD0F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/06F0D5FC397811F181924CEFCE1D38B0.roa
Signing time: Thu 16 Apr 2026 09:38:30 +0000
ROA not before: Thu 16 Apr 2026 09:38:25 +0000
ROA not after: Thu 30 Apr 2026 09:38:25 +0000
asID: 401783
IP address blocks: 45.197.24.0/24 maxlen: 24
45.198.16.0/24 maxlen: 24
45.198.17.0/24 maxlen: 24
45.198.18.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 14:05:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109839 (0x1ad0f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 16 09:38:25 2026 GMT
Not After : Apr 30 09:38:25 2026 GMT
Subject: CN=69e0ae16-8cb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:b9:82:f4:25:ea:ab:91:43:e7:9e:19:c1:6f:
71:75:c3:7e:80:d6:15:b4:4f:e0:22:81:4e:fc:e2:
43:ef:82:d6:7a:00:a4:e9:a0:f6:33:2e:21:e9:58:
7a:b2:8b:cf:78:cf:10:94:f0:06:af:5a:73:99:65:
3f:f5:ca:c6:3e:eb:99:b6:93:d9:44:4d:7b:47:7c:
9b:ec:16:b7:13:8d:9c:8d:9d:b8:17:8e:07:3f:e7:
7c:12:fc:81:1d:bd:2e:16:9d:fa:4c:7b:43:fa:6a:
5b:ed:7f:f1:27:f6:99:a0:cd:16:f3:d7:e3:06:c5:
63:0b:d9:58:10:9f:c5:58:d4:c0:c7:4b:6f:4b:ad:
00:00:7e:8b:a0:40:26:22:21:a1:d8:b2:b7:ea:1c:
df:2a:c9:5c:57:be:42:bb:0e:b6:78:00:ba:af:0b:
4c:4a:60:a6:f6:0a:5c:a5:c9:45:cf:ad:f8:bb:46:
ef:50:bf:e1:36:36:03:8b:4f:b4:b6:81:04:75:12:
f2:bf:e1:db:3c:43:1d:5d:a5:30:9d:2a:03:25:38:
a3:f4:ce:e3:ae:d9:63:e0:49:bf:e9:17:b2:33:ae:
80:e0:2b:c2:26:db:8a:46:4e:6b:78:30:38:44:42:
16:d8:41:37:04:c8:89:96:30:3b:ee:7b:42:f7:71:
4b:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:83:F9:94:5E:7F:30:F0:2D:47:B3:5E:30:1E:7F:C4:81:0C:31:A3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/06F0D5FC397811F181924CEFCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.24.0/24
45.198.16.0-45.198.18.255
Signature Algorithm: sha256WithRSAEncryption
02:a6:39:a4:94:75:ce:25:e8:db:6b:5a:a6:7c:7d:bf:89:b1:
d1:4e:69:52:1b:11:e9:ec:99:b4:f0:42:c0:fb:a5:70:ea:bd:
e8:4a:63:c6:f9:a1:83:44:10:de:61:91:83:d2:05:a3:51:f3:
b3:02:a8:9b:c0:47:ab:26:de:de:35:52:93:5b:3d:fb:c9:2b:
01:21:d5:c9:92:57:db:43:b1:ec:98:d0:a7:e2:62:fa:f3:b8:
38:13:5a:e9:1b:ac:3f:39:fb:4b:80:d4:42:22:a1:40:ae:d0:
aa:94:a0:f9:2e:8e:0b:04:82:da:bb:47:13:b1:fb:e5:c2:d4:
22:6c:94:bb:a6:56:f2:fb:26:ff:1e:2b:69:4a:42:dc:c7:ff:
90:aa:5f:d3:df:42:23:9c:40:24:3f:af:b3:a0:d6:88:4d:97:
90:c2:c8:d0:8f:57:e1:aa:c6:2b:3a:7f:41:a7:4c:62:0c:90:
64:2a:05:07:81:e3:ac:1d:28:1d:5d:b4:06:b2:77:0f:01:36:
b6:4d:dc:1c:15:0c:9c:2e:6e:48:16:6d:10:bb:4f:34:05:e7:
1b:fc:fe:66:c6:2f:92:d7:2b:c2:c2:3f:09:78:e8:ff:e0:28:
c1:b4:82:3e:ae:93:7a:c1:4e:a4:7d:e6:19:d2:5f:a1:8f:72:
e5:10:36:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 20:23:56 2026 by rpki-client