Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3E05C56E4D0C11F1A9BD8BE5CE1D38B0.roa
File: 3E05C56E4D0C11F1A9BD8BE5CE1D38B0.roa (raw, json)
Hash identifier: GoV3idXMQWODG4xg+tO8ffivI0+h9PwRdrpevfBIAO0=
Subject key identifier: 23:FD:96:90:A2:BA:26:11:84:87:41:90:43:1C:27:52:E1:39:68:A4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B3B3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3E05C56E4D0C11F1A9BD8BE5CE1D38B0.roa
Signing time: Mon 11 May 2026 07:37:20 +0000
ROA not before: Mon 11 May 2026 07:37:16 +0000
ROA not after: Sun 21 Jun 2026 07:37:16 +0000
asID: 32043
IP address blocks: 45.203.224.0/24 maxlen: 24
45.203.225.0/24 maxlen: 24
45.203.226.0/24 maxlen: 24
45.203.227.0/24 maxlen: 24
45.203.228.0/24 maxlen: 24
45.203.229.0/24 maxlen: 24
45.203.230.0/24 maxlen: 24
45.203.231.0/24 maxlen: 24
45.203.232.0/24 maxlen: 24
45.203.233.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111539 (0x1b3b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 11 07:37:16 2026 GMT
Not After : Jun 21 07:37:16 2026 GMT
Subject: CN=6a018730-cc25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:8d:80:13:c9:3e:91:7f:85:23:bd:43:8c:55:
4f:66:b9:9c:f9:ba:54:a1:b9:3e:d1:e0:c1:a3:5c:
86:30:10:c0:23:3c:01:a3:bb:05:8d:f6:0d:ca:ca:
b9:90:6f:1d:6a:9c:ab:e2:bd:57:5c:0d:1b:75:d7:
4a:0d:de:17:1f:fb:17:d8:16:b5:96:a8:11:a7:03:
aa:fc:00:b2:64:39:85:44:e8:72:d4:28:62:c1:d2:
7c:28:c4:e8:83:71:80:0f:7d:8d:b7:b5:93:71:c0:
87:5e:55:12:d1:a0:d0:43:1a:a1:75:4e:5d:18:2a:
78:26:d6:f3:f1:8e:63:ac:fa:8b:35:c5:8d:bf:e8:
4b:bb:f0:46:e7:b5:b0:d4:b7:2c:f6:52:ff:a3:07:
5b:38:2e:be:34:63:92:cd:a9:46:93:34:98:c4:a5:
cd:fb:98:44:ba:eb:21:81:e5:8e:71:32:77:2e:0f:
8b:4e:3e:53:28:2e:92:3e:26:b5:ba:bb:e4:4a:a7:
68:a6:4b:7a:0b:33:22:61:39:33:5c:dd:31:09:4c:
63:73:cf:d3:1e:9a:68:7f:5b:35:9c:56:ef:f9:41:
43:dc:3c:57:d3:4e:70:68:a1:91:f2:4c:a5:d8:75:
ec:db:a5:33:d4:4b:11:00:80:a7:ac:1c:9f:70:7f:
3f:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:FD:96:90:A2:BA:26:11:84:87:41:90:43:1C:27:52:E1:39:68:A4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3E05C56E4D0C11F1A9BD8BE5CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.203.224.0-45.203.233.255
Signature Algorithm: sha256WithRSAEncryption
b7:9f:43:28:a9:02:b2:54:00:b8:6e:e3:5f:3f:9e:1f:d5:c6:
6f:59:12:31:7c:bf:ec:7c:be:02:5b:7c:fd:08:40:8a:d4:3b:
80:7d:b9:ee:2c:d2:b0:46:c0:c2:da:dd:60:e2:43:bc:9a:29:
ad:a9:84:3c:cc:d6:3d:6d:5c:60:1e:0d:a1:eb:7d:98:b6:8c:
40:e4:5b:65:f9:d4:c9:36:33:49:a1:de:3e:04:f0:e6:79:2e:
7e:a9:4c:3d:58:a1:46:18:de:6e:19:1f:83:da:55:4e:ae:8d:
6c:63:8f:ae:7e:8f:7b:30:d8:d2:b4:f8:61:10:35:83:9d:79:
f1:62:27:f4:7e:b5:e4:88:a9:b3:9c:b1:c1:11:1f:00:fd:f2:
60:15:43:4c:e0:ea:1b:c5:0c:f1:cb:7b:61:94:67:31:64:63:
b7:9e:d3:25:a2:cd:81:f8:5e:1b:1f:74:f4:f2:69:4f:ca:5a:
2b:11:ed:1d:f4:be:82:75:e0:d9:9e:cc:c5:2f:25:f6:11:f6:
86:09:75:9a:6d:43:a3:39:ad:a8:a4:fd:d2:88:7c:27:b1:e0:
c8:41:fe:c7:d3:3e:b4:18:d2:22:68:27:c1:48:5c:7c:21:4d:
3d:d3:98:06:68:55:e3:e1:f2:54:30:b0:20:a5:ac:26:ef:2a:
95:7d:b9:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 14:43:26 2026 by rpki-client