Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/DEE26D2021C911F19E9FA1D2DAE4EC9C.roa
File: DEE26D2021C911F19E9FA1D2DAE4EC9C.roa (raw, json)
Hash identifier: PlUGdejlGMrADWphDwiAWRn7JTwPLG+aWl7v0vJBG08=
Subject key identifier: 41:A1:D9:EC:8B:43:B9:7E:EA:F0:EB:54:E0:BE:7D:D2:6B:BC:49:FA
Certificate issuer: /CN=F363BA19AR/serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Certificate serial: 06F1
Authority key identifier: 60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
Authority info access: rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/DEE26D2021C911F19E9FA1D2DAE4EC9C.roa
Signing time: Tue 17 Mar 2026 06:23:54 +0000
ROA not before: Tue 17 Mar 2026 06:23:48 +0000
ROA not after: Wed 31 Mar 2027 06:23:48 +0000
asID: 200130
IP address blocks: 45.221.68.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.mft
rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1777 (0x6f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AR, serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Validity
Not Before: Mar 17 06:23:48 2026 GMT
Not After : Mar 31 06:23:48 2027 GMT
Subject: CN=69b8f37a-8a31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:74:ec:ec:39:98:c4:ca:26:11:9a:ee:5a:85:
97:e5:62:bd:9c:00:43:d9:87:bb:8f:e9:eb:6e:26:
d0:8b:96:21:58:69:29:91:87:b4:2a:ae:fe:dd:c6:
71:5b:ad:94:06:62:64:23:fb:86:0a:7f:c3:e8:28:
5a:bf:07:57:dc:0a:f8:c7:f1:5c:d6:c3:18:95:1a:
5c:59:61:b7:52:3d:e5:68:54:4f:8c:40:e6:59:c6:
a5:91:a5:dd:79:47:85:3b:e7:52:3d:70:10:e7:a7:
04:b9:2b:50:2f:82:33:07:ca:b5:d3:5d:7b:97:5b:
86:bf:ce:4c:ce:85:7f:c1:e9:8b:5b:d9:92:99:aa:
94:c0:23:d2:5a:33:97:8d:55:0f:53:b5:4a:01:58:
26:52:1e:c2:5a:19:80:b5:ab:65:26:f7:11:e8:55:
cc:18:2d:6b:d6:9e:06:1c:89:29:86:6f:29:e7:c4:
a4:15:0c:f4:2f:34:f0:da:06:29:e5:01:57:78:20:
29:3c:71:cf:20:99:a6:4c:79:f1:a5:8d:4b:3c:33:
31:38:66:67:e9:6c:d0:c9:ac:d4:5f:60:f4:9d:32:
6b:78:d2:ab:db:af:2d:c3:73:8a:2b:85:4b:c2:93:
73:b6:93:3e:6d:cd:c9:5d:15:4e:30:e4:ff:24:87:
f2:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:A1:D9:EC:8B:43:B9:7E:EA:F0:EB:54:E0:BE:7D:D2:6B:BC:49:FA
X509v3 Authority Key Identifier:
keyid:60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/DEE26D2021C911F19E9FA1D2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.221.68.0/24
Signature Algorithm: sha256WithRSAEncryption
be:32:bc:ca:72:98:e0:e2:1c:f3:0e:5d:06:a5:d0:fa:b4:3c:
54:95:bf:de:11:a6:4b:a7:8e:cf:a3:5c:b6:88:e3:6e:a6:12:
1b:b1:78:d8:22:52:3f:8a:bf:87:be:07:ae:0a:ca:ed:dd:cf:
1a:38:50:c9:c8:c2:f4:ef:a2:86:5f:ab:e6:a5:d8:5b:ae:47:
c1:fd:34:56:87:ff:3a:c1:f7:61:16:26:c7:94:c4:67:72:d9:
c4:e6:c2:38:f3:8b:99:29:69:67:8e:8c:a8:b0:20:b0:5d:cc:
d7:0f:1c:a9:fa:0d:ad:8f:6e:7c:e1:29:3c:20:0a:45:43:5e:
33:be:e8:f6:3c:f5:63:94:66:71:fd:e9:6c:95:1d:c7:a5:a8:
d5:c6:65:eb:7f:b4:89:0c:aa:d1:9b:89:72:c5:1d:06:db:50:
4f:c1:7b:6f:f2:14:1d:6d:06:9b:4f:2e:c3:fa:d9:a6:d8:c9:
a9:9c:6f:16:3b:19:a6:62:f9:ed:49:2b:db:b4:d9:68:da:45:
84:42:7d:45:cc:9c:71:1a:db:4c:ba:c9:a4:70:e3:90:9d:b2:
97:b2:d9:29:47:1b:9e:c5:55:d5:d2:7b:08:5e:f5:7f:37:55:
2a:8c:81:71:c3:7c:07:c0:63:10:81:12:86:31:d9:fd:ee:0e:
7a:0c:e7:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:17:57 2026 by rpki-client