Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4B62D42C340711F182FA98CFCE1D38B0.roa
File: 4B62D42C340711F182FA98CFCE1D38B0.roa (raw, json)
Hash identifier: uy2zpognm9LdcRMVCu5jlcz3rvs6+/YXOjQyoPxhh84=
Subject key identifier: 00:F4:4D:96:93:F5:DE:20:29:79:E2:1E:5F:1A:E9:43:F7:3B:80:4A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AB4A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4B62D42C340711F182FA98CFCE1D38B0.roa
Signing time: Thu 09 Apr 2026 11:28:56 +0000
ROA not before: Thu 09 Apr 2026 11:28:51 +0000
ROA not after: Thu 14 May 2026 11:28:51 +0000
asID: 402289
IP address blocks: 45.197.25.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 14 Apr 2026 00:26:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109386 (0x1ab4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 9 11:28:51 2026 GMT
Not After : May 14 11:28:51 2026 GMT
Subject: CN=69d78d78-909a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:59:b9:43:43:77:ba:14:d4:0e:7d:26:f7:51:
7b:74:de:8d:98:a3:b9:26:41:fc:c5:88:41:1e:7e:
fc:71:f0:cc:f7:3a:74:5f:0f:87:ca:b4:44:21:3c:
31:d0:30:3a:65:8a:6f:7d:de:73:68:ed:9f:9f:7e:
fa:35:5e:ca:d8:d3:f8:8f:52:ac:a9:89:88:aa:f2:
5a:a5:47:85:df:f9:82:97:34:50:28:b8:ab:9d:ae:
bc:f0:3f:fc:8c:9e:3c:15:26:ed:e7:a7:63:1e:8c:
0c:1c:48:97:0e:f8:0c:c3:8c:0c:b6:29:45:83:ac:
74:51:f7:3e:8e:b0:d5:8b:3d:07:39:89:1d:9f:67:
6c:2a:05:98:07:8c:7b:41:8b:14:94:0a:77:6a:cd:
3e:79:3a:0e:a1:a5:14:74:1e:22:f4:7f:6c:17:f4:
dd:6d:b6:1f:0a:71:ed:b4:77:6a:54:b5:e9:53:c1:
c3:21:09:75:61:34:3f:69:e4:78:d9:6a:b3:2c:66:
61:c7:83:2e:de:83:33:33:40:47:45:0e:43:8f:77:
b6:a1:a9:18:60:b7:b1:be:fa:68:b3:d0:20:45:4d:
66:bb:5a:b3:bd:c3:40:0c:42:0d:44:0b:fd:fb:68:
2b:03:2d:ab:94:89:83:c7:71:9c:f0:01:4e:db:93:
3b:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:F4:4D:96:93:F5:DE:20:29:79:E2:1E:5F:1A:E9:43:F7:3B:80:4A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4B62D42C340711F182FA98CFCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.25.0/24
Signature Algorithm: sha256WithRSAEncryption
65:51:fc:4d:19:cf:6b:b5:00:ad:64:d1:67:a7:19:29:e7:c0:
15:94:d6:e7:9a:cc:3c:48:f6:14:9a:25:3c:8a:8c:82:23:a0:
97:06:3a:20:cd:33:2b:51:5b:46:fa:58:e4:24:29:f6:6b:7a:
0a:38:18:dc:b1:a2:09:29:4a:09:39:3e:28:7c:72:b0:24:22:
2d:5d:ae:fc:1c:70:de:45:3b:f0:b8:1a:d1:ae:66:62:d0:a9:
b8:4d:6e:4b:6e:62:c4:8c:e5:87:92:bb:b2:a2:8a:9e:f0:7b:
20:0c:be:a2:c5:4e:33:a2:55:b7:15:b2:56:8a:fd:90:47:94:
2d:e1:f0:02:38:2d:28:7d:87:ec:57:d5:56:11:a0:d9:f6:3c:
ea:38:d3:c1:b2:43:61:c0:3f:24:c1:c6:2f:f2:1d:8e:26:60:
e6:21:2b:e5:8a:7e:e5:03:9e:3e:d4:89:8b:6d:9f:57:c1:72:
83:2f:f6:13:b3:a9:99:23:b1:44:9b:12:59:49:04:fa:9c:bf:
ad:31:b5:08:dd:2d:00:ee:d9:0f:74:d7:36:77:01:5d:42:93:
9e:dc:32:88:15:e8:1c:58:fc:6a:a5:82:cc:08:c0:df:2f:ea:
d4:71:98:95:1f:d6:c0:a7:5e:93:d1:a1:b1:c2:63:d2:12:5a:
bc:ab:1e:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 12 08:12:22 2026 by rpki-client