Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E053B72E2AD711F1AD44B990DAE4EC9C.roa
File: E053B72E2AD711F1AD44B990DAE4EC9C.roa (raw, json)
Hash identifier: 9E5yDrhBHqyHo1/L/ncm//27AyaJp9cqfkmP/Q/VIes=
Subject key identifier: A8:19:77:D7:24:07:D0:B4:93:D5:BC:F7:5B:57:70:BE:01:B6:6F:A3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A83E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E053B72E2AD711F1AD44B990DAE4EC9C.roa
Signing time: Sat 28 Mar 2026 18:56:50 +0000
ROA not before: Sat 28 Mar 2026 18:56:45 +0000
ROA not after: Sun 10 May 2026 18:56:45 +0000
asID: 215691
IP address blocks: 45.198.55.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 31 Mar 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108606 (0x1a83e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 28 18:56:45 2026 GMT
Not After : May 10 18:56:45 2026 GMT
Subject: CN=69c82472-cf10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:8f:97:f0:51:78:13:b5:ed:52:53:e4:00:23:
dc:d1:2d:36:c6:34:05:9f:09:75:97:d9:30:9b:14:
94:51:69:ef:82:fc:88:36:3c:16:be:65:df:f2:99:
8c:b8:5d:ca:c7:79:de:a6:dc:11:51:8b:21:87:da:
26:6e:dd:f0:c5:f4:d8:f9:58:73:05:da:17:24:58:
c8:b4:c2:48:8f:b7:91:2b:12:ef:47:13:2c:12:db:
12:40:bb:e5:18:d0:1b:52:13:84:82:b1:a4:14:82:
d8:94:be:d6:aa:28:f5:12:25:5b:91:7d:f8:8d:96:
e9:7d:e3:27:d8:ef:23:94:f8:f8:b5:d2:c7:06:f2:
3e:4a:96:e3:30:da:b7:94:d1:25:6f:73:4c:36:a8:
37:46:f8:2c:aa:20:ec:5b:87:22:23:38:66:b2:9f:
08:5d:fe:4f:bc:00:9a:cd:46:a8:7f:6f:23:e4:70:
3a:1b:40:60:22:48:12:90:01:ce:cb:d5:3a:bc:b4:
da:fa:8f:06:f9:2f:e5:52:17:80:d6:04:12:de:e6:
b3:d4:68:b3:c4:c6:14:a7:fc:e6:a6:49:10:47:b3:
09:a1:06:da:96:3c:9f:ca:5e:6a:9a:6a:1c:f9:a0:
03:66:c2:34:e2:49:e6:0e:d5:4a:cb:51:b7:a5:9c:
3b:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:19:77:D7:24:07:D0:B4:93:D5:BC:F7:5B:57:70:BE:01:B6:6F:A3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E053B72E2AD711F1AD44B990DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.55.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:d7:5f:89:99:60:a4:29:79:23:41:40:17:90:46:cd:e6:ce:
3a:b2:0d:ad:92:2a:17:57:05:90:67:cd:ae:14:d7:c3:a6:94:
5d:4a:9f:65:92:c2:70:bd:2b:7a:10:5c:3e:92:59:95:d0:ed:
f7:b7:40:d4:42:97:61:27:61:6b:78:95:13:c1:2f:6c:e3:f1:
a1:68:2d:b1:72:38:44:56:03:d8:76:eb:74:e5:4b:52:05:31:
23:72:cf:e5:0f:32:c9:9f:25:a7:e6:cd:f1:14:11:66:77:e5:
c2:e7:a2:e5:85:93:db:bf:00:27:ec:fe:fe:17:d6:ff:9f:d8:
72:24:ae:59:65:c9:5c:37:7e:bc:60:fd:7d:c6:6d:5c:42:d4:
00:45:9d:1a:d3:3c:7f:0d:ce:58:8f:76:93:15:0b:e5:0d:95:
55:44:cc:5e:0b:c6:66:78:0b:5a:eb:f7:52:7a:f2:7f:88:ab:
c3:d7:dd:e5:e0:cb:9c:d8:fe:c7:6f:f7:5e:21:62:8d:54:45:
42:5e:63:36:3d:9a:7e:6f:32:34:b7:6d:60:50:2a:a2:38:b2:
78:67:fb:e6:25:ed:f4:98:20:4b:28:54:bb:ce:34:d5:9b:e0:
2a:06:11:32:81:0e:cd:94:7d:5a:ad:cc:14:ae:34:52:12:72:
39:27:c0:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:11:02 2026 by rpki-client