Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1DD33530633A11F1955B7FCCCE1D38B0.roa
File: 1DD33530633A11F1955B7FCCCE1D38B0.roa (raw, json)
Hash identifier: ZijponCcy6a5Y/5yBzxReyYE0hejr61NtB14LSS/Sh4=
Subject key identifier: 89:BF:1B:C0:6F:94:E9:6F:67:6C:E4:BC:BA:5D:2D:85:F3:D4:7E:39
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01BC62
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1DD33530633A11F1955B7FCCCE1D38B0.roa
Signing time: Mon 08 Jun 2026 13:01:09 +0000
ROA not before: Mon 08 Jun 2026 13:01:04 +0000
ROA not after: Thu 08 Jul 2027 13:01:04 +0000
asID: 328608
IP address blocks: 45.207.61.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113762 (0x1bc62)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 8 13:01:04 2026 GMT
Not After : Jul 8 13:01:04 2027 GMT
Subject: CN=6a26bd15-743d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f9:c2:9a:74:f2:1e:98:70:9b:08:92:1f:bd:
6a:55:b2:a4:fe:c1:3d:91:90:79:e9:d6:4e:ff:6e:
e4:3a:17:24:2c:6c:ee:01:4f:98:c5:34:04:9a:99:
c1:60:a3:0e:56:a6:35:ed:04:93:dc:8b:74:80:bf:
5e:d1:78:db:c6:d4:18:ab:d6:00:74:13:47:67:34:
5e:2d:d8:bf:af:d3:6e:ea:5e:d5:9c:ab:15:3a:cc:
da:ca:c1:44:32:73:55:06:af:f1:a7:08:b5:ed:34:
d0:5a:d5:ea:0b:2f:82:98:82:a5:9a:06:5d:66:d5:
cd:7f:21:f0:d3:cc:7a:1c:c9:ab:42:25:b5:61:34:
15:b3:c4:22:67:eb:2d:e1:19:14:8d:91:a0:93:5b:
f5:95:ad:85:37:93:78:3b:4c:2c:c0:dc:dd:0c:af:
99:dc:1c:64:e3:7d:ad:d6:92:63:ed:4a:f4:0f:3d:
39:3e:8b:e3:9a:ba:e9:e3:f9:2b:60:22:de:ef:c8:
43:02:d1:0a:18:0d:94:de:f5:2a:c2:1d:f6:8c:46:
e6:7a:bb:e4:ee:ae:63:8a:66:c3:34:19:72:d9:39:
bd:e8:9d:f4:02:14:4b:c5:72:83:e7:13:06:fa:4a:
cc:6f:0d:ba:9c:a6:2f:53:e7:25:ed:d5:f8:fb:d7:
69:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:BF:1B:C0:6F:94:E9:6F:67:6C:E4:BC:BA:5D:2D:85:F3:D4:7E:39
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1DD33530633A11F1955B7FCCCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.61.0/24
Signature Algorithm: sha256WithRSAEncryption
93:e3:95:fe:cd:51:6d:67:e4:1e:df:41:b2:a2:01:7f:aa:d7:
a0:ee:96:e7:6c:82:fc:ea:5b:2e:97:9f:08:c1:f3:df:e2:7c:
5d:60:1f:31:c4:a5:32:c9:fe:5b:cc:dd:29:c2:44:43:5c:16:
02:01:5b:ca:4b:f9:64:a6:e0:a8:01:25:7e:c8:5d:85:71:d0:
66:a0:2f:72:a3:44:6a:88:f2:42:36:c2:33:b4:b6:05:bb:6f:
1d:ec:7f:cd:32:d5:c2:69:f2:c2:90:c4:fd:e7:22:3e:f4:bc:
c9:0d:b7:25:f3:88:59:d6:d5:c4:8b:81:5d:4b:7a:cf:99:0e:
eb:fd:50:7f:ca:d2:d0:cf:e8:b6:83:58:0e:20:9b:c6:be:3e:
78:37:c1:b2:c3:b1:a0:2d:a1:d7:f6:2c:33:5c:86:91:30:80:
0d:79:1a:d6:5a:04:86:13:6a:b8:b7:e6:c8:c7:3d:67:71:4d:
b3:d4:8e:98:95:04:6d:0f:ef:06:8e:e8:87:c1:09:57:73:dd:
01:d9:a3:62:4e:16:ee:c7:3a:f7:98:b4:2b:60:a8:ab:e7:90:
fb:7a:92:38:f1:84:3a:26:10:38:de:7e:91:c0:88:a1:cd:2e:
31:29:30:20:47:0b:b2:49:de:a1:84:57:9d:55:6c:a7:e1:e4:
44:de:fb:07
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAbxiMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwNjA4MTMwMTA0WhcNMjcwNzA4MTMwMTA0WjAYMRYw
FAYDVQQDEw02YTI2YmQxNS03NDNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAu/nCmnTyHphwmwiSH71qVbKk/sE9kZB56dZO/27kOhckLGzuAU+YxTQE
mpnBYKMOVqY17QST3It0gL9e0XjbxtQYq9YAdBNHZzReLdi/r9Nu6l7VnKsVOsza
ysFEMnNVBq/xpwi17TTQWtXqCy+CmIKlmgZdZtXNfyHw08x6HMmrQiW1YTQVs8Qi
Z+st4RkUjZGgk1v1la2FN5N4O0wswNzdDK+Z3Bxk432t1pJj7Ur0Dz05Povjmrrp
4/krYCLe78hDAtEKGA2U3vUqwh32jEbmervk7q5jimbDNBly2Tm96J30AhRLxXKD
5xMG+krMbw26nKYvU+cl7dX4+9dp+wIDAQABo4ICojCCAp4wHQYDVR0OBBYEFIm/
G8BvlOlvZ2zkvLpdLYXz1H45MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8xREQzMzUzMDYzM0ExMUYxOTU1QjdGQ0NDRTFEMzhCMC5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALc89MA0GCSqGSIb3DQEBCwUA
A4IBAQCT45X+zVFtZ+Qe30GyogF/qteg7pbnbIL86lsul58IwfPf4nxdYB8xxKUy
yf5bzN0pwkRDXBYCAVvKS/lkpuCoASV+yF2FcdBmoC9yo0RqiPJCNsIztLYFu28d
7H/NMtXCafLCkMT95yI+9LzJDbcl84hZ1tXEi4FdS3rPmQ7r/VB/ytLQz+i2g1gO
IJvGvj54N8Gyw7GgLaHX9iwzXIaRMIANeRrWWgSGE2q4t+bIxz1ncU2z1I6YlQRt
D+8GjuiHwQlXc90B2aNiThbuxzr3mLQrYKir55D7epI48YQ6JhA43n6RwIihzS4x
KTAgRwuySd6hhFedVWyn4eRE3vsH
-----END CERTIFICATE-----
Generated at Sat Jun 13 22:51:18 2026 by rpki-client