Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/85667F6A5EBA11F1AD8CCEE8CE1D38B0.roa
File: 85667F6A5EBA11F1AD8CCEE8CE1D38B0.roa (raw, json)
Hash identifier: INDfG/UWOxplGdbzgn/CVEclNtaqFeVVG78IwEuysvg=
Subject key identifier: 5D:51:7C:E2:94:D5:63:10:70:9D:4C:37:1C:94:08:4E:3B:7E:EF:75
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01BB72
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/85667F6A5EBA11F1AD8CCEE8CE1D38B0.roa
Signing time: Tue 02 Jun 2026 19:37:42 +0000
ROA not before: Tue 02 Jun 2026 19:37:36 +0000
ROA not after: Sun 22 Nov 2026 19:37:36 +0000
asID: 393437
IP address blocks: 45.204.56.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113522 (0x1bb72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 2 19:37:36 2026 GMT
Not After : Nov 22 19:37:36 2026 GMT
Subject: CN=6a1f3106-1bd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:65:e5:d4:33:a6:24:0e:05:ef:55:a1:4a:b6:
42:a0:d0:e7:09:94:1a:19:a8:72:d2:92:06:61:df:
28:e9:24:a0:36:f2:a2:07:54:27:86:b1:65:b4:83:
88:36:ea:54:cd:33:c0:16:f9:c5:74:a8:68:ea:13:
89:c0:10:70:a3:1f:ae:f3:72:3b:be:1b:d4:e3:3a:
d9:e1:95:0c:d7:01:90:60:bf:21:3a:5a:13:c9:72:
bf:01:ae:06:f8:4d:b5:4a:b7:71:2b:57:b3:b5:19:
99:6c:d6:f8:44:0c:0d:5e:de:42:73:ed:35:16:92:
33:47:6a:41:9e:f4:d7:a7:b5:a0:ee:c0:41:0a:59:
d5:e1:fc:fa:97:5c:de:89:3b:2e:3a:9c:f3:f1:78:
29:de:96:81:0e:90:a0:05:1a:55:ea:65:bc:ae:7c:
53:37:41:d2:d4:be:39:f4:63:56:32:08:d7:52:e6:
81:64:1e:fd:30:32:d4:92:3c:72:de:ec:f7:df:78:
c5:b9:62:9c:d7:7c:56:4f:d9:69:f8:cf:3b:27:bd:
20:40:f4:9f:27:e3:4e:00:31:b6:64:ec:98:7e:ce:
e8:2f:69:fc:68:11:68:f7:e5:83:cf:26:e7:2c:7e:
ae:2b:34:dc:ce:2d:30:e5:0a:4d:39:74:e5:1a:60:
09:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:51:7C:E2:94:D5:63:10:70:9D:4C:37:1C:94:08:4E:3B:7E:EF:75
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/85667F6A5EBA11F1AD8CCEE8CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.56.0/24
Signature Algorithm: sha256WithRSAEncryption
12:e5:19:04:6e:f4:a6:d8:c2:b9:e7:9e:0a:49:b3:3e:f2:46:
27:fe:93:a2:58:a3:c3:3c:1c:15:98:be:23:cf:32:b4:31:4c:
40:85:73:fd:56:31:55:65:21:5d:ab:97:cf:30:3a:05:1e:25:
39:87:81:b0:fc:f7:9a:67:fb:fa:bf:35:49:fc:a9:5b:d1:dc:
e2:88:0b:28:d0:15:25:c2:b5:91:2d:77:ab:28:ca:26:22:db:
1a:7f:26:47:93:fe:be:8a:9a:7b:f9:8d:96:4f:c6:18:09:49:
e6:70:1f:71:6d:a1:ff:fa:53:18:68:b0:f0:14:a1:e9:81:b4:
ea:6f:17:f7:28:b5:a1:82:24:d0:60:2f:22:1e:a8:b9:f0:58:
72:2c:ad:34:10:a0:48:12:26:03:34:dc:bd:45:cf:42:c1:82:
7e:c8:3c:19:99:f4:3e:a6:2a:3b:f3:00:96:44:35:8f:71:7c:
59:45:41:ad:e4:49:17:ad:31:5b:57:bf:9a:09:b6:63:83:1f:
46:c4:d1:4e:e8:5b:00:ef:1a:fc:b8:4d:b8:52:b8:42:55:27:
38:13:42:98:68:07:17:c4:03:c2:28:ad:6f:83:02:43:3a:27:
58:b3:60:18:1f:96:60:ac:61:b3:99:09:a1:5b:04:f9:9a:19:
dd:cf:d1:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 17:39:38 2026 by rpki-client