Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B093A1CA536311F1891E6AF1CE1D38B0.roa
File: B093A1CA536311F1891E6AF1CE1D38B0.roa (raw, json)
Hash identifier: vLATAyx8dlNlGgt1L33Ojb/VUNjRk9+fE2z8iJKPxU0=
Subject key identifier: 85:F9:19:FC:CA:52:3E:20:95:16:5F:96:DB:92:7C:7D:F9:40:C2:90
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B5D1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B093A1CA536311F1891E6AF1CE1D38B0.roa
Signing time: Tue 19 May 2026 09:18:26 +0000
ROA not before: Tue 19 May 2026 09:18:21 +0000
ROA not after: Wed 19 Aug 2026 09:18:21 +0000
asID: 400619
IP address blocks: 45.195.112.0/21 maxlen: 24
45.195.120.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112081 (0x1b5d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 19 09:18:21 2026 GMT
Not After : Aug 19 09:18:21 2026 GMT
Subject: CN=6a0c2ae2-258c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b6:70:8c:a3:db:e7:4e:56:e4:d6:d5:6a:93:
08:98:d6:e8:f4:a4:5b:70:c6:fd:b9:d2:f0:e9:26:
08:dd:5b:48:78:52:5a:22:b0:5c:19:92:81:d5:b8:
9f:2d:9c:fb:e8:da:df:43:cf:64:78:06:d1:82:77:
36:68:09:40:c0:88:57:de:b5:df:55:83:68:d2:62:
93:b9:96:11:cf:fc:53:21:52:5d:41:21:8f:49:ad:
2d:22:a3:cb:21:48:41:24:0e:38:b4:27:27:8b:b5:
34:5c:6e:54:3c:5c:29:72:b2:1a:c6:d1:5e:5b:52:
ea:c6:fe:a0:23:bc:00:59:08:7b:f8:d0:c1:53:15:
aa:29:0a:4f:26:cd:58:4f:da:31:2c:97:09:fe:a2:
9b:36:19:68:b0:f4:86:15:56:3d:1d:a6:11:10:f5:
36:2c:aa:b9:80:9e:f0:87:96:09:98:c9:d1:96:c4:
6d:ce:fd:c6:3c:96:de:e8:c4:6d:b0:a2:3a:55:6c:
78:84:3a:f3:f9:72:58:ef:fd:c5:46:66:8d:11:a4:
c5:58:9b:6d:3e:b1:bd:51:4b:48:80:b0:e8:a0:e5:
e5:37:30:ab:c8:38:d4:87:ec:e2:a7:73:fa:9d:59:
71:91:99:c4:d6:d5:13:ce:f9:d5:96:f9:29:81:e3:
d5:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:F9:19:FC:CA:52:3E:20:95:16:5F:96:DB:92:7C:7D:F9:40:C2:90
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B093A1CA536311F1891E6AF1CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.112.0/20
Signature Algorithm: sha256WithRSAEncryption
49:cd:3a:8e:20:07:3b:6d:60:f8:ce:db:c5:6a:b0:81:ef:38:
2f:0a:d9:a7:3d:4f:2d:e0:e2:6d:16:4a:87:58:e8:66:06:7f:
25:9a:77:3b:74:cb:e4:db:b7:77:37:ce:50:8b:28:15:0c:7d:
85:4b:43:a7:15:59:c9:e7:ce:eb:92:4c:4f:b3:4e:74:cf:86:
14:1b:91:bd:c3:97:1e:05:32:05:86:28:d3:a3:52:25:3e:d7:
14:b0:af:e2:c0:fe:6a:be:3d:32:43:8c:8c:87:61:62:de:0c:
06:61:e0:ac:ad:32:67:92:25:74:74:12:0e:92:fc:c0:ae:4a:
9d:4c:98:4f:4a:df:c4:1e:fd:a0:5c:7c:eb:87:f4:fb:e6:bc:
41:df:c6:15:0c:9a:88:e7:6c:e0:7c:07:ae:b0:e2:6a:5a:5d:
5e:8f:78:54:ba:44:68:aa:7b:bf:76:88:c1:eb:7c:88:83:26:
20:af:ef:1c:e2:67:b6:43:0d:6d:1b:90:f6:26:6c:dd:30:6f:
a3:67:88:a5:4f:b6:1c:40:1d:b8:e5:a8:de:64:f9:5d:d1:8c:
0d:7e:43:bb:a0:25:40:78:00:39:b5:02:44:4c:b7:35:1c:1f:
f7:a4:bc:8c:71:dd:e9:de:21:24:50:fe:77:b6:b7:b6:92:47:
28:41:e1:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:14:10 2026 by rpki-client