Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/10609D643E3911F1B0D5D018CF1D38B0.roa
File: 10609D643E3911F1B0D5D018CF1D38B0.roa (raw, json)
Hash identifier: kcMJqMzEqZtpr42jdkz/EUvxkc7cjMsKV8b60SX5xck=
Subject key identifier: 9A:54:15:99:8A:A2:15:6D:75:37:5B:36:48:A6:C7:BE:BC:A5:2C:EA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AE01
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/10609D643E3911F1B0D5D018CF1D38B0.roa
Signing time: Wed 22 Apr 2026 10:50:24 +0000
ROA not before: Wed 22 Apr 2026 10:50:19 +0000
ROA not after: Thu 28 May 2026 10:50:19 +0000
asID: 44559
IP address blocks: 45.199.207.0/24 maxlen: 24
45.199.208.0/24 maxlen: 24
45.199.246.0/24 maxlen: 24
45.199.247.0/24 maxlen: 24
45.199.248.0/24 maxlen: 24
45.199.251.0/24 maxlen: 24
45.199.253.0/24 maxlen: 24
45.199.254.0/24 maxlen: 24
45.200.179.0/24 maxlen: 24
45.200.180.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110081 (0x1ae01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 22 10:50:19 2026 GMT
Not After : May 28 10:50:19 2026 GMT
Subject: CN=69e8a7f0-b71b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ba:1f:82:28:eb:e0:7e:b5:6f:a9:4c:de:c9:
9a:12:ce:82:7f:a9:bf:09:ca:72:4e:72:c7:54:0e:
a0:46:0a:3e:e6:3e:40:33:e6:14:24:a1:c7:64:c1:
d7:bf:48:72:b3:3b:18:5e:7f:23:52:36:ae:88:90:
1e:63:6b:bf:29:14:2a:a4:0e:24:8a:a1:2d:47:72:
c7:80:8e:f4:b8:b1:cb:f4:77:db:a4:d4:17:5b:ec:
18:08:40:34:2d:de:ec:24:eb:8e:88:34:ce:fe:c6:
b6:d9:f4:83:87:f2:3c:f5:49:77:28:85:ec:2b:ed:
53:c8:43:80:bb:cf:39:fa:18:a1:46:69:1b:df:dd:
f3:4c:03:b3:54:69:80:5a:ed:c6:eb:2d:f1:b2:a2:
e7:cc:5c:3a:d5:31:30:6f:83:42:6e:31:b1:13:a0:
6d:33:55:4c:d2:98:2e:76:35:aa:22:3c:37:90:b6:
e5:ea:ae:e6:08:41:24:8e:17:7a:64:4c:f9:4d:f9:
6a:e1:0d:3a:20:1e:62:63:e0:9c:f2:b1:82:2d:03:
af:c8:2a:1b:09:15:e8:02:17:cc:08:bd:48:e3:52:
a9:da:eb:55:d3:d2:81:16:62:13:6f:cc:52:bb:6f:
22:9e:73:f6:88:95:e1:4a:34:71:a1:6a:01:2d:ef:
7c:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:54:15:99:8A:A2:15:6D:75:37:5B:36:48:A6:C7:BE:BC:A5:2C:EA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/10609D643E3911F1B0D5D018CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.207.0-45.199.208.255
45.199.246.0-45.199.248.255
45.199.251.0/24
45.199.253.0-45.199.254.255
45.200.179.0-45.200.180.255
Signature Algorithm: sha256WithRSAEncryption
58:06:db:e5:20:d8:da:2b:3f:2d:71:94:92:43:85:b6:95:79:
12:cb:12:f8:fd:a5:88:45:f3:84:04:eb:ac:e4:49:da:bf:35:
07:01:4c:0f:b3:0b:71:a5:f1:ac:62:fe:b1:47:c3:be:aa:c7:
b6:f1:c8:f3:90:09:90:a7:e5:92:2b:21:74:5a:98:6f:0c:c6:
f9:a4:dd:24:1a:bb:e1:8b:70:b6:ae:52:95:aa:52:5c:e6:b9:
21:f8:a2:79:c1:12:d2:5c:ee:ac:4a:7e:66:61:e8:7c:55:a8:
74:12:6b:b5:8e:e3:f6:e4:4f:3b:ae:ae:07:e6:b3:4a:7e:47:
c2:21:e1:ea:92:9b:b0:d7:b8:6d:3c:bb:28:f3:82:66:e6:9a:
81:e6:ec:12:df:f2:ae:89:a7:fc:d6:b6:37:56:7a:a0:db:58:
ce:4e:d0:b4:e5:7d:1f:a4:16:a3:f7:70:0f:91:cf:da:68:98:
43:b1:aa:39:58:e9:f2:19:78:b0:71:a2:b2:c7:21:3b:1f:90:
7c:64:b0:5a:ce:5e:8c:87:3b:d2:ba:bb:e0:3d:29:01:30:a2:
3c:84:3c:1f:b8:be:1b:a9:86:4c:40:05:f4:1f:dc:77:48:25:
b5:e9:a0:81:bc:ce:d1:63:76:6d:0f:da:d4:f8:15:a1:4b:3c:
cd:86:a4:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 14:08:43 2026 by rpki-client