Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5DC76CF2544D11F19A224FFACE1D38B0.roa
File: 5DC76CF2544D11F19A224FFACE1D38B0.roa (raw, json)
Hash identifier: DBDrO09OfMm6hi1qWN0M/6CIKfPYpHt/U/Rsl/JrCoI=
Subject key identifier: 09:E0:24:77:ED:BA:59:A0:30:0A:86:D3:80:A8:B2:D5:8F:47:B5:F5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B654
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5DC76CF2544D11F19A224FFACE1D38B0.roa
Signing time: Wed 20 May 2026 13:11:09 +0000
ROA not before: Wed 20 May 2026 13:11:04 +0000
ROA not after: Thu 20 May 2027 13:11:04 +0000
asID: 36898
IP address blocks: 45.197.172.0/24 maxlen: 24
45.197.173.0/24 maxlen: 24
45.197.174.0/24 maxlen: 24
45.197.175.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112212 (0x1b654)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 20 13:11:04 2026 GMT
Not After : May 20 13:11:04 2027 GMT
Subject: CN=6a0db2ed-9873
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ce:82:4a:da:fb:87:52:f3:26:0e:ef:ae:35:
0f:36:29:a7:e3:88:8d:23:13:f7:ef:1a:3f:70:ed:
d0:88:a8:2b:a6:bc:6c:7e:51:cd:96:b7:b4:62:60:
0c:9e:f3:a6:88:10:6a:d2:08:d8:bf:36:58:8f:f5:
85:10:6c:27:db:52:a7:1f:6c:f4:f2:7f:76:27:ee:
3b:98:e1:dd:8f:1f:e4:bb:fc:49:8d:53:e5:47:30:
b0:49:1e:1c:40:1e:c6:8a:86:8a:67:9f:48:9d:34:
b7:e6:4a:4d:ce:2e:b8:53:c3:99:4f:a7:1a:d9:44:
98:70:bf:ec:8d:90:a6:46:e0:d2:06:26:5f:ce:62:
c1:e6:4d:28:7a:fa:60:ac:c0:61:d2:4b:fd:79:b6:
5a:98:6b:6e:72:40:4d:09:b0:61:ca:04:9b:52:48:
af:40:1c:22:78:67:e9:bb:72:60:e0:ab:52:e8:3f:
e3:d6:8f:fd:d4:8e:3d:3e:d0:7e:5e:13:86:df:03:
7e:9a:f6:52:f1:b1:b5:0d:4b:16:fd:59:ee:b0:1c:
5f:d1:0b:37:f3:30:ea:dc:71:63:c0:ea:8f:b9:db:
b6:28:0c:5d:2c:31:5c:10:cb:03:f9:a1:2f:7c:95:
d8:fc:a1:78:5d:7d:f4:b4:b1:a9:d4:90:11:cb:50:
9c:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:E0:24:77:ED:BA:59:A0:30:0A:86:D3:80:A8:B2:D5:8F:47:B5:F5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5DC76CF2544D11F19A224FFACE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.172.0/22
Signature Algorithm: sha256WithRSAEncryption
56:5c:7e:c4:67:11:65:cd:59:be:91:01:65:b6:68:7a:35:bc:
6a:03:ec:6b:c1:0e:d0:8f:ef:45:49:12:6d:21:36:12:0d:bc:
c3:94:c0:1e:87:50:42:14:42:e6:28:8f:be:09:35:c7:bb:dd:
85:22:29:a5:25:0c:8f:ad:fa:6f:08:d8:69:1a:09:f6:39:71:
86:0b:84:5d:d5:a4:38:cc:84:b4:cf:d7:67:bf:ea:3d:93:a0:
85:b6:19:b8:df:ba:71:ec:0b:c5:b1:c8:0a:eb:23:d1:d1:c6:
5b:41:7b:fd:60:ef:d1:7b:2a:36:a8:34:6d:14:4b:36:da:88:
d5:b3:e2:3c:39:6c:f5:8f:3d:59:86:41:05:9f:4c:00:ec:99:
02:6d:16:c5:b8:0e:aa:b2:d8:c0:ca:2b:3a:da:8b:b5:42:f0:
0d:7e:80:70:a4:56:75:60:21:7c:55:c6:04:fe:9d:3b:48:65:
7b:d6:69:62:2d:9f:b5:bd:14:91:0f:50:27:3d:37:ed:ea:ee:
bf:c2:72:22:0f:2c:a5:8c:b1:84:33:c0:10:e3:e7:0a:55:b5:
13:6f:e7:95:b2:6a:80:dd:25:a7:75:94:7f:36:75:5a:77:42:
89:0b:b0:23:62:03:25:89:24:01:f3:0a:0f:04:1a:e9:c8:af:
02:20:75:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:14:04 2026 by rpki-client