Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B4227F222EE311F1A9FCF4E0DAE4EC9C.roa
File: B4227F222EE311F1A9FCF4E0DAE4EC9C.roa (raw, json)
Hash identifier: SB8T6mvDHV+psNV0ly+y2RK4HPjrKZJ8RCMXE2C6QqQ=
Subject key identifier: 5D:D1:40:08:36:CA:15:DE:0A:CA:7F:D2:94:95:F4:28:69:B4:D7:83
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A981
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B4227F222EE311F1A9FCF4E0DAE4EC9C.roa
Signing time: Thu 02 Apr 2026 22:31:34 +0000
ROA not before: Fri 03 Apr 2026 22:31:27 +0000
ROA not after: Sun 10 May 2026 22:31:27 +0000
asID: 274273
IP address blocks: 45.194.52.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 Apr 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108929 (0x1a981)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 3 22:31:27 2026 GMT
Not After : May 10 22:31:27 2026 GMT
Subject: CN=69ceee46-1c88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:d5:72:d8:03:5d:5c:ae:39:c3:4d:25:f2:d9:
40:3d:65:73:a7:20:d8:78:25:23:de:37:5c:29:96:
23:31:7c:21:b2:ef:dc:29:5c:26:3c:84:ff:47:4e:
b8:16:b2:37:01:10:40:a6:e9:89:77:9c:0b:8e:af:
ed:cf:87:b0:7e:49:26:85:6d:b6:42:af:e8:f5:1f:
37:82:30:ca:d6:0a:54:e9:ed:2a:f9:0f:b1:02:2d:
eb:47:fd:57:bb:b7:7f:c4:5c:54:dc:7e:df:81:f2:
4d:99:bd:8e:e9:1d:2c:52:70:81:34:74:87:7d:05:
c7:51:6c:76:48:12:f3:4e:ad:5d:16:5f:cb:8d:07:
7e:a7:2b:9d:ee:23:20:f4:6d:60:78:89:4e:6a:4f:
3b:25:d0:79:30:0f:93:a3:b2:70:9a:c7:db:2d:67:
33:b1:9e:c4:95:a3:19:88:4a:b5:3e:8e:63:a9:e9:
36:83:a6:0a:eb:bc:e6:38:52:3a:71:05:c6:ef:ad:
fb:d0:fc:d6:54:59:09:70:78:5d:5b:af:a1:34:70:
e0:d4:24:39:79:37:b6:3f:e1:43:47:c0:7c:5a:67:
b2:19:f9:ef:80:09:f4:84:54:fc:55:0a:c7:f1:4d:
71:5b:77:b1:a0:e2:55:32:d1:a8:05:ec:d1:d3:12:
bd:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:D1:40:08:36:CA:15:DE:0A:CA:7F:D2:94:95:F4:28:69:B4:D7:83
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B4227F222EE311F1A9FCF4E0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.52.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:b5:48:1d:61:19:ba:ba:1d:27:26:fa:99:88:1f:e7:c6:43:
29:e3:ce:14:d9:4e:1d:02:06:cf:89:50:0c:d7:72:ef:db:fe:
e5:0f:17:22:eb:24:c7:4d:91:07:95:3f:0d:2c:4b:2b:ac:15:
b3:ba:37:08:2e:ac:12:e0:f6:37:f4:29:72:64:b8:61:85:b7:
54:53:53:34:6c:8a:8b:47:56:4b:ec:48:22:13:2d:c9:9c:d6:
53:f7:fe:51:29:4b:ee:f7:e1:d4:85:bf:24:8d:f9:54:4c:9b:
36:c1:75:81:0b:a6:d7:88:26:47:71:9b:ce:51:52:75:56:f5:
c2:1d:95:7d:91:a5:03:e8:ca:70:e7:bb:a9:e5:e9:2f:23:d7:
60:e0:47:55:8d:d5:9c:03:87:36:8b:ab:2a:9b:46:66:29:d0:
4f:99:64:7e:9b:7c:70:8b:99:6a:c5:4f:cc:a1:12:e2:1b:fa:
ef:19:11:b0:26:30:82:f8:e6:d8:3f:1e:b3:93:a4:fe:08:b9:
ac:06:78:27:e5:4f:27:20:10:4f:bf:b5:32:91:e2:67:1e:e9:
e3:e0:15:0d:d6:7b:4a:a9:f1:bf:94:06:a6:5d:ec:d7:01:64:
62:e6:38:1e:7d:73:a4:fe:35:e7:3b:d1:14:63:41:cb:a7:db:
cb:ad:5b:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 14:29:28 2026 by rpki-client