Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C93FC3801D3411F1B6E32092DAE4EC9C.roa
File: C93FC3801D3411F1B6E32092DAE4EC9C.roa (raw, json)
Hash identifier: HWSwUFM8Y2AE0QTldCWD1+NYT4oj4WPVXrOZoF9sPhg=
Subject key identifier: 54:FF:5B:5A:E8:C0:92:97:E7:A6:C2:F5:74:EE:A6:AF:97:7E:85:E4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A43D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C93FC3801D3411F1B6E32092DAE4EC9C.roa
Signing time: Wed 11 Mar 2026 10:26:38 +0000
ROA not before: Wed 11 Mar 2026 10:26:32 +0000
ROA not after: Sun 11 Mar 2029 10:26:32 +0000
asID: 17561
IP address blocks: 45.206.72.0/24 maxlen: 24
45.206.73.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 27 Mar 2026 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107581 (0x1a43d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 11 10:26:32 2026 GMT
Not After : Mar 11 10:26:32 2029 GMT
Subject: CN=69b1435e-ad7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:c7:f2:de:01:95:9e:14:a5:25:a5:50:17:c6:
de:fd:ca:a7:e1:a1:13:fa:bd:e6:e1:93:21:7c:84:
6f:18:eb:6c:19:c5:f3:3c:9e:91:2c:ce:83:b7:d6:
7b:b9:cc:1d:15:6f:d1:1d:32:65:c3:8d:35:d6:8a:
67:43:c5:23:1e:f4:b0:22:c1:ff:ba:a3:91:1a:ef:
42:25:2e:28:9f:02:8c:62:c6:82:a2:de:52:00:c6:
26:2d:20:dd:38:22:4a:4d:4d:bc:1e:70:3f:28:c9:
98:7d:c7:8f:fa:3e:f9:eb:57:7b:35:fa:c7:19:5a:
7e:34:2b:fb:ba:85:a9:bf:cb:5e:30:04:e6:72:4c:
d0:a5:72:38:31:c7:25:f3:0c:cd:60:c9:a4:39:87:
f6:c4:1e:14:91:0b:4a:a9:7d:2b:4b:7c:dc:87:4e:
c7:7d:d2:b4:20:fe:36:1c:e0:21:b1:67:8f:1b:2f:
50:30:74:de:24:68:70:20:6e:5f:d4:61:2f:04:3a:
80:64:b7:bd:40:d8:96:75:6e:e6:db:47:72:76:8c:
c4:f1:dc:22:b3:39:d9:58:d3:bd:37:49:fd:56:21:
64:1f:a0:0e:df:7b:26:34:57:20:9b:62:67:7d:c1:
f8:b8:30:3e:bf:f7:64:59:61:52:04:cf:f2:88:ea:
71:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:FF:5B:5A:E8:C0:92:97:E7:A6:C2:F5:74:EE:A6:AF:97:7E:85:E4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C93FC3801D3411F1B6E32092DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.206.72.0/23
Signature Algorithm: sha256WithRSAEncryption
17:27:2b:24:05:b8:29:4c:93:3a:12:93:10:a5:3a:dc:aa:95:
1e:bc:66:1f:f8:25:88:0b:8e:d6:2e:8c:0a:f0:0f:b0:77:2f:
78:a8:52:8e:a8:f7:54:57:2a:fe:8e:fc:1e:c5:6c:53:b0:e7:
65:f3:78:ed:f3:b1:11:bc:8d:fc:93:45:9b:52:d7:d3:f2:9a:
af:3d:68:ad:0a:ea:98:18:c1:d3:f8:5e:27:0c:de:db:b3:d7:
ec:28:7a:2a:e9:2c:39:f6:65:00:98:38:f7:65:0f:bb:05:cd:
b2:a1:8c:0b:6d:0c:9e:42:76:ef:78:d5:4e:c6:6d:18:d7:af:
bd:cd:2f:07:7f:9d:17:16:38:58:89:c5:e5:04:29:f7:4f:61:
5d:90:18:b9:a0:df:7f:ed:6b:cc:c9:2f:6b:48:56:d1:28:51:
fe:36:67:3d:8e:0b:f4:c0:4c:f0:69:66:94:a2:82:06:ef:dc:
71:73:5b:5a:1f:b4:0c:46:d5:42:f4:b6:c7:fb:fb:ff:f1:ff:
4b:7e:82:95:a4:b8:d5:06:78:fd:02:6c:16:22:8f:82:7e:b1:
55:22:37:dc:63:ef:c2:e2:90:d2:ae:36:33:0c:ea:33:20:95:
18:0e:08:b6:81:2f:94:53:37:5d:f8:4f:e9:45:46:d3:9e:ff:
7f:1d:60:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:10:34 2026 by rpki-client