Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/06D3818A22BE11F19DA988DFDAE4EC9C.roa
File: 06D3818A22BE11F19DA988DFDAE4EC9C.roa (raw, json)
Hash identifier: XIRYtsqFP1TwoidkCoLP/gSeY7sp82f8BbIMsYEzSro=
Subject key identifier: F4:FB:72:C8:FE:BF:EA:15:72:59:3B:27:AE:F5:0F:D0:01:26:A5:62
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A5D9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/06D3818A22BE11F19DA988DFDAE4EC9C.roa
Signing time: Wed 18 Mar 2026 11:31:38 +0000
ROA not before: Wed 18 Mar 2026 11:31:33 +0000
ROA not after: Sat 28 Mar 2026 11:31:33 +0000
asID: 138985
IP address blocks: 45.199.187.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 27 Mar 2026 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107993 (0x1a5d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 18 11:31:33 2026 GMT
Not After : Mar 28 11:31:33 2026 GMT
Subject: CN=69ba8d1a-50f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:7e:3d:c1:7b:4c:6c:40:ab:46:7e:e1:7c:59:
fc:83:5b:1b:a4:47:66:5a:76:d7:9b:36:cc:8e:c3:
90:3a:68:80:2b:5c:36:68:60:d6:6c:c9:d4:b2:25:
ad:1a:ee:f4:99:5f:a9:36:6f:8a:47:9e:ad:65:98:
49:73:ea:53:6b:25:08:fa:18:d0:c3:2b:11:58:fb:
1e:6c:b2:13:69:2c:f4:82:8c:11:a2:65:80:1b:77:
7d:95:11:8b:a9:5b:48:75:b1:1b:02:06:f6:e7:7c:
ec:a7:46:4a:e4:c3:6f:23:31:7c:4c:d7:5e:bc:59:
07:76:6b:71:e8:a0:9a:96:41:d4:0c:92:d1:2a:14:
92:14:dc:a7:a2:28:64:93:67:fd:ba:80:4c:85:49:
b1:9a:5b:a6:0b:94:f5:f1:8e:dc:f7:9f:ba:67:40:
78:4e:fa:c0:d1:e8:63:72:16:01:f8:40:a8:a5:7a:
67:82:bb:4e:8e:dc:5c:82:1d:34:4d:bf:79:bc:b2:
7b:e9:ac:1b:fa:40:22:ab:f5:ef:de:3e:2c:7c:5a:
aa:2b:d2:ab:a3:0e:aa:f2:66:6d:9b:11:4d:72:13:
78:5c:e7:d1:8b:78:1e:dc:18:9c:bd:28:81:49:ea:
36:e8:f9:25:52:7d:9f:6d:19:3c:98:c0:fb:69:9e:
04:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:FB:72:C8:FE:BF:EA:15:72:59:3B:27:AE:F5:0F:D0:01:26:A5:62
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/06D3818A22BE11F19DA988DFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.187.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:82:dd:53:6b:f6:77:d3:34:aa:b4:34:73:d6:a8:25:25:5c:
bf:74:b3:47:6e:df:ed:b2:8b:00:ec:be:68:30:f6:b8:a4:a0:
9c:b4:b7:d4:74:6c:b8:ec:a3:ff:cc:97:9d:7c:7c:0c:8e:bf:
b9:ad:92:f5:b5:1f:5e:38:12:3f:0b:b0:46:c1:a4:45:5e:48:
32:a5:1b:9a:0a:c2:52:b7:f7:29:2f:79:35:38:60:f4:e5:e4:
57:29:bc:4d:6d:e1:96:81:fc:fb:68:51:37:62:12:13:07:9f:
36:8b:a1:5f:e0:be:db:fb:d9:1a:f0:58:c2:a2:c2:56:d6:a3:
a8:cd:a3:aa:fd:8d:4e:53:60:56:45:86:ec:35:d8:df:e7:9f:
a8:47:3b:e6:b6:10:59:8e:a2:a9:52:dd:1d:8a:d5:d1:7f:06:
94:2f:9d:e4:48:8c:fd:5b:20:11:43:af:af:73:b2:e5:95:40:
0f:c0:42:a3:8e:07:87:94:97:d5:0d:42:52:ac:cb:71:90:b1:
bb:02:ff:b3:b5:9c:80:a3:62:72:be:08:50:10:ea:ff:cd:20:
92:c7:ba:32:a2:fb:88:67:2c:1c:14:9b:bf:7b:6d:e3:15:01:
a0:21:80:35:c8:48:56:5d:0a:c6:72:01:5f:15:8f:db:52:66:
4a:d5:18:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:11:05 2026 by rpki-client