Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/66E88D4A59CD11F19D9A1402CF1D38B0.roa
File: 66E88D4A59CD11F19D9A1402CF1D38B0.roa (raw, json)
Hash identifier: MZpnPZbvi4cfDN63mZ47cT4Coc5X60yrG+EiUXRaER4=
Subject key identifier: 20:83:36:FA:13:35:D2:F1:22:8D:DE:D7:EF:4C:6D:C7:A0:77:AA:0F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01BA3D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/66E88D4A59CD11F19D9A1402CF1D38B0.roa
Signing time: Wed 27 May 2026 13:10:16 +0000
ROA not before: Wed 27 May 2026 13:10:11 +0000
ROA not after: Sat 04 Jul 2026 13:10:11 +0000
asID: 395886
IP address blocks: 45.194.20.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113213 (0x1ba3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 27 13:10:11 2026 GMT
Not After : Jul 4 13:10:11 2026 GMT
Subject: CN=6a16ed38-95c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:42:2b:76:0c:c1:49:ee:49:69:c4:6f:c4:67:
0f:63:81:6a:d9:bd:c7:80:d5:3a:03:48:69:12:8a:
c1:2e:a8:19:7f:60:7d:22:e8:54:43:10:f6:0f:ee:
75:48:0c:19:eb:ed:c2:63:ec:5c:0a:cd:c5:b4:10:
32:54:19:6f:01:09:60:a6:bd:9a:c7:1c:57:bc:4e:
c4:ec:2a:1c:c7:1f:ab:f5:7b:12:81:11:b1:a9:3f:
79:c0:9c:0c:bf:46:29:f6:76:4d:c7:38:dc:2f:6f:
68:0f:8a:57:68:64:dd:f3:d6:be:e1:dd:aa:11:3e:
18:2c:8b:db:ef:61:8c:17:cb:fb:25:81:e7:11:7e:
3a:38:28:fc:84:b5:10:60:a4:b7:c9:ad:c7:0f:54:
c9:7f:d7:10:ff:09:f5:f1:f9:f5:c3:d7:e8:59:83:
21:4d:25:67:06:1d:76:52:be:c2:fd:f8:7e:f5:2f:
1b:ce:74:a3:be:e1:1d:ff:e6:d1:8b:dd:42:de:b9:
f4:9a:5a:0e:20:da:89:b6:3c:7f:92:7e:59:67:62:
37:91:07:2d:45:4f:bb:0f:27:1e:2c:7e:a3:ea:c9:
7d:06:74:2c:8b:ba:76:50:d7:c9:64:09:a8:c4:42:
91:b4:25:83:b8:a9:74:65:af:b0:41:1c:ce:50:7b:
d7:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:83:36:FA:13:35:D2:F1:22:8D:DE:D7:EF:4C:6D:C7:A0:77:AA:0F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/66E88D4A59CD11F19D9A1402CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.20.0/22
Signature Algorithm: sha256WithRSAEncryption
46:15:6c:bb:62:00:e2:80:43:32:ea:f9:c0:55:60:da:1c:51:
8d:9b:ab:10:8c:dd:99:db:58:4d:ab:6a:40:68:5e:a8:52:5d:
c5:99:57:78:bf:3c:11:32:88:f3:26:37:c3:6c:ec:e4:8b:30:
f4:9a:5a:74:a3:17:b1:24:1f:c9:52:7d:9e:e5:ba:a6:ff:3e:
2e:1c:4d:4a:81:05:06:a1:6e:b6:33:bb:00:d9:b2:cf:34:95:
f2:7a:6b:61:2a:0a:8b:89:53:d1:b4:3f:3e:84:fa:0c:60:c8:
b9:ff:ed:7f:8f:98:7e:5b:d2:5f:b0:0f:d5:b3:06:7c:6f:31:
0a:ca:95:59:ed:69:6c:5c:55:80:de:73:b3:af:5c:2c:ef:16:
3e:d6:9a:38:12:2c:6c:60:78:f0:fb:11:a6:20:7e:1f:4e:4a:
0f:a0:35:34:2f:94:5a:81:8a:18:b3:41:0f:09:37:95:58:e9:
ef:cc:2b:ee:c8:fb:7a:c8:08:3b:d4:a1:a8:65:68:ae:8e:5d:
23:49:d6:7b:30:31:ef:f4:0c:1d:47:55:2c:6f:3f:d1:de:9f:
05:95:b4:71:eb:82:6c:34:77:85:ad:31:5c:63:41:f8:c2:db:
83:0f:ce:b3:40:0f:ba:4b:b4:48:61:4d:27:d2:78:43:8d:b0:
f1:18:a6:90
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAbo9MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwNTI3MTMxMDExWhcNMjYwNzA0MTMxMDExWjAYMRYw
FAYDVQQDEw02YTE2ZWQzOC05NWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAwEIrdgzBSe5JacRvxGcPY4Fq2b3HgNU6A0hpEorBLqgZf2B9IuhUQxD2
D+51SAwZ6+3CY+xcCs3FtBAyVBlvAQlgpr2axxxXvE7E7Cocxx+r9XsSgRGxqT95
wJwMv0Yp9nZNxzjcL29oD4pXaGTd89a+4d2qET4YLIvb72GMF8v7JYHnEX46OCj8
hLUQYKS3ya3HD1TJf9cQ/wn18fn1w9foWYMhTSVnBh12Ur7C/fh+9S8bznSjvuEd
/+bRi91C3rn0mloOINqJtjx/kn5ZZ2I3kQctRU+7DyceLH6j6sl9BnQsi7p2UNfJ
ZAmoxEKRtCWDuKl0Za+wQRzOUHvXyQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFCCD
NvoTNdLxIo3e1+9Mbcegd6oPMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC82NkU4OEQ0QTU5Q0QxMUYxOUQ5QTE0MDJDRjFEMzhCMC5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLcIUMA0GCSqGSIb3DQEBCwUA
A4IBAQBGFWy7YgDigEMy6vnAVWDaHFGNm6sQjN2Z21hNq2pAaF6oUl3FmVd4vzwR
MojzJjfDbOzkizD0mlp0oxexJB/JUn2e5bqm/z4uHE1KgQUGoW62M7sA2bLPNJXy
emthKgqLiVPRtD8+hPoMYMi5/+1/j5h+W9JfsA/VswZ8bzEKypVZ7WlsXFWA3nOz
r1ws7xY+1po4EixsYHjw+xGmIH4fTkoPoDU0L5RagYoYs0EPCTeVWOnvzCvuyPt6
yAg71KGoZWiujl0jSdZ7MDHv9AwdR1Usbz/R3p8FlbRx64JsNHeFrTFcY0H4wtuD
D86zQA+6S7RIYU0n0nhDjbDxGKaQ
-----END CERTIFICATE-----
Generated at Tue Jun 2 21:14:40 2026 by rpki-client