Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E05AC56856C011F1B2DEF0F2CE1D38B0.roa
File: E05AC56856C011F1B2DEF0F2CE1D38B0.roa (raw, json)
Hash identifier: qUj/2GZ+FPTXw7SWuPK8dpOLK7JJK8vkp2d+BWgB+20=
Subject key identifier: CB:76:7F:53:BF:BD:2B:2D:16:96:87:2B:36:7F:13:CB:84:DA:11:17
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B89D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E05AC56856C011F1B2DEF0F2CE1D38B0.roa
Signing time: Sat 23 May 2026 16:03:03 +0000
ROA not before: Sat 23 May 2026 16:02:58 +0000
ROA not after: Wed 19 Aug 2026 16:02:58 +0000
asID: 402169
IP address blocks: 45.195.112.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112797 (0x1b89d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 23 16:02:58 2026 GMT
Not After : Aug 19 16:02:58 2026 GMT
Subject: CN=6a11cfb6-0e7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:42:71:ed:e9:00:31:3d:23:d2:06:64:9d:f7:
23:43:61:b3:9f:55:f5:a0:58:4f:fa:7f:cb:d7:e6:
c3:06:35:4f:ec:cd:68:60:5e:ea:95:22:fb:91:9b:
1b:82:63:27:d4:c7:b1:de:9b:75:c5:8d:d9:74:24:
af:71:07:44:b4:93:25:57:d0:98:dc:be:17:ad:af:
aa:cc:d2:ca:74:41:aa:67:57:28:f6:1f:51:bd:89:
d5:55:a9:6d:f0:e2:c8:08:ae:cb:b5:bf:78:4d:54:
9d:7a:6a:11:36:f0:de:d7:e2:65:6c:2b:99:e1:c4:
c4:5c:45:eb:3b:ad:c2:a9:6d:99:1b:35:67:3e:60:
25:dc:89:86:b7:95:7b:a1:df:f9:13:53:74:b1:00:
ed:fd:04:b6:81:1f:0f:80:9f:4b:e2:c4:ce:fb:a3:
fa:12:6a:6e:28:1a:ab:67:f5:8c:c8:76:68:a4:69:
00:d3:25:4c:f0:6f:2b:81:55:fb:99:f3:a5:0e:5e:
c9:68:e4:a6:4f:d7:69:a9:ee:f4:1a:fd:d2:40:1a:
db:d6:e0:0e:7b:09:ef:31:ba:b8:4a:5e:a2:f6:d4:
c5:8f:3e:95:da:20:aa:d8:e6:ef:e0:00:69:55:76:
0c:c0:c5:35:ea:6c:2b:dc:67:9c:c8:8c:c2:6f:3e:
28:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:76:7F:53:BF:BD:2B:2D:16:96:87:2B:36:7F:13:CB:84:DA:11:17
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E05AC56856C011F1B2DEF0F2CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.112.0/21
Signature Algorithm: sha256WithRSAEncryption
4f:12:12:5c:97:1c:d3:9b:dd:ee:ea:86:79:75:30:40:b1:61:
50:53:8b:d4:2b:d3:66:d2:9b:29:05:da:49:a2:37:ae:47:6a:
b1:7c:2c:9f:67:2c:c4:49:35:e4:a2:c6:6c:0f:cd:00:c1:f6:
32:9b:53:dd:1a:c4:a4:29:10:af:f3:73:28:83:88:c7:c2:3c:
a5:36:a0:7c:80:45:23:42:e8:ad:6e:e6:93:2f:53:95:62:2f:
f7:0c:92:85:f2:80:b8:cf:cd:25:46:6a:cc:50:12:a0:b6:6d:
28:55:19:64:0f:40:05:d6:07:21:2b:d4:ff:16:3a:a0:01:63:
6d:e6:99:c5:dd:d2:a7:7c:8a:d1:e1:30:06:fa:38:be:39:09:
e5:26:4b:41:1b:31:e1:d0:eb:9d:06:6a:db:5f:8e:23:fd:83:
94:3b:b2:51:da:5f:03:7e:82:f5:c7:fc:a3:5f:d3:d4:69:cf:
be:11:4b:ac:03:83:98:3f:a7:80:11:88:65:bd:d9:3e:e1:10:
60:ba:e5:98:fc:0a:7a:99:b9:a2:f8:d8:cd:88:99:4e:e2:ca:
2a:76:d2:f8:48:5a:d9:e2:d0:4b:8e:02:d9:f4:9b:59:1c:e4:
f4:83:03:99:73:97:04:70:23:8d:f7:ce:dc:67:25:a4:b9:b7:
0e:d8:67:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:13:59 2026 by rpki-client