Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C9F2767C63D111F1BF526FECCE1D38B0.roa
File: C9F2767C63D111F1BF526FECCE1D38B0.roa (raw, json)
Hash identifier: fAIyjdRBms15NQPmEdqiiNu/VXySADP600TfRZxKpF0=
Subject key identifier: 31:80:52:AB:10:02:27:AC:7C:0B:41:8D:DE:0E:6B:DA:29:34:A9:31
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01BC73
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C9F2767C63D111F1BF526FECCE1D38B0.roa
Signing time: Tue 09 Jun 2026 07:06:51 +0000
ROA not before: Tue 09 Jun 2026 07:06:47 +0000
ROA not after: Wed 15 Jul 2026 07:06:47 +0000
asID: 152711
IP address blocks: 45.202.64.0/24 maxlen: 24
45.202.65.0/24 maxlen: 24
45.202.66.0/24 maxlen: 24
45.202.67.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113779 (0x1bc73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 9 07:06:47 2026 GMT
Not After : Jul 15 07:06:47 2026 GMT
Subject: CN=6a27bb8b-339a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:cd:1f:56:e6:31:21:9f:f2:7f:0c:e8:84:a3:
22:55:41:5a:f1:65:8c:4b:74:9c:8f:99:e4:92:83:
05:d1:d1:e3:57:19:06:6b:a5:02:44:1b:52:80:30:
6f:00:8b:51:20:53:d7:40:0b:37:b5:d5:44:48:dc:
a8:fc:24:77:74:87:e8:a3:f2:e4:7f:43:ad:a3:62:
1e:52:d8:df:4a:1d:80:fa:81:0d:94:a7:29:1e:43:
92:4a:4a:cf:c9:1a:8c:ec:6b:90:19:8c:09:33:ed:
d7:e6:ed:38:ca:15:98:b7:4e:c0:65:b4:3b:1d:b1:
d0:a4:54:60:88:6f:c5:2b:fe:33:28:36:2d:fe:01:
23:86:e9:90:7d:17:f1:3b:5d:c3:61:9f:0c:1a:3f:
5f:57:90:21:fb:72:62:70:16:41:63:55:64:48:a9:
4a:b4:e7:fd:3c:fb:44:88:80:9d:b5:d6:7a:dd:25:
8b:d3:53:5e:09:c5:fb:f3:7b:3d:1e:94:f6:fd:1f:
55:4e:78:0a:c6:53:34:dd:c9:f1:3a:e4:8e:dd:7f:
de:15:23:e9:94:ca:20:03:86:e8:fc:87:1a:0b:ce:
b5:fd:70:23:bc:54:1e:e7:bd:0e:da:01:31:f2:bc:
6d:50:bf:bd:de:d5:12:93:71:93:27:34:d3:ff:79:
96:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:80:52:AB:10:02:27:AC:7C:0B:41:8D:DE:0E:6B:DA:29:34:A9:31
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C9F2767C63D111F1BF526FECCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.64.0/22
Signature Algorithm: sha256WithRSAEncryption
1d:3e:b5:ce:9a:bd:5d:f7:a7:f4:d8:c2:e2:03:a8:78:a8:91:
ca:29:24:8d:4b:7b:cf:67:e9:9c:1a:e4:70:0e:2d:24:cb:a4:
51:f5:86:ab:5e:ef:cf:f5:e4:64:87:52:5d:e9:dd:48:15:18:
5f:05:3b:fc:74:e5:b0:49:53:0c:aa:4f:7c:02:f4:eb:c6:9a:
f8:16:16:53:bd:23:72:cf:6a:e0:97:9a:c3:a2:36:63:84:8c:
df:86:d7:3f:5e:83:23:77:eb:42:f9:b4:3a:ee:d0:dc:d9:cf:
23:ee:0a:42:54:ca:f1:cb:66:0e:8d:c0:bc:da:3a:4f:7b:fb:
28:d1:51:b1:ff:57:3c:40:c9:1a:2a:f8:6e:87:cc:93:9a:c5:
c9:5e:52:47:a9:61:71:1d:4c:86:3b:76:a1:5b:c6:36:58:2c:
b7:03:2c:f6:7d:0f:9f:4a:66:02:4a:8a:14:e0:48:b5:df:c9:
7d:98:3b:43:ed:95:1c:8e:b0:89:2a:83:7f:39:be:42:f1:36:
da:6c:61:c9:82:8b:e0:2f:ff:0a:c8:20:f5:40:24:a4:a1:15:
ad:24:7a:f8:98:ac:b2:ec:cf:08:da:37:1e:a1:2a:84:72:8c:
77:66:02:6d:47:68:be:70:d5:b2:d1:21:eb:f4:a6:ce:01:5a:
68:c0:0f:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 15:30:19 2026 by rpki-client