Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E468AB1E58F711F18B5FA3F2CE1D38B0.roa
File: E468AB1E58F711F18B5FA3F2CE1D38B0.roa (raw, json)
Hash identifier: kfTX1K8jTfxubw30LbZoJmuGeW6c3ZKtOpzeMto8l40=
Subject key identifier: 11:86:57:50:D2:8A:39:D1:E5:74:30:3C:7C:46:25:D9:BD:84:B2:B4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B9F1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E468AB1E58F711F18B5FA3F2CE1D38B0.roa
Signing time: Tue 26 May 2026 11:41:54 +0000
ROA not before: Tue 26 May 2026 11:41:49 +0000
ROA not after: Thu 02 Jul 2026 11:41:49 +0000
asID: 215925
IP address blocks: 45.198.224.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113137 (0x1b9f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 26 11:41:49 2026 GMT
Not After : Jul 2 11:41:49 2026 GMT
Subject: CN=6a158702-b44b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:1d:f9:9e:48:a7:57:c1:0f:76:46:8f:bc:6b:
90:93:4b:60:a2:45:d0:f3:1d:13:fe:e6:97:e7:4b:
12:6f:88:b4:3b:e9:90:18:26:5d:71:a3:b2:d2:1b:
45:84:f7:24:64:9a:b1:2d:b2:ad:03:87:a5:b7:05:
24:d4:dd:e7:be:c0:db:63:73:48:b9:e9:ce:22:f6:
97:b4:31:d4:59:4e:c0:69:68:1b:64:13:98:6d:8e:
6e:15:cf:c8:da:fd:ec:0e:52:4e:10:69:b0:f1:14:
db:52:7b:87:0a:d8:0e:bb:bc:66:d9:dc:7a:4a:fc:
3b:b5:65:6d:62:84:4b:fa:8f:c0:1c:c7:f8:d6:22:
a7:d1:57:e2:3e:e3:23:6d:d0:c9:fa:66:24:ac:9b:
02:8c:9f:49:2e:22:72:c4:e3:69:fb:25:4e:7d:51:
8a:96:0d:f1:08:99:b2:88:7a:39:e4:f1:19:49:b7:
9a:55:2e:f8:11:cd:80:bd:52:e0:0f:91:23:e9:0a:
19:0a:c6:f3:43:ce:e3:8b:48:ad:9b:08:0a:9a:8a:
7f:b1:1e:a7:24:c6:7e:f4:3d:07:5d:86:f4:8c:31:
b7:4a:ae:00:73:f3:48:fe:43:08:7e:1f:b5:8b:5d:
b9:88:63:e1:79:bc:5b:7c:4a:80:ca:91:27:77:4c:
9c:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:86:57:50:D2:8A:39:D1:E5:74:30:3C:7C:46:25:D9:BD:84:B2:B4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E468AB1E58F711F18B5FA3F2CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.224.0/24
Signature Algorithm: sha256WithRSAEncryption
55:5a:ac:f4:be:51:50:82:81:ab:88:ac:20:a3:07:45:01:ab:
86:12:c4:58:bc:3f:ad:48:7e:88:b0:dc:a3:d9:29:8d:41:b8:
f4:fc:02:e4:32:07:73:aa:6c:34:d1:96:7b:f2:d9:f2:d7:03:
9a:58:d0:65:d4:8f:59:ca:f7:26:76:57:ac:51:5b:71:3c:b7:
4d:7c:a4:3a:0c:22:49:fd:35:34:e6:fb:bf:31:d8:f7:9b:0a:
a5:b1:ad:2d:00:fd:3c:49:f6:16:d2:3f:b4:3f:1e:66:e8:30:
42:5a:93:cc:20:48:f9:d2:23:97:e3:49:8f:a3:f8:18:e2:72:
cf:5b:cf:14:aa:92:35:e3:b5:53:84:fa:c4:24:0c:c6:ff:b6:
73:91:59:49:77:66:ab:fd:ce:c1:00:8a:c2:07:35:6b:ba:8c:
ee:f8:f2:0a:61:18:fb:c7:64:b5:39:84:d5:2e:ca:26:29:1f:
d4:e5:d4:70:cf:38:1f:33:8e:3a:3d:31:12:98:31:ae:92:4c:
5e:17:42:2e:e2:e3:0f:02:9c:d2:b3:b2:fe:cc:ee:38:9f:16:
ed:dc:ec:f6:56:6f:d2:c6:5e:9a:b2:90:61:30:e5:47:17:d7:
e4:5f:6a:c8:ac:b3:de:be:63:3d:bf:2a:b9:d8:c8:0e:ff:c3:
b6:57:02:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:13:57 2026 by rpki-client