Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/24EEB85E578611F191B140A5CE1D38B0.roa
File: 24EEB85E578611F191B140A5CE1D38B0.roa (raw, json)
Hash identifier: 9ct2MdtUa4RUuZ12WsvsxwoWHWwflM0S6NzV8t0W9S8=
Subject key identifier: A6:1F:F4:CA:CC:BA:4A:8C:0A:D4:7A:2E:11:DB:CC:A7:39:84:2F:3B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B910
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/24EEB85E578611F191B140A5CE1D38B0.roa
Signing time: Sun 24 May 2026 15:35:08 +0000
ROA not before: Sun 24 May 2026 15:35:04 +0000
ROA not after: Thu 02 Jul 2026 15:35:04 +0000
asID: 11427
IP address blocks: 45.202.92.0/22 maxlen: 24
45.202.96.0/22 maxlen: 24
45.202.116.0/23 maxlen: 24
45.202.120.0/22 maxlen: 24
45.207.0.0/23 maxlen: 24
45.207.36.0/22 maxlen: 24
45.207.48.0/21 maxlen: 24
45.207.164.0/23 maxlen: 24
45.207.170.0/23 maxlen: 24
45.207.174.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112912 (0x1b910)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 24 15:35:04 2026 GMT
Not After : Jul 2 15:35:04 2026 GMT
Subject: CN=6a131aac-c97b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:77:51:f8:ff:a2:3e:bf:c5:76:e3:a9:4a:00:
b3:64:71:3c:74:04:b3:d1:ae:a7:69:8a:3a:89:4e:
29:24:45:98:ba:e9:fe:db:84:5f:13:98:46:95:ef:
7f:2b:0e:bd:a6:d9:63:bd:4a:8f:f7:16:e3:ff:04:
40:83:ad:04:df:a3:6f:ca:0e:c7:14:0e:97:b0:73:
38:65:49:fe:dd:fa:f6:93:d1:62:e1:fb:b4:52:58:
c0:28:1d:49:da:0a:e2:52:be:86:40:84:24:71:63:
b6:2d:e3:be:e1:c5:8a:c4:be:fc:16:08:79:f4:17:
cc:2c:a4:4f:0f:17:ab:17:20:c8:6e:ad:6b:41:b8:
72:22:5f:fe:bc:25:5a:d6:ab:91:05:0c:26:f2:f3:
f6:94:84:cf:35:4c:5e:74:a2:b3:c6:2f:40:aa:3d:
c8:61:0a:1e:94:07:a8:54:7d:e5:c5:20:63:bb:45:
9a:b9:af:9c:dc:2a:db:d9:92:63:90:49:18:b4:62:
ae:52:0a:5d:cf:d1:03:29:fb:cf:06:ff:e6:78:8f:
29:a3:50:51:c3:88:f3:6b:ea:10:bb:b0:79:3e:c2:
78:cf:d7:bb:9e:49:25:45:f0:42:6e:f2:0c:0b:f7:
66:f6:96:8f:f2:1c:94:97:ec:41:4a:21:62:56:d5:
bf:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:1F:F4:CA:CC:BA:4A:8C:0A:D4:7A:2E:11:DB:CC:A7:39:84:2F:3B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/24EEB85E578611F191B140A5CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.92.0-45.202.99.255
45.202.116.0/23
45.202.120.0/22
45.207.0.0/23
45.207.36.0/22
45.207.48.0/21
45.207.164.0/23
45.207.170.0/23
45.207.174.0/23
Signature Algorithm: sha256WithRSAEncryption
2b:f9:33:6c:ff:6f:c3:ce:c9:7f:3f:8e:40:31:96:6f:71:d0:
7c:9e:b0:44:db:6f:c6:79:de:fa:9d:23:db:84:fa:9b:99:ab:
fd:ce:cb:c1:bb:e4:74:9c:04:76:9b:3d:6f:aa:68:88:e9:86:
75:83:26:67:a9:72:c9:b5:c8:73:8f:3d:db:d0:7b:07:61:82:
eb:6d:35:0c:57:b5:85:9f:09:6d:6d:65:4d:3d:74:54:74:1e:
92:bd:7d:cd:63:93:d7:1c:5d:05:ec:c1:2e:b4:20:6c:05:89:
cd:d4:73:bd:3a:4d:13:5c:20:c0:65:16:63:4c:1c:58:fa:29:
e4:2b:ae:6a:54:8d:f8:66:3a:92:cb:9e:48:16:1b:21:d9:37:
26:f6:c7:56:f0:20:b5:20:bb:55:ba:63:58:8a:04:86:dc:76:
87:92:4d:43:90:71:62:4f:55:93:24:10:27:0a:91:8a:d2:c2:
bb:98:7a:a6:0f:fa:c8:29:16:4c:88:3a:dc:ac:5f:8e:f0:d7:
7f:51:6e:e4:90:04:51:25:d6:96:5b:e3:45:e9:d8:dd:42:3a:
d0:14:e5:a1:16:40:a3:76:e6:a4:9c:59:94:c7:9a:3c:2f:26:
be:63:01:95:8e:6e:79:de:d2:07:a2:d0:5a:3e:ff:e4:5f:e6:
34:24:4e:f0
-----BEGIN CERTIFICATE-----
MIIFuTCCBKGgAwIBAgIDAbkQMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwNTI0MTUzNTA0WhcNMjYwNzAyMTUzNTA0WjAYMRYw
FAYDVQQDEw02YTEzMWFhYy1jOTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA7HdR+P+iPr/FduOpSgCzZHE8dASz0a6naYo6iU4pJEWYuun+24RfE5hG
le9/Kw69ptljvUqP9xbj/wRAg60E36Nvyg7HFA6XsHM4ZUn+3fr2k9Fi4fu0UljA
KB1J2griUr6GQIQkcWO2LeO+4cWKxL78Fgh59BfMLKRPDxerFyDIbq1rQbhyIl/+
vCVa1quRBQwm8vP2lITPNUxedKKzxi9Aqj3IYQoelAeoVH3lxSBju0Waua+c3Crb
2ZJjkEkYtGKuUgpdz9EDKfvPBv/meI8po1BRw4jza+oQu7B5PsJ4z9e7nkklRfBC
bvIMC/dm9paP8hyUl+xBSiFiVtW/kwIDAQABo4IC2jCCAtYwHQYDVR0OBBYEFKYf
9MrMukqMCtR6LhHbzKc5hC87MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8yNEVFQjg1RTU3ODYxMUYxOTFCMTQwQTVDRTFEMzhCMC5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MFcGCCsGAQUFBwEHAQH/BEgwRjBEBAIAATA+MAwDBAItylwDBAItymADBAEtynQD
BAItyngDBAEtzwADBAItzyQDBAMtzzADBAEtz6QDBAEtz6oDBAEtz64wDQYJKoZI
hvcNAQELBQADggEBACv5M2z/b8POyX8/jkAxlm9x0HyesETbb8Z53vqdI9uE+puZ
q/3Oy8G75HScBHabPW+qaIjphnWDJmepcsm1yHOPPdvQewdhguttNQxXtYWfCW1t
ZU09dFR0HpK9fc1jk9ccXQXswS60IGwFic3Uc706TRNcIMBlFmNMHFj6KeQrrmpU
jfhmOpLLnkgWGyHZNyb2x1bwILUgu1W6Y1iKBIbcdoeSTUOQcWJPVZMkECcKkYrS
wruYeqYP+sgpFkyIOtysX47w139RbuSQBFEl1pZb40Xp2N1COtAU5aEWQKN25qSc
WZTHmjwvJr5jAZWObnne0gei0Fo+/+Rf5jQkTvA=
-----END CERTIFICATE-----
Generated at Tue Jun 2 21:14:19 2026 by rpki-client