Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AAA8B44A552911F1936D16BECE1D38B0.roa
File: AAA8B44A552911F1936D16BECE1D38B0.roa (raw, json)
Hash identifier: xaUOCeFIHOMvXQVmY+k4YP1nTk69lt0WPxdXcn/dLCk=
Subject key identifier: 17:11:EF:92:6A:BF:B2:D7:A2:FF:63:8D:65:EB:F8:B9:F2:B9:C8:E1
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B74A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AAA8B44A552911F1936D16BECE1D38B0.roa
Signing time: Thu 21 May 2026 15:28:07 +0000
ROA not before: Thu 21 May 2026 15:28:03 +0000
ROA not after: Sat 27 Jun 2026 15:28:03 +0000
asID: 29312
IP address blocks: 45.196.169.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112458 (0x1b74a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 21 15:28:03 2026 GMT
Not After : Jun 27 15:28:03 2026 GMT
Subject: CN=6a0f2487-5252
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:e5:01:8b:ce:ba:0a:5c:2b:74:b8:a3:71:b4:
79:b2:7e:b4:60:6e:1a:d9:44:a1:0c:28:90:ae:1b:
d7:ec:44:99:af:e4:24:6a:96:1c:95:07:0b:49:6f:
5f:f4:31:27:68:b0:dc:90:2e:6f:e4:07:63:c3:49:
5f:ed:86:ed:f9:91:1d:df:a7:1d:51:5d:eb:42:f5:
3d:00:73:fa:3b:01:b5:58:48:dd:e8:ca:fb:cd:eb:
a0:0b:24:0d:4a:a2:91:e0:fe:b3:13:19:24:57:0f:
18:ed:14:55:bf:18:23:74:42:62:52:68:c3:69:9a:
e4:f8:82:6c:4c:59:5c:ec:22:3c:28:57:7e:3a:10:
31:bc:db:47:8f:2b:74:03:a0:9a:0a:fb:af:c2:b1:
9b:5c:17:ab:48:2d:63:05:2d:c2:83:af:ab:c9:d0:
92:71:a9:c3:2e:b2:56:13:8c:22:57:d5:7e:7f:35:
48:dd:5a:e0:03:30:41:33:73:1d:8d:2b:a8:f3:4b:
d2:cf:42:07:0a:69:2f:5b:0c:4e:bd:22:81:60:29:
cf:7c:3b:99:66:9f:db:76:75:de:bb:4e:93:5a:90:
45:8e:12:35:be:66:2f:13:70:9e:bf:bb:ae:69:72:
79:06:89:ef:f2:5b:9c:56:65:6b:a0:ae:54:10:cc:
45:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:11:EF:92:6A:BF:B2:D7:A2:FF:63:8D:65:EB:F8:B9:F2:B9:C8:E1
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AAA8B44A552911F1936D16BECE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.169.0/24
Signature Algorithm: sha256WithRSAEncryption
87:85:6f:67:32:3a:2e:65:fb:ba:01:f8:81:93:14:5b:7e:1d:
d4:59:3c:62:b1:01:30:88:c2:a5:a1:d7:72:5c:99:66:a6:ee:
28:cc:93:79:37:dd:bc:d7:4e:bc:2e:97:e0:d0:14:58:91:3a:
13:56:b4:1d:9a:30:09:f9:54:e8:a9:50:89:3d:b4:03:6c:f3:
23:13:b3:06:83:8f:ec:13:2e:6c:23:2d:46:5c:f9:52:2e:a9:
55:77:42:b9:fe:8e:26:67:78:b4:9b:2d:34:12:c2:d5:79:c3:
4f:54:a9:7a:99:7a:33:38:6b:35:6f:56:9b:31:b3:0e:f1:ef:
b7:2c:7d:ec:c6:26:b8:be:90:1c:a7:5f:b6:04:74:b6:b4:9e:
b4:d0:c6:d4:42:62:d5:47:69:60:fd:05:1a:3b:81:77:e8:39:
8c:5e:65:46:70:e3:82:97:90:c2:07:9c:bf:63:79:d3:e6:1e:
b1:a2:d0:22:ef:3c:29:a8:f5:70:cd:66:48:9d:8e:0d:c3:ab:
42:44:4b:36:08:e1:0b:18:1f:98:70:f1:da:6f:f0:89:9a:11:
2d:87:b8:47:21:e4:1b:82:dc:22:9b:2e:7d:ec:ca:72:a5:64:
3e:b4:dd:97:a1:94:af:19:09:ad:97:dd:b3:ca:c5:f6:7e:ff:
76:66:81:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:28:49 2026 by rpki-client