Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DD49466C600011F1817CD4B4CE1D38B0.roa
File: DD49466C600011F1817CD4B4CE1D38B0.roa (raw, json)
Hash identifier: 5FH5dj8+EVJ4zCEeeP02xpRdfLqS9pqgNnIz/3BHQFo=
Subject key identifier: 7A:0E:0E:97:D1:0A:92:51:7C:C8:CE:B5:F8:A1:53:09:AF:86:92:85
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01BBC4
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DD49466C600011F1817CD4B4CE1D38B0.roa
Signing time: Thu 04 Jun 2026 10:33:46 +0000
ROA not before: Thu 04 Jun 2026 10:33:41 +0000
ROA not after: Sat 29 May 2027 10:33:41 +0000
asID: 38901
IP address blocks: 45.201.143.0/24 maxlen: 24
45.201.148.0/24 maxlen: 24
45.201.149.0/24 maxlen: 24
45.201.150.0/24 maxlen: 24
45.201.151.0/24 maxlen: 24
45.201.164.0/22 maxlen: 24
45.201.168.0/22 maxlen: 24
45.201.210.0/24 maxlen: 24
45.201.211.0/24 maxlen: 24
45.201.212.0/24 maxlen: 24
45.201.213.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113604 (0x1bbc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 4 10:33:41 2026 GMT
Not After : May 29 10:33:41 2027 GMT
Subject: CN=6a21548a-285f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:6b:f2:10:e5:2d:c9:4f:f4:16:c5:69:1a:40:
bf:16:3f:c2:5f:e0:19:43:78:70:5c:2c:3c:84:bf:
06:c1:70:54:e6:ad:89:69:c9:c9:97:81:5c:8c:ff:
8f:4e:a0:69:a2:bc:36:11:b0:8c:c4:46:0d:c8:28:
dd:18:cb:ee:fd:45:69:f8:c3:ed:0c:13:ee:17:81:
70:ba:37:80:b9:5c:46:58:f4:ae:ef:90:4a:57:a4:
07:5b:1d:82:56:ab:9e:91:e5:1d:d8:05:88:44:80:
1c:e8:fd:90:12:4c:25:7e:a1:75:2b:59:60:81:d7:
61:3e:dc:58:b3:ae:b4:2d:aa:b6:aa:e0:3f:21:e5:
6d:98:f0:24:b4:fd:45:fb:0d:45:0b:b9:65:38:17:
46:05:91:59:8c:73:f3:9e:f5:c8:64:6c:45:25:be:
77:88:ea:54:2d:38:87:1b:b8:5c:7b:20:44:7f:66:
66:ad:13:29:0d:7c:e0:5e:c9:df:a6:3e:b6:3d:3e:
47:69:c8:a5:3a:fd:21:b6:e0:52:fd:f9:60:0a:65:
09:fb:1a:a5:93:4a:90:5c:59:62:6a:7f:99:31:50:
cd:d4:ac:89:e4:2e:a6:de:59:ef:c0:7d:62:16:ab:
7e:9b:b2:4a:bb:01:35:5c:47:64:fe:46:89:7c:99:
38:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:0E:0E:97:D1:0A:92:51:7C:C8:CE:B5:F8:A1:53:09:AF:86:92:85
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DD49466C600011F1817CD4B4CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.143.0/24
45.201.148.0/22
45.201.164.0-45.201.171.255
45.201.210.0-45.201.213.255
Signature Algorithm: sha256WithRSAEncryption
91:e2:06:2e:34:ec:e7:3b:71:e5:2f:a1:f9:ee:34:2f:75:ea:
14:3d:e9:c4:bc:26:a5:c6:65:e1:19:1d:f8:d0:02:fa:18:c3:
31:45:91:e6:d9:30:90:79:32:06:b4:25:59:7b:81:75:d9:4b:
38:4d:19:7c:97:dd:bc:27:f3:5e:21:a1:0f:50:f8:50:d5:b3:
18:4d:99:9d:32:3e:02:7f:57:3d:59:0f:8b:cf:84:fa:6b:9a:
d2:60:fd:be:9b:1f:b6:18:d0:c4:ab:74:03:1b:c7:a7:2e:00:
82:e9:b6:d6:ad:04:98:bc:e2:4e:e9:d2:16:6e:3e:52:a3:40:
2b:a3:50:9e:d7:e3:c2:bf:90:98:65:ac:7e:1d:8b:79:e9:8b:
37:0a:6c:63:cb:d3:58:18:23:13:02:99:00:49:c8:2b:0c:a2:
20:db:90:35:5d:97:f2:3d:32:0e:64:3a:7a:d5:36:9c:ac:31:
e3:6c:55:fa:1d:dc:ec:49:a5:5a:d6:5c:d8:c5:e0:49:df:94:
31:ec:d6:25:31:91:e3:cf:11:ad:75:ed:86:4f:c9:92:fe:db:
db:34:22:ef:03:71:8b:e2:81:16:fc:5c:f7:56:6a:09:12:bb:
5c:f4:5b:39:2c:5a:bc:72:63:84:6c:3a:b8:7f:54:78:1e:17:
0d:12:64:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 21:33:06 2026 by rpki-client