Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7038806E4DD211F1B64ED118CF1D38B0.roa
File: 7038806E4DD211F1B64ED118CF1D38B0.roa (raw, json)
Hash identifier: uO0aO8NXT5R4YdajdA0Q2P3jcV9ytqc+WyRFVxG5Gso=
Subject key identifier: 3D:B8:E5:C3:16:BE:A2:D3:A5:65:76:F9:89:6C:73:CE:F1:49:94:7D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B3C9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7038806E4DD211F1B64ED118CF1D38B0.roa
Signing time: Tue 12 May 2026 07:16:05 +0000
ROA not before: Tue 12 May 2026 07:16:00 +0000
ROA not after: Thu 11 Jun 2026 07:16:00 +0000
asID: 209750
IP address blocks: 45.207.21.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111561 (0x1b3c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 12 07:16:00 2026 GMT
Not After : Jun 11 07:16:00 2026 GMT
Subject: CN=6a02d3b5-a776
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:18:32:7b:42:57:14:cf:ee:95:b3:49:77:46:
28:62:9a:8f:c9:54:70:aa:32:7d:06:40:e7:f9:27:
b0:85:47:51:b9:82:f5:04:10:fb:82:07:a4:ea:5a:
bc:c8:3f:1a:63:f0:8a:63:01:7a:ef:ef:d0:93:38:
af:a5:b2:a5:39:aa:a2:4d:66:47:df:3a:0b:c6:99:
0a:ed:b6:13:b7:ca:59:6e:0f:e1:4f:47:df:52:16:
ed:30:80:1f:98:2b:8f:d3:2d:6e:78:e0:24:74:41:
ac:a1:b5:10:99:94:ea:77:8a:5e:8c:47:aa:f9:d3:
a3:23:9b:55:1b:e9:2b:21:62:b6:bf:8f:df:6d:e6:
6a:b6:e6:15:36:56:b2:b0:0d:c6:6a:2b:21:fe:d6:
58:d6:93:37:ed:88:21:f4:2e:70:ee:ec:59:fa:62:
15:80:13:ac:8b:72:86:bb:fa:99:83:10:1f:84:9f:
22:87:47:36:43:56:5f:96:26:c0:42:2b:ca:f3:d1:
d4:6d:ec:ad:ea:dd:d6:97:ec:c3:8f:c1:07:12:b5:
be:64:a4:9d:da:73:bb:99:7d:79:af:3f:c6:01:ee:
31:b5:00:f2:ba:c6:be:8e:8c:99:bb:c7:9a:ad:9a:
a5:1f:91:ff:8f:57:8b:c0:6d:6a:f0:ca:af:5d:bc:
54:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:B8:E5:C3:16:BE:A2:D3:A5:65:76:F9:89:6C:73:CE:F1:49:94:7D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7038806E4DD211F1B64ED118CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.21.0/24
Signature Algorithm: sha256WithRSAEncryption
17:7d:f9:7c:98:47:0c:df:ec:2b:56:fe:7b:9a:37:33:fa:7d:
11:20:b2:56:8c:3b:b1:84:58:02:c5:23:33:90:d5:1c:2e:26:
03:25:0d:8b:6d:86:2d:12:76:2d:89:a9:54:30:3e:45:50:dd:
a1:18:c0:ed:a0:96:d8:09:25:e9:05:88:c6:53:17:1f:0d:5d:
02:e7:29:0b:d2:e8:87:72:23:4a:da:8c:09:f8:4b:41:da:65:
98:82:ce:79:e5:45:2e:65:53:53:78:ee:be:65:5d:0f:c1:d2:
c3:9b:92:1b:b7:2e:88:a2:30:45:b4:dd:22:d9:3c:f7:50:f9:
a9:ae:94:92:ae:cd:e8:f0:f7:5d:3c:fa:07:c0:0b:34:5a:c1:
85:8d:50:b8:19:02:3f:2f:ea:5e:53:c6:5d:d7:e2:cd:8c:03:
73:00:29:34:2c:a6:eb:2e:4b:cd:22:40:02:1f:c9:c4:25:a9:
60:59:d2:1f:39:d1:5a:6e:66:3e:36:0f:42:3f:1a:e9:0e:b8:
46:d4:84:89:c3:5c:5c:39:b1:99:cf:4b:9f:0d:6f:13:1d:3e:
8d:68:7d:3b:df:73:16:ba:ae:f0:e7:cc:55:de:87:63:92:46:
13:c3:19:f4:05:f5:78:61:05:83:8c:2f:c1:73:b8:86:f3:b6:
35:ec:00:a9
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAbPJMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwNTEyMDcxNjAwWhcNMjYwNjExMDcxNjAwWjAYMRYw
FAYDVQQDEw02YTAyZDNiNS1hNzc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA3hgye0JXFM/ulbNJd0YoYpqPyVRwqjJ9BkDn+SewhUdRuYL1BBD7ggek
6lq8yD8aY/CKYwF67+/QkzivpbKlOaqiTWZH3zoLxpkK7bYTt8pZbg/hT0ffUhbt
MIAfmCuP0y1ueOAkdEGsobUQmZTqd4pejEeq+dOjI5tVG+krIWK2v4/fbeZqtuYV
NlaysA3Gaish/tZY1pM37Ygh9C5w7uxZ+mIVgBOsi3KGu/qZgxAfhJ8ih0c2Q1Zf
libAQivK89HUbeyt6t3Wl+zDj8EHErW+ZKSd2nO7mX15rz/GAe4xtQDyusa+joyZ
u8earZqlH5H/j1eLwG1q8MqvXbxUkQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFD24
5cMWvqLTpWV2+Ylsc87xSZR9MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC83MDM4ODA2RTRERDIxMUYxQjY0RUQxMThDRjFEMzhCMC5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALc8VMA0GCSqGSIb3DQEBCwUA
A4IBAQAXffl8mEcM3+wrVv57mjcz+n0RILJWjDuxhFgCxSMzkNUcLiYDJQ2LbYYt
EnYtialUMD5FUN2hGMDtoJbYCSXpBYjGUxcfDV0C5ykL0uiHciNK2owJ+EtB2mWY
gs555UUuZVNTeO6+ZV0PwdLDm5Ibty6IojBFtN0i2Tz3UPmprpSSrs3o8PddPPoH
wAs0WsGFjVC4GQI/L+peU8Zd1+LNjANzACk0LKbrLkvNIkACH8nEJalgWdIfOdFa
bmY+Ng9CPxrpDrhG1ISJw1xcObGZz0ufDW8THT6NaH0733MWuq7w58xV3odjkkYT
wxn0BfV4YQWDjC/Bc7iG87Y17ACp
-----END CERTIFICATE-----
Generated at Wed May 13 13:08:39 2026 by rpki-client