Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8BC1647C4CF611F19462A6E1CE1D38B0.roa
File: 8BC1647C4CF611F19462A6E1CE1D38B0.roa (raw, json)
Hash identifier: 2DjmrwKRATFZ1F7hSkDYm9X7js+OFUYXQbODyI1i+uc=
Subject key identifier: B0:B6:87:DA:30:CC:9D:68:2A:4F:5B:0F:65:61:A0:19:F0:36:90:AC
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B39B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8BC1647C4CF611F19462A6E1CE1D38B0.roa
Signing time: Mon 11 May 2026 05:02:02 +0000
ROA not before: Mon 11 May 2026 05:01:57 +0000
ROA not after: Sun 21 Jun 2026 05:01:57 +0000
asID: 32043
IP address blocks: 45.203.224.0/24 maxlen: 24
45.203.225.0/24 maxlen: 24
45.203.226.0/24 maxlen: 24
45.203.227.0/24 maxlen: 24
45.203.228.0/24 maxlen: 24
45.203.229.0/24 maxlen: 24
45.203.230.0/24 maxlen: 24
45.203.231.0/24 maxlen: 24
45.203.232.0/24 maxlen: 24
45.203.233.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111515 (0x1b39b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 11 05:01:57 2026 GMT
Not After : Jun 21 05:01:57 2026 GMT
Subject: CN=6a0162ca-3ee1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:8d:3a:bb:47:ee:6f:20:be:89:96:f2:dc:7e:
37:73:5c:e4:9e:d2:1f:c1:d9:da:d7:81:5e:7f:2f:
cf:ae:c6:04:15:3c:2d:15:4f:5d:71:74:9b:bb:4b:
e2:1c:5f:88:04:fb:8f:87:ca:8c:d3:d7:10:a7:73:
d8:87:a9:e1:5a:22:5a:f6:d5:0a:a3:6a:a3:3a:51:
2e:38:ee:d0:89:bb:76:b0:4d:70:17:7e:e2:0f:68:
52:cb:90:07:27:29:4b:da:cc:fd:9d:ee:75:ba:d8:
17:b9:d0:90:57:ff:50:ad:c7:b7:a2:a8:f4:52:07:
c7:bb:7a:0d:34:b5:77:da:f6:ec:60:06:80:29:85:
88:db:0f:c3:55:ad:0f:5d:dc:1a:c1:b1:26:ba:d7:
4b:68:78:8c:79:fe:1d:85:79:87:36:74:90:d1:00:
1d:92:3a:ca:63:77:01:aa:a7:6b:b5:43:d5:2c:95:
8e:7c:65:d9:85:13:e1:5a:f4:57:9e:40:47:10:03:
50:e4:67:86:0b:d9:f7:ab:b6:4b:36:bc:25:42:57:
1f:a8:b6:54:40:28:0c:53:7a:3c:d9:e9:dc:f3:e2:
38:0c:87:74:aa:3c:7b:46:be:fc:04:fa:63:72:03:
96:de:6e:3c:d2:fe:16:b5:6b:a6:74:d4:97:d8:ff:
6d:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:B6:87:DA:30:CC:9D:68:2A:4F:5B:0F:65:61:A0:19:F0:36:90:AC
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8BC1647C4CF611F19462A6E1CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.203.224.0-45.203.233.255
Signature Algorithm: sha256WithRSAEncryption
a8:b5:cd:27:7c:13:aa:11:5a:3c:65:ef:5d:13:2a:ff:22:04:
1d:fb:e3:55:f0:79:4a:72:b5:d5:9d:aa:94:25:21:7d:bd:81:
68:cb:b0:6c:aa:d5:5f:a6:3d:b5:de:41:8c:fe:ee:8f:5a:ef:
f5:c9:9f:8d:94:aa:bb:d6:ea:ae:70:52:3f:e9:1b:b9:ce:d7:
04:e4:93:5e:cc:bc:e6:d8:83:e5:91:53:8d:f7:e2:a4:b5:d9:
33:2e:46:a8:d4:da:2d:0b:19:34:c3:69:4e:de:a7:58:b9:56:
40:2e:27:74:b9:2a:12:b4:13:a0:97:3f:f5:02:b1:4e:7f:e3:
e4:2d:4c:a9:a6:68:f5:b7:34:76:ee:4f:44:2b:af:8c:e6:91:
5b:bf:98:68:73:cd:f0:a0:bd:33:9d:e2:2d:04:6b:3a:c5:1f:
51:b3:50:8b:8b:10:2d:02:9e:ff:7e:71:22:5f:ee:a0:89:0b:
d2:a3:bf:27:2c:7b:f7:81:d2:c1:11:0d:a8:af:04:64:9f:08:
01:9c:04:9f:5b:04:3a:04:e7:e4:21:bf:11:6c:76:f6:03:11:
4f:66:d9:b2:83:e0:e1:97:08:19:ee:2b:f5:2a:fa:ae:82:f8:
e9:f3:77:a9:1b:ce:b7:56:51:05:63:b1:71:54:a2:c9:76:b0:
e4:12:aa:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 13:08:50 2026 by rpki-client