Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/68D2DBCE4B8111F19C95C605CF1D38B0.roa
File: 68D2DBCE4B8111F19C95C605CF1D38B0.roa (raw, json)
Hash identifier: b4qfstnc8LdXzjPEaEZ62rjI5PWoqNriAzAzowgZsv4=
Subject key identifier: 7F:36:0F:BC:F0:04:95:03:B9:4B:F0:E3:25:A2:5F:AB:CD:F7:A8:C4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B306
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/68D2DBCE4B8111F19C95C605CF1D38B0.roa
Signing time: Sat 09 May 2026 08:31:01 +0000
ROA not before: Sat 09 May 2026 08:30:56 +0000
ROA not after: Tue 16 Jun 2026 08:30:56 +0000
asID: 211567
IP address blocks: 45.195.75.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111366 (0x1b306)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 9 08:30:56 2026 GMT
Not After : Jun 16 08:30:56 2026 GMT
Subject: CN=69fef0c5-7d35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:b0:ef:e9:8a:2c:4a:0c:d2:90:18:59:18:e9:
13:fd:25:5e:d2:1e:37:f4:a9:a8:5e:80:ed:b1:2c:
75:92:22:7e:ab:8d:f8:ff:1a:7c:ee:b7:91:e5:aa:
73:1d:cb:90:2d:b4:db:6b:76:8b:66:95:f5:57:d9:
12:7f:55:b7:69:d9:1c:85:9f:22:bd:10:0e:5c:61:
1d:94:b8:f8:5d:d1:82:2e:0f:47:a3:4b:8d:68:9f:
f6:0f:19:e4:40:6e:f6:e2:1f:8c:64:ec:1d:0e:b6:
85:33:c3:ac:07:e5:f1:11:9f:63:b7:44:35:3c:db:
07:23:4a:6e:16:4d:66:ab:c6:db:4d:0c:e5:a4:38:
eb:44:b1:a6:18:64:d7:33:ff:4e:98:e0:f4:77:ee:
ad:44:d1:5e:4a:e8:dc:7c:06:de:a2:dd:52:29:4b:
ef:7b:87:a6:e6:83:24:cf:d3:f8:03:da:f4:c4:d2:
d6:48:e2:5f:2d:0d:69:9a:58:19:62:07:eb:66:2e:
9b:d2:e3:3d:b5:78:3f:91:f8:dc:f1:21:52:a6:4f:
2e:1d:ae:51:b9:f2:6d:9b:87:46:ff:1b:ab:b9:4c:
9c:9f:a4:90:ad:e7:22:33:1e:b3:f1:4a:65:5b:49:
86:62:40:40:00:a1:dc:a4:64:0b:16:d9:3f:f2:24:
1a:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:36:0F:BC:F0:04:95:03:B9:4B:F0:E3:25:A2:5F:AB:CD:F7:A8:C4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/68D2DBCE4B8111F19C95C605CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.75.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:a5:dd:55:7f:1f:64:f2:0f:7f:98:36:ff:d4:6c:1f:7e:d8:
7c:6c:d1:3d:16:9f:ed:1d:f6:98:28:1f:ff:d4:60:97:e4:4c:
a9:50:9d:ca:53:75:a6:41:ee:78:e8:e4:c3:a8:7e:ac:99:cb:
63:8e:9b:a5:22:10:1f:94:2b:61:f0:85:03:62:87:c6:60:77:
2f:4f:03:b0:2c:c7:af:84:d9:56:51:3d:10:3f:92:ad:c4:c2:
94:c3:0d:3e:8d:e7:65:85:c3:23:10:6e:87:6e:f7:77:06:79:
a4:df:32:9b:ab:6a:f8:4d:de:30:7c:cc:12:0a:59:20:93:1e:
62:27:c4:5b:f0:7e:71:99:bd:26:45:37:27:ff:fd:cd:6f:f8:
a7:98:5c:60:3e:bd:21:c6:3b:7f:ae:c7:9a:c5:00:29:2b:b4:
39:a9:3f:d6:b4:6c:14:04:00:da:65:67:33:f5:ef:a3:ba:b2:
39:58:00:54:4b:43:16:b1:d5:13:37:27:6c:54:03:d3:56:4f:
81:4a:ab:86:f8:f8:b4:cb:f0:f8:e0:b7:b9:85:a3:a9:ef:57:
bd:c5:00:49:54:cc:ff:d4:b5:79:61:fd:4f:50:53:e3:70:26:
6f:8c:07:f4:72:40:51:e0:18:5e:e9:d0:b7:05:fe:88:be:80:
6a:ec:e3:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 12:24:37 2026 by rpki-client