Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1204ADD6560D11F1AA13D8A8CE1D38B0.roa
File: 1204ADD6560D11F1AA13D8A8CE1D38B0.roa (raw, json)
Hash identifier: 4KGNRqMFhywa7Mc2Xkavoc1EIGRHjkJhOqySprrFTCM=
Subject key identifier: 24:75:EB:0E:BC:46:D9:9E:52:17:12:69:AE:77:9E:33:F8:58:E0:75
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B838
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1204ADD6560D11F1AA13D8A8CE1D38B0.roa
Signing time: Fri 22 May 2026 18:35:56 +0000
ROA not before: Fri 22 May 2026 18:35:52 +0000
ROA not after: Thu 02 Jul 2026 18:35:52 +0000
asID: 202972
IP address blocks: 45.194.120.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112696 (0x1b838)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 22 18:35:52 2026 GMT
Not After : Jul 2 18:35:52 2026 GMT
Subject: CN=6a10a20c-374d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:15:30:3d:3a:eb:1a:8e:5d:51:25:47:bb:4d:
3c:e8:3d:74:1f:1b:40:48:06:43:5b:20:10:c1:4a:
9e:e0:a6:59:b0:56:28:74:05:2a:5e:3d:fa:d6:ed:
12:38:fa:67:cb:6b:6f:81:41:39:c9:a6:0e:80:98:
f9:8a:d1:3d:a8:3f:78:9c:27:a8:69:0b:71:b9:5c:
7c:a5:c0:88:4a:c4:93:3c:24:f6:41:14:d0:4f:a3:
60:d7:97:84:76:3f:d7:fe:c5:76:81:7d:f3:43:60:
6f:9e:18:3c:9e:51:07:55:88:14:eb:5e:3e:59:2c:
dc:60:28:ff:bb:e5:b8:ce:77:3a:02:f8:55:04:f8:
ac:af:19:92:ea:93:55:7e:2d:dd:7f:bf:3f:42:10:
bd:d2:6b:c7:1d:aa:fb:a5:26:14:76:e9:a4:69:67:
f3:93:62:28:6b:d9:4a:aa:b8:23:1e:76:c1:5d:c6:
7e:41:a0:43:f3:3e:de:75:69:7f:28:fe:f2:06:e3:
8d:eb:0f:d1:9f:f7:a1:c5:8a:e4:7e:2c:fa:e5:6e:
e2:85:27:25:3e:93:d5:92:37:55:56:8a:26:f6:79:
a7:31:20:ad:2b:4e:25:d0:ad:62:11:3d:4f:a2:67:
19:a9:f2:f6:17:8b:a5:72:9d:64:29:d7:be:d6:46:
1d:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:75:EB:0E:BC:46:D9:9E:52:17:12:69:AE:77:9E:33:F8:58:E0:75
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1204ADD6560D11F1AA13D8A8CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.120.0/24
Signature Algorithm: sha256WithRSAEncryption
99:c7:1a:70:05:f9:84:c9:70:e5:69:b3:10:f4:b2:49:80:21:
61:81:13:7b:b5:d7:a8:2f:db:48:03:71:00:d6:1a:a2:a8:11:
b3:18:9b:8f:dc:d7:e8:c8:66:07:01:0b:b2:75:fb:b0:c2:da:
47:2c:85:6d:da:03:4c:35:9f:07:6c:84:6c:4a:87:a4:7d:c8:
65:12:a0:fa:fc:81:2e:95:a6:26:4b:a2:54:da:c2:1b:fa:a8:
87:4f:c5:6c:85:be:e2:60:83:01:5a:68:8d:3b:00:de:28:b2:
e6:c5:ab:1d:56:74:1a:00:1e:4c:54:cf:07:c5:34:7b:8c:f9:
92:4a:9c:fe:8a:86:b2:ee:14:33:9b:ff:e4:ca:f1:6f:f0:e4:
19:dd:60:21:03:01:73:3d:76:30:e2:db:01:25:12:3a:ff:19:
05:c5:11:df:97:5d:61:34:0e:ce:d0:ee:c0:43:78:82:fa:45:
c7:c0:7c:e1:39:e3:2a:56:b9:ec:46:ff:71:f9:80:81:b8:ef:
0a:0e:54:a6:fd:01:22:3d:1e:cd:74:e5:55:a1:0c:37:be:c5:
f8:2f:4d:80:61:12:09:84:8f:95:d3:29:11:64:3c:53:f1:66:
ec:b9:ed:f8:0d:71:1b:b7:db:0a:d4:ac:7e:42:be:c6:70:39:
35:9c:9e:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:14:13 2026 by rpki-client