Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4D3EA44A5BCD11F18FD2061ECF1D38B0.roa
File: 4D3EA44A5BCD11F18FD2061ECF1D38B0.roa (raw, json)
Hash identifier: 35nSwl5W8tOF5Bjfa0YdaSJPScLwHokEFrZqZUPIJEI=
Subject key identifier: 1D:CC:E3:53:28:2A:E9:7D:4D:4D:51:F8:AD:61:9F:3A:6B:0E:B6:91
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01BAC5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4D3EA44A5BCD11F18FD2061ECF1D38B0.roa
Signing time: Sat 30 May 2026 02:14:35 +0000
ROA not before: Sat 30 May 2026 02:14:30 +0000
ROA not after: Wed 01 Jul 2026 02:14:30 +0000
asID: 202656
IP address blocks: 45.195.101.0/24 maxlen: 24
45.195.102.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113349 (0x1bac5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 30 02:14:30 2026 GMT
Not After : Jul 1 02:14:30 2026 GMT
Subject: CN=6a1a480b-3cbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:2e:8c:35:91:a2:ef:23:0d:1f:fe:f3:bc:07:
96:50:95:f3:a0:4b:8f:6e:46:b6:f5:18:5b:80:6e:
ba:ff:c9:12:4e:84:9b:fe:99:56:af:3e:a1:35:4e:
ff:68:38:b0:89:75:84:1b:e0:4c:dd:1a:03:0d:1d:
1d:97:8a:c0:13:ce:3d:a4:e3:b8:9a:70:28:35:a4:
3e:3c:c8:27:31:4c:77:b5:dc:1b:b5:11:b2:c0:4e:
80:22:97:0a:e7:de:4f:c4:d2:9c:7e:e8:c1:ef:c6:
bf:dd:e1:64:d7:9e:f2:f5:27:93:8e:2a:e7:64:07:
e0:9d:e7:dc:ff:3c:02:b5:94:f3:38:df:e3:94:0e:
05:19:93:14:6b:6c:3e:49:81:f2:ce:a8:1e:1f:39:
46:73:93:c3:91:3a:ba:d0:c7:14:df:b8:87:a9:1b:
3b:9d:85:f8:a1:56:b9:5f:92:05:bf:00:bd:08:6b:
ee:6f:9f:54:44:b4:dc:e6:f6:0a:ee:1d:b3:38:05:
3c:8c:9c:15:99:78:e0:a4:2a:d3:7c:d7:8f:f5:3a:
1c:ef:fa:9c:61:93:60:c5:64:ed:f5:e6:1e:08:c5:
e1:93:f7:3b:80:38:21:43:e7:48:1d:6a:fc:96:78:
0e:d3:62:82:90:dc:6d:92:0e:45:87:d3:4c:4f:84:
8c:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:CC:E3:53:28:2A:E9:7D:4D:4D:51:F8:AD:61:9F:3A:6B:0E:B6:91
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4D3EA44A5BCD11F18FD2061ECF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.101.0-45.195.102.255
Signature Algorithm: sha256WithRSAEncryption
a8:59:d4:35:a5:76:0c:ae:3f:0c:e6:c6:ed:01:c7:fd:75:33:
84:c9:5a:91:d0:26:db:d6:6a:48:81:a4:16:e5:9b:32:fc:fd:
54:7d:df:7a:82:85:92:bc:96:be:13:8b:8c:41:1d:d3:a7:1d:
7d:9d:ad:26:32:d0:95:d2:09:b6:b7:cc:46:44:3a:52:b7:98:
78:09:5e:2c:da:e8:e3:97:cd:20:81:e4:bb:57:14:e4:df:a0:
95:ab:fd:ae:18:c8:86:e2:46:e3:3e:32:cd:5a:0a:80:6d:b8:
0b:ab:5b:f2:14:d3:bc:59:18:0a:d7:dd:b7:98:52:f7:15:38:
6e:e9:78:d3:44:5e:d5:a9:3a:1f:fb:40:39:da:22:ef:3c:59:
09:d3:33:4c:c2:2e:6d:25:59:cf:2b:77:78:34:55:a3:cd:9e:
03:c4:91:7f:7f:e8:1b:eb:6b:d6:a3:ea:78:05:d4:ed:bb:be:
7e:e8:04:86:41:a0:d9:ea:d1:c7:db:a6:3b:f1:c3:53:fb:30:
13:68:82:20:1f:01:af:d3:09:9d:97:0d:d3:f4:3b:55:0f:7e:
94:0d:5d:ca:3d:69:f4:52:af:6d:59:2d:2f:79:bc:11:61:dc:
0f:af:2f:46:9a:02:78:bd:02:d2:84:f4:52:5e:57:60:46:ee:
0f:2f:72:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:06:56 2026 by rpki-client