Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4EE8234E5CCB11F1BEB375B6CE1D38B0.roa
File: 4EE8234E5CCB11F1BEB375B6CE1D38B0.roa (raw, json)
Hash identifier: smkYBcMf+q2fdASg7uRB5nrbiiqKQvuhKEI6kA9QYDk=
Subject key identifier: 3C:FE:AA:A2:6B:5D:52:5B:79:CB:88:42:7F:71:C0:64:2C:5A:D8:95
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01BB00
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4EE8234E5CCB11F1BEB375B6CE1D38B0.roa
Signing time: Sun 31 May 2026 08:32:50 +0000
ROA not before: Sun 31 May 2026 08:32:45 +0000
ROA not after: Mon 13 Jul 2026 08:32:45 +0000
asID: 395886
IP address blocks: 45.205.4.0/24 maxlen: 24
45.205.5.0/24 maxlen: 24
45.205.6.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113408 (0x1bb00)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 31 08:32:45 2026 GMT
Not After : Jul 13 08:32:45 2026 GMT
Subject: CN=6a1bf232-6d79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:64:ee:ce:2d:39:fc:32:3d:97:44:9b:a2:23:
c4:2e:83:4e:05:b6:c6:3c:7e:8e:b4:2f:6d:23:35:
03:90:e4:be:3c:74:3c:d1:8f:9f:2d:7b:5c:8a:d0:
44:0a:b1:b8:19:88:ae:f1:72:a3:72:fc:a6:7e:78:
c5:ba:a3:65:b7:1f:d8:47:2e:f9:17:d5:91:8c:ae:
03:c1:dc:ac:58:00:0d:21:1b:0c:31:f4:27:d1:c5:
e1:13:a8:b0:cc:ca:66:c8:29:0e:dc:25:c9:d6:73:
0f:2c:92:d4:d6:e3:33:fa:84:6e:03:f5:c3:57:5d:
ae:03:71:d9:b7:f4:ef:83:b1:8b:af:ea:5b:91:14:
67:79:33:4c:d1:98:67:0f:a8:68:74:14:7b:f0:aa:
7d:aa:b4:4f:8d:0d:3c:79:9e:89:b6:bd:a0:d6:f2:
d9:d8:ab:90:67:0e:25:cf:bf:10:4c:c0:42:30:fe:
1e:89:54:76:f6:91:a8:76:5f:b7:6c:63:4e:8d:a9:
5e:12:66:ea:f9:55:47:c7:5c:0a:e8:85:a6:a2:c4:
17:e3:3b:9f:76:4b:d6:f0:c5:d8:e3:1d:7e:45:b9:
43:79:e2:7e:29:c6:88:b5:52:cc:5c:bc:01:dd:1f:
ef:ec:20:63:b5:7c:29:c1:34:1e:d4:45:e1:1d:56:
91:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:FE:AA:A2:6B:5D:52:5B:79:CB:88:42:7F:71:C0:64:2C:5A:D8:95
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4EE8234E5CCB11F1BEB375B6CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.205.4.0/22
Signature Algorithm: sha256WithRSAEncryption
ba:51:cf:da:f8:30:1e:62:25:c0:d7:bc:a3:72:97:14:81:26:
d9:ec:dc:b4:fc:73:a9:5c:51:6a:07:70:5f:94:04:9e:d9:51:
ea:b6:08:18:0e:87:6a:bf:bf:01:97:7f:f6:f9:63:c9:3a:bf:
44:11:88:62:ff:ea:37:83:b7:d5:a7:29:f1:4a:27:7e:01:b2:
b8:e2:ca:0a:f9:34:6e:33:97:e7:df:3b:9d:e0:a4:c6:90:e2:
79:f1:6c:74:88:ba:b3:21:fe:d9:30:bf:39:9c:38:cc:d4:b5:
c2:36:3e:d7:db:51:aa:80:9b:ed:06:a9:1a:4f:0a:d2:96:bc:
fc:77:c1:e0:23:0a:72:05:89:3a:b0:83:58:89:4d:fe:cc:89:
15:7c:9f:d7:ca:84:f5:30:9e:e0:06:e2:9e:da:4b:f0:a5:22:
9f:78:ce:25:3a:a2:91:3f:58:73:c1:a6:6e:26:d6:d4:63:27:
e0:18:99:ec:ac:b4:ee:4f:5c:b9:a5:dd:96:06:0d:49:df:19:
46:7d:ab:da:20:c6:20:f6:a6:f6:f7:03:0b:4a:08:1e:cb:44:
10:d0:21:9c:5a:97:1d:2e:2e:51:f5:9c:7e:cd:95:f5:6b:d6:
83:04:0b:88:cc:09:14:a9:ef:ae:10:5f:10:ff:a7:a6:e1:9e:
67:59:a7:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:14:17 2026 by rpki-client