Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/167366BE583D11F1B280A300CF1D38B0.roa
File: 167366BE583D11F1B280A300CF1D38B0.roa (raw, json)
Hash identifier: IZrVya0FDmkO0cJVei5QWT5tE8sGtQHwPKT4sR8lkkE=
Subject key identifier: 06:08:92:2A:1D:A8:31:6A:D9:98:C8:1E:06:8C:AB:C5:B9:FD:3A:74
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B99A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/167366BE583D11F1B280A300CF1D38B0.roa
Signing time: Mon 25 May 2026 13:24:42 +0000
ROA not before: Mon 25 May 2026 13:24:36 +0000
ROA not after: Wed 19 Aug 2026 13:24:36 +0000
asID: 55020
IP address blocks: 45.195.112.0/21 maxlen: 24
45.195.120.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113050 (0x1b99a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 25 13:24:36 2026 GMT
Not After : Aug 19 13:24:36 2026 GMT
Subject: CN=6a144d9a-3353
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:fb:a9:96:9c:4d:23:0c:76:42:dc:9c:83:55:
09:50:b9:e2:51:53:bf:a9:14:10:c2:86:af:d7:1d:
e8:c9:56:b3:ea:5c:c1:63:d3:63:dc:19:a2:08:a0:
d5:70:a5:69:21:05:f0:ac:3c:83:12:00:62:93:44:
e0:da:45:a2:9c:5a:e6:54:5f:66:a8:4a:11:e6:11:
ff:08:76:5e:56:7d:aa:48:c5:1a:2d:09:28:1a:79:
37:f3:fe:4c:97:90:45:7a:41:ad:b5:0b:dc:bd:bd:
97:3e:46:d9:10:df:02:bf:ae:69:ac:96:a6:cd:c4:
50:c3:57:9a:76:ca:e0:b8:86:a2:3f:78:01:31:9f:
4d:2a:4a:77:a2:79:85:e5:5b:26:5b:86:a4:b3:b3:
2a:de:26:ae:5b:b0:f7:76:75:bd:b1:96:2c:08:46:
bc:9f:f3:3d:a0:5d:e7:7b:a3:92:39:fc:79:58:84:
fc:27:b2:b2:ed:c6:c6:df:b5:00:e4:7b:99:6c:dd:
1b:ac:99:7c:1b:4e:c8:2f:c6:83:df:eb:34:e9:30:
3f:30:57:5c:54:fa:62:45:53:24:14:2b:25:61:45:
1d:96:00:01:07:bd:c8:60:c7:ce:de:ba:f1:d8:a6:
54:50:7f:33:54:ab:70:b3:89:80:71:e8:7c:10:ba:
e3:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:08:92:2A:1D:A8:31:6A:D9:98:C8:1E:06:8C:AB:C5:B9:FD:3A:74
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/167366BE583D11F1B280A300CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.112.0/20
Signature Algorithm: sha256WithRSAEncryption
5f:0c:fc:e5:7e:d7:79:32:be:de:d9:41:ea:d9:a0:c6:c1:76:
04:f0:3e:fb:5f:ef:79:6b:3b:cc:1f:26:df:42:8b:73:4a:51:
0f:28:6f:8b:9a:85:74:38:54:ee:d2:7d:0f:05:be:97:7e:a1:
19:2a:11:44:dd:a9:69:5d:09:6f:84:a0:15:ed:39:46:9b:48:
2d:fb:8c:b9:3d:a8:80:a8:47:6b:14:7c:6f:ac:9a:26:da:4a:
cd:82:cc:70:4c:72:0c:5c:e8:84:04:32:81:3c:eb:91:a8:5d:
c5:fa:a8:1d:f0:6f:ae:85:d1:bd:1b:a3:f0:df:fb:3a:64:f2:
40:15:f3:e3:64:23:b2:3c:ed:8a:4b:f8:20:08:64:17:e1:36:
25:43:1d:0c:6c:48:1e:f7:69:2c:f1:83:7d:06:5c:f8:59:6e:
b5:d9:49:ff:8f:7d:36:34:bf:5f:26:a8:5e:6f:1e:73:9a:d4:
24:86:9a:96:19:4e:20:d4:f8:d3:f9:6e:3d:ad:e0:ae:e5:62:
95:fa:a9:9a:56:b7:81:ec:5f:1f:72:46:9a:4f:1f:d3:87:18:
c6:97:d6:16:5d:2a:f2:09:48:51:8f:39:d7:b6:01:a8:7f:c8:
54:52:e5:e5:63:00:b4:f9:35:8f:1b:fa:7c:58:4d:bb:80:d1:
3a:44:18:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:07:04 2026 by rpki-client