Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A278115844A311F1B9C5CFB9CE1D38B0.roa
File: A278115844A311F1B9C5CFB9CE1D38B0.roa (raw, json)
Hash identifier: OTI1URgJyP92iDGo4Ao5+x1CH3fkw6UJT9C2i2yEQNU=
Subject key identifier: F1:49:08:08:B4:4F:C7:D2:E5:77:E8:3E:52:84:2E:39:E3:85:59:B1
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B042
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A278115844A311F1B9C5CFB9CE1D38B0.roa
Signing time: Thu 30 Apr 2026 14:48:22 +0000
ROA not before: Thu 30 Apr 2026 14:48:18 +0000
ROA not after: Tue 09 Jun 2026 14:48:18 +0000
asID: 205463
IP address blocks: 45.192.19.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110658 (0x1b042)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 30 14:48:18 2026 GMT
Not After : Jun 9 14:48:18 2026 GMT
Subject: CN=69f36bb6-302d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:22:a6:fb:89:82:6d:16:df:98:72:c8:75:92:
74:49:b8:e1:f8:35:76:70:80:b2:7b:49:aa:c0:80:
94:81:c8:1c:a3:f0:bb:4a:f9:86:29:1f:97:d6:1a:
16:73:ef:8d:4b:a6:45:64:56:ab:c3:c7:5c:00:7e:
e1:d8:a2:bb:2e:3a:9e:de:64:73:8e:6b:ff:0b:0d:
27:d9:da:bc:ea:01:c7:af:50:6a:81:53:21:46:4c:
91:58:ab:14:7f:c0:c1:57:b7:9a:45:29:84:cf:84:
39:ea:e1:38:22:b6:f3:5a:0e:ea:07:45:2b:0a:4c:
c1:08:c7:25:ff:e6:5d:f3:cf:24:c1:4e:3b:e5:b2:
ab:5d:22:06:f6:05:d2:0f:35:f5:71:51:11:64:cf:
12:f9:de:f9:7a:40:2d:b7:96:a2:6c:a4:8a:4e:9a:
38:5f:06:f8:bd:73:28:e9:2a:e0:c8:45:fd:de:f6:
9e:e2:d6:dd:53:b5:38:80:79:0c:50:17:ee:6f:da:
0d:f4:94:f3:4f:05:a4:a4:3d:9a:94:b0:87:aa:6e:
49:9b:7d:87:94:0e:e8:fd:3a:82:26:9d:46:50:32:
ed:3e:70:97:b3:27:23:3f:1d:b9:c2:d7:a1:88:6a:
05:7e:48:b9:75:4b:cb:13:01:8f:27:ae:e2:a4:b6:
b8:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:49:08:08:B4:4F:C7:D2:E5:77:E8:3E:52:84:2E:39:E3:85:59:B1
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A278115844A311F1B9C5CFB9CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.19.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:5d:28:01:84:b0:31:9a:fa:ac:d7:d2:a6:d7:a1:a2:e0:a7:
47:3a:d2:9e:a0:6e:61:76:5b:4c:29:54:b4:aa:26:bd:64:18:
0c:a8:0e:7d:e8:a3:3f:dd:c9:53:5d:d2:21:a9:4c:66:0e:4f:
93:a7:1d:e0:0f:21:23:0d:41:c8:bd:4a:41:f8:49:5d:4b:ac:
1e:2a:13:80:52:00:02:c9:00:de:c2:c9:5b:48:68:c1:a6:9c:
c2:51:c8:14:9c:56:82:51:b7:43:87:fb:54:3f:f8:e3:06:d4:
c5:a7:75:5c:8e:3e:8c:45:c3:f4:fa:91:1a:f6:7c:06:49:b9:
c0:93:ba:74:52:1d:65:3d:77:d8:b9:ad:67:ca:57:77:96:67:
62:de:39:09:cf:c1:ee:d4:21:da:9b:ee:ba:a5:59:8f:1d:28:
d4:a6:1f:cf:00:c1:0d:59:a2:0d:1b:ad:1d:d6:2a:4a:59:85:
d7:23:0f:8f:09:d5:ba:2b:95:bc:7a:e2:ee:12:b5:92:53:e6:
1f:c0:48:13:29:dd:52:78:e0:7a:b9:15:57:b0:a4:e6:81:13:
35:74:52:88:ad:b5:fd:94:7f:22:e7:86:07:94:d6:66:2c:c1:
f5:46:ba:4a:83:eb:d8:c6:6c:14:47:21:3f:eb:8b:71:3a:d9:
57:f8:19:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 13:31:55 2026 by rpki-client