Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F60A4D742ADE11F1B94067BCDAE4EC9C.roa
File: F60A4D742ADE11F1B94067BCDAE4EC9C.roa (raw, json)
Hash identifier: uIOMxO8nVN7gh0CJJksIEVMK8+m/j9Fsms5DVOfcd98=
Subject key identifier: 39:C5:57:DF:A0:F7:09:3A:5A:9C:95:E2:24:C6:EF:19:14:94:56:B0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A858
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F60A4D742ADE11F1B94067BCDAE4EC9C.roa
Signing time: Sat 28 Mar 2026 19:47:33 +0000
ROA not before: Sat 28 Mar 2026 19:47:27 +0000
ROA not after: Tue 12 May 2026 19:47:27 +0000
asID: 51847
IP address blocks: 45.207.216.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:26:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108632 (0x1a858)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 28 19:47:27 2026 GMT
Not After : May 12 19:47:27 2026 GMT
Subject: CN=69c83055-a912
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:fa:1e:6e:c2:9c:1f:d9:aa:e3:8d:9a:3d:35:
ec:e0:28:67:81:d8:77:0a:20:d8:ab:e5:a4:ff:7d:
fa:ec:fd:1e:48:7b:01:ec:03:f0:01:b9:8c:f4:ee:
8e:17:aa:b9:f5:7c:fd:6a:44:db:25:8d:a8:dd:f7:
36:cc:47:64:04:be:9b:3f:45:90:0e:2a:e1:73:da:
e9:6a:5f:6d:7d:fb:ad:99:08:1a:a0:ea:5c:32:14:
a3:46:fc:39:2d:25:7f:b8:f4:3c:8d:db:3f:6c:55:
c8:52:a4:c7:0c:d5:fd:ad:2b:18:94:3f:99:f4:eb:
0b:fc:e5:44:39:fa:43:9c:26:93:97:d0:09:14:af:
26:81:41:5f:9c:80:0c:dd:16:0a:fd:a4:28:ec:91:
0b:5a:a0:61:22:20:23:ac:fb:68:a0:27:42:62:48:
ca:a2:ab:35:e6:ef:d8:c1:58:45:a7:ff:8c:af:58:
67:e9:7b:1a:90:37:56:4a:68:2e:dd:17:77:ec:ba:
d9:71:76:32:bb:ed:d6:b8:8f:f6:dd:82:75:26:c0:
9d:ea:70:fa:43:43:ca:53:40:6c:59:75:80:4f:53:
fb:d5:c3:19:f1:3b:26:34:b6:4e:3c:b4:bf:4d:9c:
34:f4:44:b0:91:dd:44:a2:49:b6:53:ee:da:9d:c6:
c7:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:C5:57:DF:A0:F7:09:3A:5A:9C:95:E2:24:C6:EF:19:14:94:56:B0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F60A4D742ADE11F1B94067BCDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.216.0/23
Signature Algorithm: sha256WithRSAEncryption
4a:86:e5:d0:f6:a3:80:04:c0:5c:0a:2e:1b:44:be:5a:48:08:
8b:c5:21:2f:cd:a4:47:95:78:aa:d4:56:be:57:5f:86:6e:7b:
32:65:7e:a3:55:14:18:a2:40:4e:fc:6b:3c:d2:54:a3:12:da:
1a:d9:b5:ee:19:6b:a8:1f:dd:20:e3:b6:7f:3e:e9:ba:28:f6:
59:d3:88:bb:7f:57:20:43:b8:02:45:86:34:14:d9:2d:d7:7a:
71:da:23:48:1e:15:a9:77:a7:bc:2a:64:16:5e:66:cc:58:6e:
f6:4f:b7:73:0a:a9:f8:67:c6:61:3d:9b:49:16:e8:9d:03:d3:
23:d0:6c:d8:24:0e:51:8b:b6:c4:aa:06:01:12:18:7b:5a:54:
56:81:08:01:42:a4:b7:f5:63:55:8d:fe:83:01:f6:83:f1:fc:
a9:96:76:39:11:c8:09:ca:05:8f:34:6b:fd:ee:39:3d:39:15:
2c:e6:4b:18:3a:66:70:b2:a7:00:f2:4d:cc:56:a1:ab:da:f6:
31:a2:7f:dc:d7:a0:4c:69:23:31:c8:cd:b3:01:1e:37:a0:85:
78:b4:00:8c:45:03:c9:b3:eb:47:aa:a9:f5:f5:3d:c0:62:bc:
11:77:7e:c2:91:c9:52:50:cd:dd:92:05:ca:97:db:fd:ad:72:
cc:85:e0:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:10:47 2026 by rpki-client