Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/29B3285E4F6411F19CF935A6CE1D38B0.roa
File: 29B3285E4F6411F19CF935A6CE1D38B0.roa (raw, json)
Hash identifier: R7IumFZInvhXZOurCiHM29z62icp4vCxQ87uZrZNEwI=
Subject key identifier: D6:F7:72:36:79:67:2C:49:D2:60:88:F9:5D:41:FA:C0:7B:1A:FB:62
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B46F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/29B3285E4F6411F19CF935A6CE1D38B0.roa
Signing time: Thu 14 May 2026 07:11:44 +0000
ROA not before: Thu 14 May 2026 07:11:40 +0000
ROA not after: Mon 22 Jun 2026 07:11:40 +0000
asID: 397071
IP address blocks: 45.195.134.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 21 May 2026 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111727 (0x1b46f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 14 07:11:40 2026 GMT
Not After : Jun 22 07:11:40 2026 GMT
Subject: CN=6a0575b0-b641
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:cc:67:90:0d:04:ea:5d:37:d3:01:b7:66:76:
f6:e3:5f:03:5d:9e:25:d2:57:a3:fa:47:2f:18:0c:
38:40:b9:fd:de:ce:ea:e2:1e:b7:dd:02:42:0a:7c:
87:5e:63:8b:16:64:b4:4e:2a:31:7c:20:b2:d0:a5:
8c:f9:48:2a:9a:b9:4a:80:9a:46:81:51:7c:f5:47:
55:46:d6:92:28:cb:c0:5a:db:47:67:70:f1:d9:0f:
83:a2:e1:81:ea:4f:d0:bb:2e:d2:f1:f1:56:be:a7:
6f:a1:2a:8e:d8:b4:63:1b:9d:be:9a:f9:3b:eb:62:
00:de:67:a7:bc:de:63:4e:ec:43:0a:74:3d:71:9d:
55:04:40:93:f2:a8:44:97:22:6e:2e:0c:72:42:1c:
39:7b:66:e9:61:b3:3e:45:97:11:c8:78:d2:47:0f:
e6:9a:85:1d:43:e0:5d:04:35:62:71:de:97:ec:16:
2b:2d:f2:32:05:f8:20:8d:b3:10:8a:16:3b:b1:16:
6e:bd:3e:8f:e4:64:52:d5:db:29:03:3e:ef:9b:60:
a4:7d:a5:95:f8:19:ca:87:ce:26:5a:e5:5e:12:af:
16:c3:ab:12:2f:e4:3c:55:98:30:ef:ab:63:f5:61:
a3:47:1f:be:63:d1:d8:b0:ee:43:dc:0f:2d:b8:1b:
cb:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:F7:72:36:79:67:2C:49:D2:60:88:F9:5D:41:FA:C0:7B:1A:FB:62
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/29B3285E4F6411F19CF935A6CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.134.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:aa:a7:38:a0:eb:43:cd:ee:5a:ef:00:0c:c4:44:65:ab:16:
43:cb:24:ae:5e:c9:d0:8c:fc:b3:5b:42:a4:90:f3:01:ea:cd:
53:50:a6:7b:e9:2d:d9:af:64:38:f3:ef:03:3e:d7:bd:24:0c:
e7:80:df:6f:1b:5d:37:6a:f5:98:e8:7d:3b:6b:73:7b:8a:29:
a0:e9:57:28:29:72:3b:e1:98:20:f5:be:98:ff:61:2f:0b:9a:
80:df:70:84:2d:29:32:93:ce:c1:61:9a:c9:51:bf:db:00:84:
54:52:70:23:1b:00:06:a0:a6:a4:1a:ca:3b:79:ca:f3:45:bf:
50:de:b9:44:0d:ea:9f:8c:f0:a1:03:35:28:3d:c7:64:e7:22:
5f:02:99:8e:ee:2b:d1:37:a6:e2:6c:ef:44:a7:78:13:31:92:
50:ec:a2:3e:54:8f:10:19:60:1f:d8:45:d5:a3:23:63:b3:5f:
29:60:3d:42:bf:00:33:30:d3:1c:ca:a5:93:e0:7d:84:9c:f7:
5f:8c:91:8b:3d:81:44:95:f2:49:86:a5:20:02:02:44:e8:a0:
48:8e:6e:70:b5:4a:c3:0d:3b:46:83:cd:93:f2:38:3e:26:2e:
9c:1f:21:09:5b:0d:5e:00:53:4d:8e:bb:d4:57:ea:b4:bf:8b:
b3:ce:c1:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 19 09:28:38 2026 by rpki-client