Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6591EDD225D011F1B9549FC6DAE4EC9C.roa
File: 6591EDD225D011F1B9549FC6DAE4EC9C.roa (raw, json)
Hash identifier: 5zoizsIeKFvxaPyCYuLswFFfh6jYWzw9D3pTnKgC8n0=
Subject key identifier: A7:C8:A0:30:A1:87:D0:B1:CC:94:04:CD:CD:13:67:22:2F:30:55:CC
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A6A6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6591EDD225D011F1B9549FC6DAE4EC9C.roa
Signing time: Sun 22 Mar 2026 09:20:42 +0000
ROA not before: Sun 22 Mar 2026 09:20:36 +0000
ROA not after: Thu 22 Mar 2029 09:20:36 +0000
asID: 17561
IP address blocks: 45.194.8.0/24 maxlen: 24
45.194.9.0/24 maxlen: 24
45.194.10.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 27 Mar 2026 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108198 (0x1a6a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 22 09:20:36 2026 GMT
Not After : Mar 22 09:20:36 2029 GMT
Subject: CN=69bfb46a-3147
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:8f:22:a0:67:f2:ef:a8:2f:b5:9c:35:b9:ce:
a5:00:36:cf:82:86:bd:08:d7:03:5c:0a:31:e2:9d:
bf:f9:ae:9d:93:44:fc:22:d7:5b:d5:c1:eb:14:67:
49:aa:13:02:fe:35:26:56:b2:7e:85:98:2a:d9:a6:
d1:eb:17:d6:c7:65:b5:04:f0:9f:fd:1f:50:5e:ec:
eb:0c:45:2a:7a:53:3e:32:f0:4c:de:ef:3e:bc:6c:
75:66:80:87:8e:84:9e:df:23:7e:14:f7:97:72:ce:
9f:b0:16:f5:83:53:3b:50:0a:4c:aa:6f:5d:f0:53:
1e:7c:ec:3f:40:88:91:06:ab:93:b4:af:35:95:df:
a9:1f:f4:11:fa:de:83:76:bf:8f:1d:8c:73:62:56:
b0:d4:03:53:40:85:68:3d:b0:22:7e:e4:0a:83:e9:
79:de:3f:00:00:71:37:da:11:ed:a8:c6:ab:96:5b:
9b:ed:df:3d:46:2c:50:29:3e:8a:0b:21:ff:ac:4e:
86:74:e2:e6:98:9b:a2:cb:fb:da:2c:05:a9:80:bd:
a8:9b:e3:74:84:b1:78:2e:35:b2:c2:dc:78:1a:e5:
07:53:67:b3:33:4d:88:05:3e:86:cb:48:7e:3e:78:
2e:93:68:fe:85:5d:c6:21:31:21:6d:86:ae:91:ff:
33:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:C8:A0:30:A1:87:D0:B1:CC:94:04:CD:CD:13:67:22:2F:30:55:CC
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6591EDD225D011F1B9549FC6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.8.0-45.194.10.255
Signature Algorithm: sha256WithRSAEncryption
5d:8d:cc:ce:d1:a0:b0:de:d3:27:ba:b3:da:bc:43:2f:f6:ff:
6c:33:bf:2d:5b:cb:fc:89:ca:92:f7:c8:3f:1a:e5:7b:8b:4d:
de:90:33:5b:ce:89:38:bd:0d:a1:bc:f3:f8:02:96:9f:11:9f:
b8:b2:5f:cb:79:4f:0f:da:0c:e0:de:9d:54:f9:3b:0c:42:b4:
25:66:73:ba:37:f4:7c:55:5d:da:7a:9d:d9:b1:f8:0f:f7:10:
94:ee:70:0d:3d:90:33:3f:57:75:98:52:f1:0c:6d:1d:20:50:
ac:af:9f:3f:be:8e:df:1a:cc:45:cd:18:9b:de:3a:d3:6c:d1:
6c:aa:92:71:8c:74:47:24:b9:a7:3e:06:bc:ae:03:57:0d:46:
94:4e:18:4c:59:18:8e:5e:3c:a6:59:ed:b1:ad:40:ea:8b:12:
6b:f3:4d:7d:b6:50:45:74:d9:d3:8f:01:e8:dc:3b:39:ef:85:
52:cf:ca:ae:58:a7:7e:53:a9:d8:dc:ec:2d:6f:ec:4a:c2:47:
b4:43:f3:fd:8a:75:cc:23:90:a6:bf:a4:46:54:db:06:b9:2f:
a2:58:8e:51:7b:eb:5d:ce:35:14:e6:28:6a:92:4b:c5:fb:69:
c0:af:92:05:a3:dc:a8:ba:ea:4e:d4:7d:ad:50:2e:ba:b3:9b:
af:ee:17:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:10:37 2026 by rpki-client