Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7565503C600411F1B18E50C9CE1D38B0.roa
File: 7565503C600411F1B18E50C9CE1D38B0.roa (raw, json)
Hash identifier: WjMpZohJk9fBb66Ts/VFo0v/5edUyS+12JwvutLzY5k=
Subject key identifier: 97:DB:2B:70:BE:0E:F4:53:4F:F7:D0:DB:23:15:51:85:D9:52:61:24
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01BBCC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7565503C600411F1B18E50C9CE1D38B0.roa
Signing time: Thu 04 Jun 2026 10:59:29 +0000
ROA not before: Thu 04 Jun 2026 10:59:25 +0000
ROA not after: Sat 29 May 2027 10:59:25 +0000
asID: 139226
IP address blocks: 45.201.140.0/24 maxlen: 24
45.201.141.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113612 (0x1bbcc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 4 10:59:25 2026 GMT
Not After : May 29 10:59:25 2027 GMT
Subject: CN=6a215a91-9fcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:3f:2e:a6:75:ab:62:42:1e:46:d2:05:f1:f4:
7f:47:e4:a2:cc:9e:a3:2d:d7:b9:bc:8e:d4:59:cf:
5c:14:19:8d:4e:c7:6f:ca:de:26:4c:88:3c:23:8d:
03:f2:9e:43:5d:e1:eb:e9:48:17:4b:4b:6e:1f:df:
ec:81:a1:48:50:dd:d1:94:08:17:b0:fc:a8:b7:99:
64:27:53:c9:99:12:99:a0:90:4d:ba:56:29:c4:c5:
6b:df:a1:14:1f:4e:21:49:99:9b:f2:e1:59:87:06:
8c:ac:d0:07:d1:86:24:4c:d8:c9:3b:26:e6:0e:a9:
91:16:c3:8a:44:40:76:79:e4:e2:64:7d:92:e8:11:
9f:f7:71:65:1b:18:a7:a5:91:7d:f3:5b:46:b4:cf:
2c:f0:dc:e3:03:04:66:00:50:42:7d:ba:d6:3c:64:
6b:c0:f8:32:3b:97:27:94:62:e4:05:72:22:ec:32:
ca:ad:86:74:d6:f1:cf:1d:65:e9:a2:0c:1f:d9:92:
f8:97:95:b2:e2:1f:dd:c7:cf:ac:92:54:e6:bc:38:
4e:8f:5d:7a:4b:89:c8:2a:d0:c1:47:97:e6:68:44:
d9:48:4d:8a:c7:07:40:45:eb:0d:b6:da:0d:31:71:
e2:d4:47:cd:67:6e:7a:90:0c:9b:05:a8:61:2f:ff:
53:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:DB:2B:70:BE:0E:F4:53:4F:F7:D0:DB:23:15:51:85:D9:52:61:24
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7565503C600411F1B18E50C9CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.140.0/23
Signature Algorithm: sha256WithRSAEncryption
4a:d4:f0:46:28:11:4a:1b:98:11:10:4e:b4:56:2c:e2:1e:00:
b4:07:ac:6a:f8:31:09:8e:6d:a4:a3:0b:94:4a:cd:ba:0a:f5:
3d:92:bd:44:b3:74:8d:ba:ca:db:d5:cc:31:02:8f:40:e2:1e:
cb:f6:fe:e7:2d:78:39:62:97:a2:a5:a7:dd:1a:ea:23:83:2e:
40:2c:5c:07:e0:3d:1d:2d:8a:66:04:88:b5:20:07:8a:3d:80:
c6:b4:ec:60:12:a1:3a:22:75:09:86:61:cf:f4:dd:e6:27:d2:
00:7c:c2:af:2f:65:64:7d:3b:93:3f:46:9f:41:28:6f:18:93:
36:fb:ed:57:36:a7:b5:8f:37:8e:a9:85:38:30:a3:e8:9c:65:
1e:3d:0f:9e:39:42:16:9a:27:69:44:8d:45:8b:17:f4:8c:0c:
85:ce:7c:a7:f0:d4:d2:06:40:75:0c:e7:0d:23:bd:47:c0:97:
d1:71:e1:2a:6a:ef:52:83:c1:26:4b:c9:4e:fd:55:5e:77:19:
3e:90:ea:39:ed:64:44:91:59:39:e4:59:d3:18:30:63:ce:dd:
62:bf:9f:38:9c:98:fb:7b:1c:a5:55:af:63:56:85:da:93:d1:
7b:b7:ae:a7:ca:aa:a0:6b:be:b7:9f:3e:60:33:f6:77:61:86:
df:4a:61:2e
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAbvMMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwNjA0MTA1OTI1WhcNMjcwNTI5MTA1OTI1WjAYMRYw
FAYDVQQDEw02YTIxNWE5MS05ZmNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtz8upnWrYkIeRtIF8fR/R+SizJ6jLde5vI7UWc9cFBmNTsdvyt4mTIg8
I40D8p5DXeHr6UgXS0tuH9/sgaFIUN3RlAgXsPyot5lkJ1PJmRKZoJBNulYpxMVr
36EUH04hSZmb8uFZhwaMrNAH0YYkTNjJOybmDqmRFsOKREB2eeTiZH2S6BGf93Fl
GxinpZF981tGtM8s8NzjAwRmAFBCfbrWPGRrwPgyO5cnlGLkBXIi7DLKrYZ01vHP
HWXpogwf2ZL4l5Wy4h/dx8+sklTmvDhOj116S4nIKtDBR5fmaETZSE2KxwdAResN
ttoNMXHi1EfNZ256kAybBahhL/9ThQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFJfb
K3C+DvRTT/fQ2yMVUYXZUmEkMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC83NTY1NTAzQzYwMDQxMUYxQjE4RTUwQzlDRTFEMzhCMC5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLcmMMA0GCSqGSIb3DQEBCwUA
A4IBAQBK1PBGKBFKG5gREE60ViziHgC0B6xq+DEJjm2kowuUSs26CvU9kr1Es3SN
usrb1cwxAo9A4h7L9v7nLXg5YpeipafdGuojgy5ALFwH4D0dLYpmBIi1IAeKPYDG
tOxgEqE6InUJhmHP9N3mJ9IAfMKvL2VkfTuTP0afQShvGJM2++1XNqe1jzeOqYU4
MKPonGUePQ+eOUIWmidpRI1Fixf0jAyFznyn8NTSBkB1DOcNI71HwJfRceEqau9S
g8EmS8lO/VVedxk+kOo57WREkVk55FnTGDBjzt1iv584nJj7exylVa9jVoXak9F7
t66nyqqga763nz5gM/Z3YYbfSmEu
-----END CERTIFICATE-----
Generated at Sat Jun 13 16:24:47 2026 by rpki-client