Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BC115E8429C411F1931AFBD7DAE4EC9C.roa
File: BC115E8429C411F1931AFBD7DAE4EC9C.roa (raw, json)
Hash identifier: TJcd8lXqOl+RDrc3PjCuhjHbnL0h2UtIB+iFhnQ9Bu0=
Subject key identifier: 31:70:C3:00:FB:F3:C1:A5:13:D3:76:79:D4:78:2F:F2:CA:0D:AF:06
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A7B7
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BC115E8429C411F1931AFBD7DAE4EC9C.roa
Signing time: Fri 27 Mar 2026 10:07:18 +0000
ROA not before: Fri 27 Mar 2026 10:07:12 +0000
ROA not after: Sun 10 May 2026 10:07:12 +0000
asID: 10103
IP address blocks: 45.196.228.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 Apr 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108471 (0x1a7b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 27 10:07:12 2026 GMT
Not After : May 10 10:07:12 2026 GMT
Subject: CN=69c656d5-b141
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:54:9d:a6:b4:7a:b4:95:40:3f:a7:e7:23:e7:
ec:ce:0a:2c:48:71:4a:18:e0:f1:18:72:85:5d:6f:
97:3a:40:ed:ea:5e:8b:1c:53:89:94:11:e9:29:0b:
30:7a:06:f3:66:3c:07:0c:09:b1:4d:b9:68:b0:c1:
a6:6f:5e:25:d6:a7:40:d1:a7:82:2f:3b:dc:f4:f7:
c6:53:67:72:c1:97:ff:b3:91:19:18:31:0c:00:5d:
3b:aa:5a:f7:b3:d9:90:fb:c2:4d:d6:fe:e3:35:c5:
71:9c:44:ba:2e:78:94:70:3b:c1:1e:38:35:b6:25:
79:99:90:3c:da:ce:90:c6:6e:fb:d1:c0:f8:74:86:
43:f0:01:93:c3:6c:3a:22:3d:20:c9:a0:21:a8:ea:
35:03:a0:7c:7f:6a:ac:a0:d5:e4:3d:93:e7:25:9a:
26:2f:c7:c2:7e:46:3e:cc:6f:4d:fc:99:92:41:d5:
71:ed:7d:f8:19:06:94:2c:88:28:b1:24:05:b3:57:
37:8c:09:86:aa:ce:1a:ef:b9:34:ef:67:db:72:ea:
e5:db:b6:00:b7:3f:20:c6:24:cb:8f:9f:58:2a:98:
55:51:1c:99:c6:5f:0f:e6:72:91:77:2e:60:85:61:
a0:a9:dd:00:10:82:a6:90:cb:16:a6:93:cd:12:37:
03:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:70:C3:00:FB:F3:C1:A5:13:D3:76:79:D4:78:2F:F2:CA:0D:AF:06
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BC115E8429C411F1931AFBD7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.228.0/24
Signature Algorithm: sha256WithRSAEncryption
20:4b:1c:b3:4b:d7:dc:14:a5:b4:d6:62:4c:5b:a8:ef:2f:46:
5e:ac:d4:8d:f6:0f:8b:5d:58:08:f3:d8:ed:8d:fb:e4:1e:a5:
21:e1:df:a3:39:e8:21:e8:c5:8d:fa:f9:4e:83:ba:b4:a8:e7:
b4:ee:07:65:f3:58:8c:c3:5e:13:eb:53:68:7f:5d:d4:d2:91:
31:09:42:50:fd:b9:d6:ee:e8:75:57:79:34:26:ad:7f:2a:25:
69:83:06:2b:f9:60:bd:4b:0c:39:2c:6d:64:7e:6f:13:c2:00:
be:c1:7b:4f:92:0a:aa:a7:2b:9b:4d:9c:ba:57:89:00:21:5d:
31:e4:ce:78:91:0c:00:4c:b2:f6:82:f4:fd:79:6b:b0:f4:c9:
0a:43:d1:9c:ff:67:c6:62:fe:68:71:3a:a0:60:2a:f6:b8:d8:
15:01:4b:b6:1a:ae:6e:8e:18:da:0e:47:a0:ee:4c:4b:90:8b:
fb:2c:65:7a:9b:4c:16:9c:c0:27:89:b6:3c:7a:6c:71:fc:68:
cd:97:34:b9:08:31:ee:8a:d0:04:4a:42:3d:d5:5e:7e:82:7f:
64:8c:58:85:1c:1f:a5:7f:d3:c0:d8:2a:b5:bd:cb:e2:b6:6c:
a5:b4:1e:a1:9a:1e:fc:a7:f6:9c:e0:e6:1d:82:fc:bf:fd:99:
11:f9:05:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 14:30:39 2026 by rpki-client