Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DD04E356577611F1B279EEC9CE1D38B0.roa
File: DD04E356577611F1B279EEC9CE1D38B0.roa (raw, json)
Hash identifier: /o7si4ZLt4e7itptNTWsCSZTc0R8myUlK3S+SX6usDk=
Subject key identifier: 13:41:F3:6D:9C:69:02:F7:93:9C:CE:43:F8:FD:53:73:FE:81:74:C9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B8F2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DD04E356577611F1B279EEC9CE1D38B0.roa
Signing time: Sun 24 May 2026 13:45:45 +0000
ROA not before: Sun 24 May 2026 13:45:41 +0000
ROA not after: Fri 10 Jul 2026 13:45:41 +0000
asID: 63099
IP address blocks: 45.192.235.0/24 maxlen: 24
45.195.148.0/24 maxlen: 24
45.195.202.0/24 maxlen: 24
45.196.226.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112882 (0x1b8f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 24 13:45:41 2026 GMT
Not After : Jul 10 13:45:41 2026 GMT
Subject: CN=6a130109-48aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:5c:c7:31:94:4b:de:5d:8d:18:59:cf:d5:83:
49:b5:34:80:c5:1d:bb:74:f4:79:2a:fc:88:f1:21:
10:1e:4e:19:14:88:69:c1:83:0e:6a:7c:76:22:23:
ca:e7:7c:5a:30:a8:24:86:bc:95:e1:3b:f3:0d:3d:
c5:1d:92:04:19:60:a3:b6:47:c3:1c:77:f0:e0:eb:
c4:80:c9:2c:21:f9:fc:b8:1a:a5:e2:c4:90:0d:78:
19:19:40:bf:10:bc:68:46:fd:df:a0:64:7c:08:a2:
b9:01:f6:ba:aa:c9:f1:be:c0:b1:f5:47:60:69:c5:
c6:51:c2:7c:33:4a:07:d9:62:46:a6:13:e7:70:81:
ea:89:03:63:08:56:c1:c2:52:51:d6:cf:92:c1:14:
ee:3a:60:d8:f7:e8:19:3b:17:f2:78:cf:82:64:60:
05:e0:64:14:bd:02:f7:3e:f3:3a:c6:c4:f2:fb:9e:
b5:6a:b4:a0:ff:83:38:d1:62:a0:ef:ca:1c:7b:a4:
c6:f3:2e:1e:e6:63:36:47:c3:eb:83:bb:a7:61:b1:
97:e5:82:11:f1:ca:c3:c4:09:52:8a:8a:14:09:12:
fb:46:fb:75:c6:c2:12:14:eb:87:7b:60:2f:b2:0c:
47:3d:d8:42:a8:13:ba:b2:ae:49:ac:dc:2e:52:1b:
47:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:41:F3:6D:9C:69:02:F7:93:9C:CE:43:F8:FD:53:73:FE:81:74:C9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DD04E356577611F1B279EEC9CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.235.0/24
45.195.148.0/24
45.195.202.0/24
45.196.226.0/24
Signature Algorithm: sha256WithRSAEncryption
48:04:89:0d:ed:fc:65:cd:71:6b:7a:13:57:af:7c:e4:b4:6d:
aa:b6:c8:09:64:f3:b4:17:aa:38:0b:21:f2:ab:af:90:2c:65:
99:9c:45:9b:d5:2b:fb:12:5f:b0:ff:c9:c1:5f:24:25:6b:ad:
97:1d:25:d6:5d:0f:96:b5:17:db:a3:d3:64:56:13:5b:fe:25:
98:da:62:51:df:9c:9e:71:8a:eb:56:66:4e:10:7f:3c:3e:78:
de:c3:fe:5b:04:f7:c4:88:c8:f8:92:b8:0b:f5:22:5f:97:d9:
0c:fa:28:3c:22:c2:85:bd:e5:b6:f2:a7:21:f5:33:e2:23:28:
d7:86:e5:33:97:0c:fb:a3:06:7e:3b:ea:53:37:47:5f:fa:45:
82:8a:5d:ca:5f:15:26:33:b1:60:fd:81:6a:09:9e:2d:62:7c:
f4:a2:55:56:3c:9e:b7:2a:54:c3:75:24:06:13:b0:99:9b:d1:
21:e7:0c:ae:7d:2c:45:52:45:13:32:c1:6f:51:6f:b6:9f:4f:
28:f2:50:9a:20:8d:2c:59:48:2d:ab:8e:24:01:a1:44:2d:5a:
03:b3:ae:e7:dc:61:55:77:ea:28:3d:32:d1:ff:4e:b7:26:c0:
c5:b5:05:39:bd:ce:c8:65:9c:93:08:98:33:90:00:94:a1:eb:
5d:44:0d:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:28:45 2026 by rpki-client