Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/14D8CE3060C511F1A066C7DFCE1D38B0.roa
File: 14D8CE3060C511F1A066C7DFCE1D38B0.roa (raw, json)
Hash identifier: xFC5qqmpTXcwdTXrAo+zuHSbPA/ArD0Apu5W/9aHR+s=
Subject key identifier: 35:45:68:12:2C:AF:6F:07:0A:A5:20:3E:15:BF:36:37:DD:60:51:42
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01BC09
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/14D8CE3060C511F1A066C7DFCE1D38B0.roa
Signing time: Fri 05 Jun 2026 09:58:20 +0000
ROA not before: Fri 05 Jun 2026 09:58:15 +0000
ROA not after: Sat 10 Jul 2027 09:58:15 +0000
asID: 38638
IP address blocks: 45.207.173.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113673 (0x1bc09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 5 09:58:15 2026 GMT
Not After : Jul 10 09:58:15 2027 GMT
Subject: CN=6a229dbc-d2f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:80:fb:de:33:e8:82:85:8c:37:99:59:d1:2f:
3a:11:d3:d2:e7:6f:6a:1c:9b:aa:b7:d5:8a:ed:ad:
e4:8a:b0:11:f9:b1:48:24:fc:dd:03:f5:85:e6:da:
36:f4:77:69:1d:b4:a6:d0:5f:e5:d5:16:71:86:f6:
06:d0:4c:a0:7e:e0:b2:f1:35:ea:be:e6:b6:74:5a:
c2:20:71:a1:30:d2:47:41:c1:ba:64:eb:81:c1:d2:
6c:bb:24:cd:04:39:bb:9b:f7:a4:52:13:ee:57:d7:
d1:41:14:d4:03:0f:45:0b:50:63:5f:83:a7:56:93:
d2:fe:86:f2:48:d6:d0:4f:d9:41:e6:fb:50:0a:c5:
b5:a7:3e:ed:9b:d0:8d:27:8f:d0:fb:b4:6b:2a:08:
86:2b:e8:11:cf:0e:bb:35:c6:b7:6c:d2:65:c5:80:
b2:f6:0f:89:20:4f:1a:7b:a2:82:91:3c:40:3f:4d:
d2:3b:f3:b1:bf:87:5c:28:08:b3:4c:56:f4:ca:46:
07:d1:88:43:67:06:3c:53:38:f8:d7:d7:06:1d:2d:
5f:e1:f5:f7:7d:75:51:03:37:74:cb:89:df:21:e6:
c5:79:fd:db:9f:08:7d:36:97:ee:e1:b6:00:b8:70:
d3:9a:41:0f:e2:f8:8a:da:c9:42:ed:ce:c3:80:df:
79:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:45:68:12:2C:AF:6F:07:0A:A5:20:3E:15:BF:36:37:DD:60:51:42
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/14D8CE3060C511F1A066C7DFCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.173.0/24
Signature Algorithm: sha256WithRSAEncryption
77:c0:66:b5:76:43:0f:ef:0b:16:32:3a:3c:ab:8e:63:08:21:
59:3c:ff:b2:52:21:c6:02:f4:a9:cf:93:67:76:49:de:a3:68:
2f:cd:7c:9b:dc:4f:a3:f7:ae:28:78:9d:c7:54:22:01:03:7e:
7f:1e:cd:ea:9e:26:99:90:0b:3d:0f:2f:c6:34:88:91:2c:22:
84:2e:9e:5c:9f:80:b7:9a:75:c2:8f:53:b2:00:6f:92:3c:b5:
46:7b:44:cf:03:b6:56:6a:53:91:ad:af:6a:98:f1:6f:26:15:
b1:bb:b4:88:32:51:28:a7:d3:d7:77:ac:be:31:c3:17:e6:c0:
6b:92:d3:cc:51:0e:82:75:d2:63:aa:a9:5e:6d:4e:1f:8b:b2:
57:6f:05:b8:d3:1f:3c:41:3f:c1:66:db:83:76:f7:67:75:5b:
f8:8f:ee:db:fc:7a:96:13:83:e8:24:c7:d2:c1:dc:bb:71:74:
16:44:8a:f6:a3:a5:f5:af:f5:32:01:6c:b0:80:c2:b7:80:43:
97:fb:51:73:f8:45:50:51:30:e6:36:f7:aa:6c:52:6c:4d:db:
c1:82:8d:31:02:49:d8:f3:00:ad:fe:63:5e:19:91:2f:8a:6c:
bb:d1:54:64:86:43:2c:b3:13:89:3f:3b:15:d5:f8:ca:b4:23:
92:94:e4:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:53:43 2026 by rpki-client