Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1BBF7C44568911F1B38B0CABCE1D38B0.roa
File: 1BBF7C44568911F1B38B0CABCE1D38B0.roa (raw, json)
Hash identifier: xpw4GzkQhFoWgZsLCDDiIEv/ezRFJLGgN8DPg+YZaHw=
Subject key identifier: CD:FA:1F:5D:8B:C1:68:E7:EE:F5:FA:AA:D1:8D:D2:F0:F6:53:3F:CC
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B86A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1BBF7C44568911F1B38B0CABCE1D38B0.roa
Signing time: Sat 23 May 2026 09:23:50 +0000
ROA not before: Sat 23 May 2026 09:23:45 +0000
ROA not after: Fri 10 Jul 2026 09:23:45 +0000
asID: 395793
IP address blocks: 45.192.165.0/24 maxlen: 24
45.192.166.0/24 maxlen: 24
45.192.227.0/24 maxlen: 24
45.192.228.0/22 maxlen: 24
45.192.228.0/24 maxlen: 24
45.192.229.0/24 maxlen: 24
45.192.230.0/24 maxlen: 24
45.192.231.0/24 maxlen: 24
45.192.232.0/22 maxlen: 24
45.192.236.0/22 maxlen: 24
45.192.239.0/24 maxlen: 24
45.192.244.0/24 maxlen: 24
45.194.1.0/24 maxlen: 24
45.194.4.0/24 maxlen: 24
45.195.63.0/24 maxlen: 24
45.196.68.0/24 maxlen: 24
45.198.228.0/24 maxlen: 24
45.198.229.0/24 maxlen: 24
45.198.230.0/24 maxlen: 24
45.198.231.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112746 (0x1b86a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 23 09:23:45 2026 GMT
Not After : Jul 10 09:23:45 2026 GMT
Subject: CN=6a117226-f4ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:6b:a7:3e:d8:ae:75:88:06:6c:76:e9:86:8e:
c3:93:df:a5:06:1a:3f:2d:00:51:39:5e:d2:4f:80:
6a:8a:eb:f9:9b:66:68:9b:76:d8:81:15:e2:0b:11:
6b:53:80:9b:f1:5b:32:3d:0c:af:00:fd:da:e7:41:
c2:0a:13:f6:da:24:81:eb:ea:c5:06:f6:21:99:ee:
30:f0:3c:92:81:f5:00:8e:21:10:ff:cd:d0:f1:ba:
9c:85:04:63:f2:b7:e7:9a:74:36:d0:eb:99:0d:da:
fb:4f:99:5b:c8:4f:bf:48:01:f2:a4:02:72:4a:a0:
35:3e:eb:07:58:98:5b:d7:9d:46:cd:95:88:c6:2c:
46:06:73:2c:9b:69:bf:44:57:54:61:4f:0f:f0:a6:
df:1a:96:38:d1:7e:3a:b6:cd:6f:c1:d5:30:1a:5d:
e9:94:a9:b2:90:3a:f3:75:10:f0:e1:aa:39:4c:a2:
9a:29:74:62:6b:40:af:6e:1a:47:e6:7e:f1:ac:91:
e7:45:24:7c:17:b0:7e:d4:ca:08:88:4a:f9:23:93:
40:21:87:b7:c8:32:97:56:ec:f0:bf:10:50:5e:2f:
70:cd:c8:22:19:5c:f3:1e:bc:0b:e5:e7:a2:a3:d2:
f3:90:1a:2f:ba:c2:71:1b:66:4c:1a:e5:34:8d:ff:
98:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:FA:1F:5D:8B:C1:68:E7:EE:F5:FA:AA:D1:8D:D2:F0:F6:53:3F:CC
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1BBF7C44568911F1B38B0CABCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.165.0-45.192.166.255
45.192.227.0-45.192.239.255
45.192.244.0/24
45.194.1.0/24
45.194.4.0/24
45.195.63.0/24
45.196.68.0/24
45.198.228.0/22
Signature Algorithm: sha256WithRSAEncryption
88:bc:97:90:8a:94:dd:38:89:05:dd:54:82:ea:02:c2:f1:8c:
2f:26:3c:ae:22:45:a9:6b:11:16:23:6f:d0:1b:ca:b2:35:4f:
33:89:d0:f4:a2:8e:d7:db:d0:2b:b6:0a:6b:c6:a8:58:97:a9:
27:9b:2e:5c:b0:d2:3a:ea:0f:0e:9d:38:af:21:cb:8a:d5:fa:
32:bf:db:32:fe:ef:52:ba:62:16:db:98:7f:60:0e:8c:78:0c:
ae:3c:9d:d2:71:8d:91:47:c2:0a:54:17:9a:bb:68:a5:60:f4:
31:01:51:e2:1e:cd:46:bf:ab:b5:11:31:36:fe:f2:1e:d5:24:
49:08:01:51:e2:a7:44:bc:fe:bd:19:5b:1c:57:bc:5b:ce:97:
f5:20:ba:ac:2e:93:d0:43:ff:76:50:5d:82:3c:71:bb:ce:a1:
65:1f:9b:56:d4:93:74:18:74:91:44:85:bc:dd:c8:a8:cb:37:
2e:9e:33:52:d4:68:08:69:1e:e4:dd:73:62:19:c7:80:1f:25:
c4:6e:64:41:1d:85:a7:a1:da:52:f8:25:e9:77:1f:85:84:ef:
20:a2:7b:0c:ba:49:10:62:b9:df:02:04:19:2a:8e:67:a7:99:
94:d1:0b:72:e4:ff:82:e1:8b:7f:f4:05:5a:8a:7e:da:25:21:
f4:3a:89:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:07:22 2026 by rpki-client