Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BC2583F851C611F19497D0A5CE1D38B0.roa
File: BC2583F851C611F19497D0A5CE1D38B0.roa (raw, json)
Hash identifier: jn6CXb+v3kmnoG52Oc1LdH7dprlaeCCmOtoJ3oh/xrQ=
Subject key identifier: 24:FE:FF:DA:CC:16:80:FF:9A:AF:D4:88:1F:CC:8C:AE:A1:18:49:78
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B55D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BC2583F851C611F19497D0A5CE1D38B0.roa
Signing time: Sun 17 May 2026 08:02:23 +0000
ROA not before: Sun 17 May 2026 08:02:18 +0000
ROA not after: Fri 21 Aug 2026 08:02:18 +0000
asID: 272018
IP address blocks: 45.198.56.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111965 (0x1b55d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 17 08:02:18 2026 GMT
Not After : Aug 21 08:02:18 2026 GMT
Subject: CN=6a09760f-1742
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:56:ba:09:99:a8:89:6e:de:73:9a:b9:13:f4:
61:2e:54:9c:4c:da:2a:39:33:c3:54:74:0a:d1:04:
07:49:91:f0:6d:24:1e:ac:1a:d5:92:cf:e3:f7:64:
3b:18:ae:2f:f4:7f:37:02:e7:37:9b:d0:e9:fa:0e:
a6:35:ee:b1:15:3d:55:c5:c2:70:83:29:01:23:46:
bd:3e:01:ca:1c:7f:5f:2e:b7:b9:dc:b8:1d:77:a8:
ed:78:b4:ed:aa:80:6b:fe:a7:32:3f:b5:9d:9d:08:
f5:f3:15:b6:83:bf:0c:2b:54:67:8d:01:02:94:64:
18:82:74:1c:ef:85:73:8f:ea:cc:fe:d5:9a:84:bb:
27:7f:66:f3:a9:db:52:61:4b:81:b6:54:0f:92:5e:
f8:9b:d8:a3:40:ec:3a:b4:c7:2e:e7:12:c8:d0:95:
3b:1f:75:a6:c7:ee:5d:ed:9f:51:68:ed:ac:53:d4:
89:31:58:61:ba:81:b0:19:91:4c:b2:90:3f:3b:a5:
16:38:b0:2e:25:33:68:39:8e:99:18:c7:f5:2e:94:
72:c8:a3:df:34:42:80:39:7c:5c:19:f3:b5:26:97:
06:28:d3:e8:c7:53:ea:e7:71:6d:08:9a:1f:3d:76:
8b:6a:00:4a:b3:4e:bd:16:70:b7:bb:b7:18:6c:3f:
62:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:FE:FF:DA:CC:16:80:FF:9A:AF:D4:88:1F:CC:8C:AE:A1:18:49:78
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BC2583F851C611F19497D0A5CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.56.0/23
Signature Algorithm: sha256WithRSAEncryption
a1:7f:f0:5f:ca:a7:de:d8:c1:18:71:d0:61:49:4c:41:de:c5:
57:4f:ad:5c:09:88:75:6a:2f:b3:d8:0f:0a:bb:d3:4d:61:2d:
01:6d:b6:dc:6e:69:c8:91:f8:0c:d4:24:5e:3b:4f:e5:27:ca:
37:37:91:92:79:02:24:15:d7:e0:d6:97:21:ee:9a:02:bf:ce:
8d:af:ef:33:83:0a:c1:23:d9:3e:54:bc:f6:47:2f:15:38:1e:
25:63:7f:da:c0:a2:85:71:13:d1:0f:94:c8:e4:39:d4:c2:0b:
43:31:17:33:ed:09:d8:6f:10:3b:cc:a2:5b:bf:0c:fb:29:b7:
2b:4a:1a:bc:2c:89:44:c2:de:a4:f3:18:a4:d5:41:08:ef:51:
47:58:84:42:45:c5:e7:a8:44:85:fe:b1:41:05:12:fc:86:22:
8d:4b:ba:8e:0d:50:3e:ba:27:eb:65:f0:b6:b4:24:98:31:19:
d9:d3:2c:48:5e:78:d7:07:6a:65:f2:ae:49:13:5d:d3:9e:44:
ef:86:19:05:97:03:93:0e:ce:21:f5:59:ec:ef:15:8e:e1:5b:
bd:fb:bd:24:7e:80:ec:1c:f1:aa:46:d0:ac:a7:fb:3e:08:fc:
43:84:46:1a:f6:c8:7e:e1:e5:dc:9b:2d:e0:6c:64:6f:ea:b6:
07:b9:89:5a
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAbVdMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwNTE3MDgwMjE4WhcNMjYwODIxMDgwMjE4WjAYMRYw
FAYDVQQDEw02YTA5NzYwZi0xNzQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAnVa6CZmoiW7ec5q5E/RhLlScTNoqOTPDVHQK0QQHSZHwbSQerBrVks/j
92Q7GK4v9H83Auc3m9Dp+g6mNe6xFT1VxcJwgykBI0a9PgHKHH9fLre53Lgdd6jt
eLTtqoBr/qcyP7WdnQj18xW2g78MK1RnjQEClGQYgnQc74Vzj+rM/tWahLsnf2bz
qdtSYUuBtlQPkl74m9ijQOw6tMcu5xLI0JU7H3Wmx+5d7Z9RaO2sU9SJMVhhuoGw
GZFMspA/O6UWOLAuJTNoOY6ZGMf1LpRyyKPfNEKAOXxcGfO1JpcGKNPox1Pq53Ft
CJofPXaLagBKs069FnC3u7cYbD9iUQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFCT+
/9rMFoD/mq/UiB/MjK6hGEl4MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9CQzI1ODNGODUxQzYxMUYxOTQ5N0QwQTVDRTFEMzhCMC5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLcY4MA0GCSqGSIb3DQEBCwUA
A4IBAQChf/Bfyqfe2MEYcdBhSUxB3sVXT61cCYh1ai+z2A8Ku9NNYS0BbbbcbmnI
kfgM1CReO0/lJ8o3N5GSeQIkFdfg1pch7poCv86Nr+8zgwrBI9k+VLz2Ry8VOB4l
Y3/awKKFcRPRD5TI5DnUwgtDMRcz7QnYbxA7zKJbvwz7KbcrShq8LIlEwt6k8xik
1UEI71FHWIRCRcXnqESF/rFBBRL8hiKNS7qODVA+uifrZfC2tCSYMRnZ0yxIXnjX
B2pl8q5JE13TnkTvhhkFlwOTDs4h9Vns7xWO4Vu9+70kfoDsHPGqRtCsp/s+CPxD
hEYa9sh+4eXcmy3gbGRv6rYHuYla
-----END CERTIFICATE-----
Generated at Tue Jun 2 21:14:36 2026 by rpki-client