Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/17A2B9A063D611F189EE9D06CF1D38B0.roa
File: 17A2B9A063D611F189EE9D06CF1D38B0.roa (raw, json)
Hash identifier: mh0/jyjy743CHdr64qoVg7RBi+xdLU21HxzVu/H9lD0=
Subject key identifier: 1A:0D:4E:7C:7F:56:56:78:63:D5:CF:F5:E8:C6:CB:8C:E3:92:90:A4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01BC7B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/17A2B9A063D611F189EE9D06CF1D38B0.roa
Signing time: Tue 09 Jun 2026 07:37:40 +0000
ROA not before: Tue 09 Jun 2026 07:37:35 +0000
ROA not after: Tue 28 Jul 2026 07:37:35 +0000
asID: 212238
IP address blocks: 45.196.177.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113787 (0x1bc7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 9 07:37:35 2026 GMT
Not After : Jul 28 07:37:35 2026 GMT
Subject: CN=6a27c2c4-c495
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:71:65:6b:55:b4:ae:fc:cb:ed:21:eb:7f:46:
6d:ff:b1:dc:cf:02:6e:50:03:d7:0c:25:50:1c:5e:
57:70:10:28:77:5a:7d:df:6c:34:19:36:1d:d5:c9:
a3:6f:e1:27:e1:a3:cc:ca:4a:7b:71:3c:37:2f:6d:
a1:07:72:46:c1:77:bd:08:af:1a:64:0c:f2:f3:1b:
03:3c:ae:84:ac:c9:c3:c4:47:39:22:55:15:b7:28:
7c:ca:4a:ed:df:5b:43:ee:8c:e8:89:7b:f4:f5:2d:
17:10:08:69:f0:e7:21:d5:82:0d:e0:a4:b8:10:39:
ce:0b:a9:c5:a6:31:0b:27:bd:27:b9:38:7c:42:98:
89:da:af:aa:9c:35:9e:4b:ef:1f:13:48:be:7b:d0:
19:4b:14:29:14:d7:0c:cb:71:e3:52:ff:73:f9:cd:
dc:64:83:02:c3:88:4d:0a:7f:ed:fa:78:0c:2c:8a:
f8:d7:3e:1b:1a:a2:22:c3:9e:8d:0d:63:a3:2f:a7:
6a:06:a6:f7:dc:d6:ed:37:55:d3:3b:8a:dd:ef:9c:
87:9d:32:b2:fa:d3:f6:1b:ed:f0:a2:82:c7:c2:6d:
f6:9a:df:df:b2:12:9a:9c:f4:dc:c0:d6:bc:af:e5:
b6:8c:28:72:2b:d1:0c:1a:40:a4:ea:2f:9a:f0:7f:
8b:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:0D:4E:7C:7F:56:56:78:63:D5:CF:F5:E8:C6:CB:8C:E3:92:90:A4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/17A2B9A063D611F189EE9D06CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.177.0/24
Signature Algorithm: sha256WithRSAEncryption
55:26:33:dd:26:19:88:48:1c:7e:ca:6e:90:3c:ee:df:80:78:
1c:cd:03:a6:96:e3:f4:b0:13:b2:40:64:5c:be:c9:83:db:69:
0f:cf:8c:a8:f4:76:aa:a2:07:92:e8:51:20:a6:24:07:12:6b:
48:66:da:33:a0:dc:28:b7:af:ce:6c:03:d1:32:d4:7c:8a:9a:
7c:fa:17:f8:39:14:e8:6a:9d:73:b0:ad:f5:34:13:f0:a6:12:
22:e2:e2:2e:06:3c:98:43:c0:bb:fa:d5:e1:d7:ca:a7:f7:15:
68:44:59:7d:8b:61:eb:8b:ba:a0:e5:bb:6a:2f:c0:52:30:4e:
29:05:d8:88:7e:97:ae:c5:79:3c:1f:14:c1:79:9f:36:58:05:
b4:5f:ec:5e:89:6d:a4:03:c4:f4:a1:2d:36:6a:52:5e:64:ca:
0b:d4:40:cc:ab:3d:63:f1:d7:fc:13:ba:cf:c9:50:77:1c:62:
b4:4c:51:d4:ee:33:5a:a2:76:e5:67:d0:26:e5:70:16:1f:fc:
ad:1b:87:3d:c1:87:1d:88:d3:6c:f6:dc:25:1b:d1:b7:7d:b0:
65:b1:88:de:ea:42:d4:9f:01:f1:da:1c:a4:a1:d7:b5:4f:05:
1c:3a:26:72:a4:de:ea:fd:a8:eb:66:a4:94:83:ed:a4:5e:de:
d5:89:d1:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 05:54:37 2026 by rpki-client