Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B1711143D6211F19B7CB0EACE1D38B0.roa
File: 8B1711143D6211F19B7CB0EACE1D38B0.roa (raw, json)
Hash identifier: 961Xhi7NLeb+3lw9hO45hNw0hb/fuCdNI5I/yn66tLo=
Subject key identifier: CC:DB:31:46:11:0A:F6:BD:EF:74:59:F1:48:62:31:59:69:D2:0F:22
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01ADCA
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B1711143D6211F19B7CB0EACE1D38B0.roa
Signing time: Tue 21 Apr 2026 09:14:48 +0000
ROA not before: Tue 21 Apr 2026 09:14:43 +0000
ROA not after: Tue 27 Apr 2027 09:14:43 +0000
asID: 27951
IP address blocks: 45.192.8.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 30 Apr 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110026 (0x1adca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 21 09:14:43 2026 GMT
Not After : Apr 27 09:14:43 2027 GMT
Subject: CN=69e74008-3c6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f1:0b:fa:cc:dc:24:4e:9a:3b:6f:23:29:9b:
e4:13:e2:e4:c7:93:79:bc:6b:d1:7e:f4:ae:0e:8f:
c8:65:95:8a:bc:dc:76:4c:32:16:2c:6b:d7:2d:fa:
80:29:d4:fd:ee:2f:07:d4:d5:e9:5a:56:2e:82:67:
f8:2e:54:e8:02:80:6a:eb:fc:b7:1a:4f:f3:98:86:
52:e2:1a:4a:8f:70:20:60:25:72:7e:21:58:2e:2e:
4a:6d:64:0a:5c:1e:1d:8b:1f:43:a3:ef:fc:ae:93:
08:86:c8:df:c5:b2:ff:95:f2:6d:cc:43:8d:cf:80:
4a:82:a0:d8:79:b1:51:e7:82:f4:e7:4b:30:a7:c4:
b0:29:64:04:94:5d:e1:68:27:45:ec:8e:14:0e:7f:
69:96:2b:9b:e3:be:6f:87:e0:47:f9:f5:4c:7d:f8:
1f:1f:f8:61:cc:37:36:87:6f:65:b0:66:31:66:4f:
37:af:32:09:7e:f5:a0:d6:da:56:e4:94:2f:38:ab:
97:1b:10:7f:a2:9a:e8:60:f4:c3:4a:14:a5:12:ff:
fd:c5:e7:3b:ba:90:3d:cd:b5:5f:56:34:0a:88:78:
2e:62:22:98:e1:f4:70:fc:d0:95:46:dd:03:b2:6c:
3b:ab:bb:dd:f2:ef:c1:eb:7c:59:d8:40:23:b0:74:
a2:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:DB:31:46:11:0A:F6:BD:EF:74:59:F1:48:62:31:59:69:D2:0F:22
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B1711143D6211F19B7CB0EACE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.8.0/24
Signature Algorithm: sha256WithRSAEncryption
68:2f:1f:a0:95:1b:c0:4b:3a:b3:a3:81:49:6f:e0:69:dd:51:
dd:f2:5f:6b:f3:5e:cc:78:e1:f5:b6:02:50:be:e0:c7:dc:a1:
16:0d:e8:4d:1d:cc:4e:0a:20:82:e1:c9:ec:db:87:f4:92:40:
e3:dd:28:af:81:f1:d8:6a:e3:b0:42:a5:89:31:aa:18:f5:83:
59:58:51:9d:b0:99:26:84:eb:06:52:60:ed:b6:fc:dc:0f:36:
f9:d8:df:02:48:07:62:ff:bf:bd:47:61:c1:74:d9:15:40:6c:
10:7d:ba:c5:5f:c7:b7:d1:21:cd:95:df:d0:c5:dd:07:52:9e:
2e:ac:d7:ae:0c:0a:e7:3c:b0:df:2e:fe:f9:b2:64:2c:73:7f:
28:97:d5:85:83:88:a7:35:0b:40:14:2b:68:23:cf:66:6b:44:
ba:36:41:f4:cb:15:b7:51:2e:1f:fc:8b:3d:b8:6c:3b:31:04:
87:42:f3:df:80:a9:52:3d:73:2c:33:28:ed:ad:a9:0c:e2:37:
96:e1:aa:03:4e:19:96:39:f9:95:ca:36:77:b4:59:76:22:b6:
75:00:65:20:5b:56:a0:5b:2f:72:84:cb:7a:4b:10:87:1a:ba:
51:81:ff:70:56:49:56:a9:71:27:2d:1f:90:7d:4e:74:74:a6:
62:85:cf:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 28 19:54:28 2026 by rpki-client