Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9BE8C0003C5911F188B7D5FECE1D38B0.roa
File: 9BE8C0003C5911F188B7D5FECE1D38B0.roa (raw, json)
Hash identifier: SuZf4U4dttrRlrxXG5RG2d1LVi50vJY0ptqV8P88JII=
Subject key identifier: AC:E9:CA:57:62:F2:3E:B7:8F:F7:F1:24:6A:B0:E5:72:0F:26:FB:75
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01ADB2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9BE8C0003C5911F188B7D5FECE1D38B0.roa
Signing time: Mon 20 Apr 2026 01:38:19 +0000
ROA not before: Mon 20 Apr 2026 01:38:14 +0000
ROA not after: Wed 20 May 2026 01:38:14 +0000
asID: 147176
IP address blocks: 45.201.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 27 Apr 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110002 (0x1adb2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 20 01:38:14 2026 GMT
Not After : May 20 01:38:14 2026 GMT
Subject: CN=69e5838b-1998
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:b7:f3:17:be:b4:ee:e8:5c:e2:8a:ea:59:c2:
42:8f:03:c3:f1:ab:2c:23:2d:60:91:7c:bc:ba:c7:
a9:5d:53:c2:e6:dd:5b:69:3a:9d:55:c0:a3:72:92:
b2:8d:75:cc:1d:df:14:d4:15:7c:05:8a:7a:d8:cf:
55:eb:05:0b:6f:f6:85:ca:06:c0:aa:a8:8c:e5:3c:
7d:ea:e2:5c:e8:b0:f3:df:eb:cb:43:ba:d0:93:ef:
5d:64:50:b7:67:02:3e:66:32:2f:32:fa:28:d3:a8:
ec:74:d6:e0:72:49:ff:2f:91:39:6e:08:4f:b6:75:
25:71:aa:3e:bd:1f:a2:7a:c1:f0:80:7a:50:ed:98:
aa:a1:b4:62:60:5c:9a:66:3a:37:32:15:8c:ec:7f:
e0:a6:7a:b0:e3:6c:35:4e:b1:67:4b:a7:90:04:1d:
4e:22:6f:da:05:5d:8a:3a:bd:7f:9b:68:34:f9:00:
19:fe:f8:ff:5c:ff:3b:16:e9:c2:40:67:f4:ef:ef:
ca:01:dd:75:ff:74:d3:61:2a:b8:b4:b6:ea:08:d7:
3c:c8:ec:2e:a9:0a:a1:61:ad:68:53:78:c6:90:06:
8b:07:fb:bc:6f:42:a4:99:28:e5:ea:c0:89:01:84:
4a:48:7f:2c:2f:56:69:8f:62:da:e9:28:28:71:e1:
ae:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:E9:CA:57:62:F2:3E:B7:8F:F7:F1:24:6A:B0:E5:72:0F:26:FB:75
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9BE8C0003C5911F188B7D5FECE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.0.0/24
Signature Algorithm: sha256WithRSAEncryption
71:bd:af:0e:ae:26:16:ce:80:b2:0e:f2:5d:20:e1:ab:5b:b8:
f1:fb:0d:06:bc:c1:14:83:1e:3c:5d:c2:4d:36:e9:17:e9:d6:
29:aa:b8:8b:75:c8:94:7a:00:5b:74:7b:c5:05:b1:a5:0d:c3:
79:de:a3:9e:dc:7e:7e:6d:0f:bb:5a:8e:68:3c:4e:f6:66:c0:
ed:53:72:0d:aa:56:d7:21:b1:b4:73:72:64:fc:95:06:88:e5:
07:fa:3e:44:02:53:b6:01:a3:b8:65:4b:f1:ad:bb:15:67:24:
a8:cd:94:b0:fe:d7:cf:f8:77:77:fa:1e:ea:6a:8f:3f:1d:3b:
ff:d9:b4:8d:dd:b6:64:5c:cb:0c:58:30:28:24:75:e1:06:23:
b1:12:ef:b7:17:38:ae:58:e8:e0:b6:94:72:0b:5e:e3:9f:55:
24:60:82:16:41:de:3f:53:cc:6d:e9:cd:39:65:43:b5:9c:a7:
d2:f9:d0:38:43:e4:9f:fa:e5:0a:c1:74:9d:64:65:20:8c:de:
56:4a:be:50:da:d2:32:c0:df:19:30:b5:c3:41:eb:38:c1:5f:
e5:30:c0:47:fd:f0:23:98:70:ac:33:eb:8b:d8:95:50:ea:ac:
22:1c:37:d2:c8:81:4f:48:bd:ed:13:e7:d9:b7:2b:cd:7d:98:
7b:53:45:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 25 23:50:57 2026 by rpki-client