Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DD2617C038B211F18A2281C0CE1D38B0.roa
File: DD2617C038B211F18A2281C0CE1D38B0.roa (raw, json)
Hash identifier: B33VvvKc5IDsT+c2nhMBW8HZjjJGQ/Y9UmSL2iup/kA=
Subject key identifier: AB:C7:B3:49:B4:12:E3:AF:C2:53:7D:AF:2B:47:7D:13:DB:5B:14:D9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01ACDC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DD2617C038B211F18A2281C0CE1D38B0.roa
Signing time: Wed 15 Apr 2026 10:07:09 +0000
ROA not before: Wed 15 Apr 2026 10:07:05 +0000
ROA not after: Thu 15 Apr 2027 10:07:05 +0000
asID: 60171
IP address blocks: 45.205.83.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 14:05:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109788 (0x1acdc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 15 10:07:05 2026 GMT
Not After : Apr 15 10:07:05 2027 GMT
Subject: CN=69df634d-0b27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ea:e3:7b:07:05:07:e6:d8:75:f1:41:7e:ed:
ac:4d:28:7f:81:12:0a:a9:13:57:59:15:06:0b:2b:
87:b9:7c:bf:57:6b:07:68:7d:32:d9:8e:16:9c:c6:
5c:77:2a:67:71:8b:f8:61:30:a3:92:03:1a:c2:93:
8f:64:df:fe:f6:8f:99:b9:38:25:04:23:66:3f:ec:
2c:e5:23:c2:aa:86:8b:68:19:e1:1d:16:bf:c7:b2:
f3:48:9f:1c:2a:f9:a0:be:35:5f:8f:f1:79:b5:47:
93:31:7e:c7:2d:d2:d5:09:46:65:1a:ed:45:e5:4d:
b3:1a:15:2b:64:16:a9:6e:b5:c6:0f:81:fc:3b:37:
bf:08:aa:e1:6e:56:d3:a3:91:52:af:06:89:6d:4c:
b6:df:c9:18:36:3c:97:71:eb:ea:04:f5:52:5f:f5:
58:2b:90:61:78:c8:a4:4d:63:6b:03:72:1a:55:08:
d3:d1:22:d3:09:5b:ad:43:56:99:7a:ea:f7:dc:be:
a6:2e:60:86:e2:7e:79:05:38:51:fc:e5:ec:0f:1f:
db:15:97:57:2c:e4:39:9b:ee:52:77:cd:e0:85:6d:
6b:3f:6b:cc:89:ac:6f:c4:5f:d4:d6:e0:46:b6:c1:
29:62:c8:40:a3:bd:11:30:22:5c:f5:dc:ca:87:6a:
1f:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:C7:B3:49:B4:12:E3:AF:C2:53:7D:AF:2B:47:7D:13:DB:5B:14:D9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DD2617C038B211F18A2281C0CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.205.83.0/24
Signature Algorithm: sha256WithRSAEncryption
49:93:ac:ba:35:70:cc:d4:0c:fe:c9:36:33:2b:4b:7c:f1:f0:
40:ad:6d:18:0a:1d:88:6a:a2:7d:3d:b0:41:42:a0:67:08:62:
49:bd:ca:e4:53:7d:12:ef:28:26:bd:1b:f1:5f:45:5d:fa:2a:
3b:b2:77:e5:a2:86:d5:76:a2:ce:78:68:0d:56:3d:95:f1:fa:
b8:e2:ee:ee:d3:29:53:69:5f:24:50:0b:c4:06:d5:b0:98:44:
63:7d:ce:bc:d2:b5:5d:e3:87:6b:d4:45:9e:33:03:c0:a6:10:
49:24:cb:6b:8c:dd:7d:33:a4:2e:3c:95:f3:e2:21:fd:29:f9:
5f:c2:0e:b6:ef:fa:e5:3b:24:1d:46:44:40:e5:9c:0e:f5:9b:
d4:f8:31:8e:e7:d5:89:51:79:18:d8:2c:eb:d2:01:6d:c5:b9:
4b:d7:45:60:aa:28:fb:fe:27:04:2b:4e:00:9e:d3:13:8a:bd:
eb:13:92:04:d8:5b:32:33:75:e3:93:ec:d7:ab:d1:0a:5a:2d:
ac:ef:37:b3:6d:6b:66:33:fe:6e:11:25:0c:ee:f4:b7:4f:39:
ed:af:8f:be:46:51:29:d2:db:35:81:a3:00:d3:61:35:2c:1c:
1e:8a:b5:da:8b:e6:08:78:26:f6:45:f3:69:5c:73:dc:56:4e:
1f:05:f1:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:43:06 2026 by rpki-client