Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B2DDE0EE3F4511F1B66FC5FCCE1D38B0.roa
File: B2DDE0EE3F4511F1B66FC5FCCE1D38B0.roa (raw, json)
Hash identifier: 6aV+v9qsCKBUeAB4jhcQ+xi7oCjA7rlZqUjaOGXucYo=
Subject key identifier: D1:55:95:FC:00:20:AC:6E:0A:91:59:48:CB:A1:1B:60:C5:27:EF:44
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AEC9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B2DDE0EE3F4511F1B66FC5FCCE1D38B0.roa
Signing time: Thu 23 Apr 2026 18:53:21 +0000
ROA not before: Thu 23 Apr 2026 18:53:16 +0000
ROA not after: Thu 21 May 2026 18:53:16 +0000
asID: 198474
IP address blocks: 45.202.46.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 03 May 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110281 (0x1aec9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 23 18:53:16 2026 GMT
Not After : May 21 18:53:16 2026 GMT
Subject: CN=69ea6aa1-ad61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:b3:df:24:70:63:b0:81:93:74:24:02:1e:11:
07:fe:84:e9:f0:ba:e8:50:c3:33:47:39:fa:0b:85:
a9:37:07:51:d6:f6:03:3e:b3:bc:c8:d2:cd:10:28:
6b:b5:d2:07:fb:9f:14:6f:b1:c7:12:ba:19:e9:08:
41:2b:67:de:72:63:78:3e:e6:9b:31:83:aa:02:61:
4f:12:2a:2a:8e:17:0c:d5:b5:43:38:5a:98:10:7a:
15:a1:c1:d9:f6:fa:80:ba:be:bf:2c:83:6d:10:a6:
f9:d1:76:ea:f0:5d:a1:76:8e:ac:84:10:cb:ff:09:
33:f7:89:59:06:99:92:ba:1d:90:ae:a8:47:af:c6:
72:87:49:1d:86:1c:fa:79:75:7e:19:c9:3d:b4:5e:
1a:51:f4:55:61:52:8e:c3:f6:7e:8d:70:25:0a:75:
26:b1:1d:6d:7f:9a:75:1c:ed:be:c0:b9:ea:69:43:
64:ce:9d:e4:c9:b6:ad:81:ca:e9:23:bd:76:8f:aa:
b5:a2:6f:99:f7:1b:be:91:82:d0:f5:f0:42:ee:27:
da:47:cd:df:fd:e4:13:d1:d2:bb:9d:42:24:0f:a1:
3c:18:38:f1:7f:f9:f5:85:b1:32:52:9c:bc:e7:8a:
83:ff:c6:3c:76:54:00:3c:44:56:cb:0f:4c:13:0b:
3d:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:55:95:FC:00:20:AC:6E:0A:91:59:48:CB:A1:1B:60:C5:27:EF:44
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B2DDE0EE3F4511F1B66FC5FCCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.46.0/24
Signature Algorithm: sha256WithRSAEncryption
88:71:fd:b8:8f:48:b6:fd:1d:d9:bc:52:ca:62:d4:86:bb:e5:
30:38:5d:3b:7d:97:26:33:a1:02:cd:89:de:37:ab:bd:76:7e:
ff:bb:86:66:99:eb:cc:71:4b:67:a2:8f:9a:0b:d9:03:49:40:
7d:76:8a:9e:4c:6b:c7:7d:02:66:2c:6a:d1:85:dd:b2:1e:88:
e9:e1:c2:1a:bd:2e:41:f9:89:6e:ab:87:45:53:26:4c:2f:68:
53:94:0c:59:8b:da:93:61:1b:91:e9:d0:6b:16:83:c7:93:7b:
73:ff:3d:cb:64:93:6d:ee:04:4e:f9:e7:7e:de:d6:65:b6:5b:
cf:60:20:84:d7:44:4f:ab:be:66:df:94:d3:41:3a:e9:3d:40:
0c:64:04:9d:66:d8:52:96:9c:7f:4e:5c:fe:2e:f6:0b:f6:46:
a8:98:3c:61:d2:1c:d9:78:f5:c2:03:90:ac:07:bb:a4:89:1b:
63:2d:cf:92:58:43:20:12:b9:60:16:92:79:d4:03:3f:b5:1f:
06:4c:73:47:a8:df:dd:8c:bb:38:1e:15:80:63:99:94:63:5f:
f0:3c:90:14:80:b1:a6:6a:b6:1d:03:d9:4d:7b:a5:c1:da:50:
00:27:ab:ac:cd:36:30:05:1b:99:7f:52:bb:18:49:59:f7:8f:
37:57:7a:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 1 16:16:22 2026 by rpki-client