Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BB3C4E043EDE11F1B7144115CF1D38B0.roa
File: BB3C4E043EDE11F1B7144115CF1D38B0.roa (raw, json)
Hash identifier: jetL7BRtYSbUGWnzUQC/EUse5Ys7mdVWNMw34upC+lQ=
Subject key identifier: A5:D5:BB:E0:49:D2:AC:F7:60:EA:C8:2A:8C:93:BC:5A:B6:F4:94:24
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AE91
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BB3C4E043EDE11F1B7144115CF1D38B0.roa
Signing time: Thu 23 Apr 2026 06:36:17 +0000
ROA not before: Thu 23 Apr 2026 06:36:12 +0000
ROA not after: Tue 09 Jun 2026 06:36:12 +0000
asID: 63099
IP address blocks: 45.192.235.0/24 maxlen: 24
45.196.226.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 08 May 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110225 (0x1ae91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 23 06:36:12 2026 GMT
Not After : Jun 9 06:36:12 2026 GMT
Subject: CN=69e9bde1-83c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:76:7d:f3:fd:48:e3:eb:ab:3c:e0:2e:5b:ac:
9a:13:41:30:e7:c2:00:68:93:ce:57:25:27:26:be:
ce:5b:d0:34:f6:a0:bb:7f:09:3b:5d:68:89:3d:70:
38:fa:b2:a8:ef:05:de:00:a6:c7:b8:71:62:66:53:
3f:ee:71:e3:76:53:d0:80:40:52:1a:d1:52:d5:c6:
50:fc:1a:68:18:12:7d:24:91:dd:79:5e:b8:68:66:
df:81:29:4f:5f:45:89:dd:66:99:a6:49:80:82:5f:
8e:5d:a4:37:bb:8d:c4:76:e1:50:09:43:11:1b:d0:
fe:a9:53:3b:3c:d5:cd:b3:93:6a:23:8c:b4:c7:87:
53:0b:42:8b:11:c0:ea:1b:b0:9c:78:ad:3a:62:27:
70:6a:22:6b:c6:61:cc:6f:d4:0d:0e:0f:4a:51:a2:
99:aa:d2:23:c1:65:8d:b0:2a:ca:1c:81:63:20:90:
e3:5c:f9:5d:5f:53:c9:01:fb:d2:4b:db:71:be:23:
33:4d:49:39:c2:61:18:aa:70:03:20:a0:08:93:35:
72:10:a1:a1:14:f2:91:92:3e:37:2a:02:72:e6:89:
b4:97:05:11:9e:05:f2:a8:fc:f8:2e:bb:13:86:53:
6f:e1:4c:82:19:6e:36:54:48:c4:6a:6f:be:be:04:
67:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:D5:BB:E0:49:D2:AC:F7:60:EA:C8:2A:8C:93:BC:5A:B6:F4:94:24
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BB3C4E043EDE11F1B7144115CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.235.0/24
45.196.226.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:70:35:15:8d:d6:7e:b8:40:d8:16:f1:6f:e2:d1:99:51:b7:
fa:f2:05:60:c5:ab:96:f5:88:d3:27:b1:30:de:12:f5:0e:68:
9a:79:2c:fc:df:c3:95:29:95:e5:38:9c:b4:d1:44:7c:cb:d0:
5c:f0:ee:e9:f7:dc:eb:be:c6:63:fc:fb:df:d7:8d:f9:dc:87:
bd:59:3f:27:54:55:e5:60:f2:94:5a:03:c2:a0:75:ec:8b:66:
97:7f:1f:ec:45:92:6a:e5:eb:24:b5:c7:37:33:62:89:e6:ed:
92:f6:ae:f3:f6:02:c6:09:2f:98:6c:20:25:6b:b7:ee:80:a8:
90:d3:4a:12:4a:96:58:66:58:93:11:81:f1:ea:c3:2c:46:64:
0d:3f:56:10:99:cb:d8:39:05:50:d2:a8:23:a9:52:9d:82:7a:
fd:fd:2c:d2:25:71:7c:52:86:b8:0d:f9:cc:e3:f0:9f:df:58:
19:f0:ea:ac:87:3e:65:47:3b:76:63:8a:57:4e:14:df:73:7f:
e7:c6:ca:82:25:f2:88:67:f3:a2:0e:01:b0:36:53:f8:35:33:
25:67:0d:be:92:ca:8b:df:53:26:50:a1:b4:a3:34:2d:9c:c7:
8e:39:c5:20:98:77:28:3e:19:a4:35:65:84:d2:92:41:6c:31:
1f:7c:e1:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 6 09:06:19 2026 by rpki-client