Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/12A75BD83E4F11F1A57F8A1CCF1D38B0.roa
File: 12A75BD83E4F11F1A57F8A1CCF1D38B0.roa (raw, json)
Hash identifier: r6WKEbYn7/qSZSW9vbJRzifWVcbRGSWge/bO6MrQGIA=
Subject key identifier: 67:9D:48:18:E2:CD:A3:C4:8C:7D:BF:DE:75:64:D7:3D:D6:48:F4:21
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AE1F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/12A75BD83E4F11F1A57F8A1CCF1D38B0.roa
Signing time: Wed 22 Apr 2026 13:27:56 +0000
ROA not before: Wed 22 Apr 2026 13:27:52 +0000
ROA not after: Tue 09 Jun 2026 13:27:52 +0000
asID: 395793
IP address blocks: 45.192.239.0/24 maxlen: 24
45.192.244.0/24 maxlen: 24
45.194.1.0/24 maxlen: 24
45.194.4.0/24 maxlen: 24
45.194.5.0/24 maxlen: 24
45.195.63.0/24 maxlen: 24
45.198.228.0/24 maxlen: 24
45.198.229.0/24 maxlen: 24
45.198.230.0/24 maxlen: 24
45.198.231.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110111 (0x1ae1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 22 13:27:52 2026 GMT
Not After : Jun 9 13:27:52 2026 GMT
Subject: CN=69e8ccdc-2d45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e1:77:a5:a1:e3:7a:7d:03:1b:85:b6:c8:c8:
33:31:7d:0c:09:80:71:79:ba:5c:ac:17:b5:1c:a4:
5c:4b:39:5f:f1:18:e9:fc:de:8d:99:63:7b:41:f1:
13:5a:4d:87:f1:8f:16:d6:c3:73:83:46:ec:af:6e:
fa:7f:a8:08:c4:ab:b3:60:74:2c:f6:c7:46:80:ce:
2b:97:2a:28:dc:77:6d:82:9d:25:62:68:3a:f1:53:
54:a5:31:a3:dc:87:79:12:5c:94:a4:88:6f:32:0f:
c7:6b:ee:ea:f8:f0:04:32:2d:a7:76:25:1f:ad:a5:
3a:f2:aa:9a:72:eb:f1:10:5c:4a:ae:4f:90:b5:74:
29:0d:99:dc:5c:1b:20:7c:f6:06:dc:f0:29:db:d2:
ca:6a:c1:fc:e4:11:67:e3:e1:a7:6b:4a:52:d5:b1:
8d:b3:25:24:6c:af:dc:dd:8d:14:43:c1:7b:2c:c3:
ed:d7:ec:e9:3a:1a:a8:62:dd:61:ba:43:fb:bc:c8:
de:0a:4d:95:ad:29:90:41:73:df:42:97:f0:ce:fe:
84:73:12:c6:37:82:97:cd:37:4d:fc:ba:06:76:7a:
ec:ac:fe:e4:b9:61:6c:d6:0c:4a:00:3d:9d:97:21:
5f:86:94:8f:64:f7:0d:0c:08:a7:7e:c0:ed:ee:f8:
18:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:9D:48:18:E2:CD:A3:C4:8C:7D:BF:DE:75:64:D7:3D:D6:48:F4:21
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/12A75BD83E4F11F1A57F8A1CCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.239.0/24
45.192.244.0/24
45.194.1.0/24
45.194.4.0/23
45.195.63.0/24
45.198.228.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:47:a3:ff:b5:f3:32:50:18:54:26:d5:6f:53:02:27:f5:2b:
dd:87:6e:95:5e:06:02:f6:e3:e1:a3:18:c1:ad:1a:bb:1d:c1:
b9:a4:4b:db:75:34:ee:52:02:70:7d:a1:e1:0d:d8:ce:02:2e:
de:1a:5b:9d:b8:6b:d6:f0:4d:a1:fe:f9:a6:93:06:21:09:5d:
57:01:ba:2a:a7:3f:dc:33:6e:b2:d1:72:9c:46:2d:31:4a:fc:
15:f1:43:39:87:01:94:7f:26:b6:d3:08:ed:bd:cf:65:94:98:
f6:4e:be:50:67:6c:20:da:5c:b4:3a:eb:fc:73:06:ed:df:7f:
18:69:0e:85:1b:c0:95:a5:b0:90:45:96:7c:13:03:a7:c9:bc:
63:b5:01:3f:e5:3f:14:4a:d0:98:a3:3c:b5:47:d6:2e:e7:f0:
23:2b:86:d8:88:88:b9:5e:89:a3:c8:af:77:bd:ed:95:2f:1b:
02:d9:79:79:e3:c6:ed:db:8e:34:8e:8f:6b:a9:46:71:29:ae:
f7:5d:d5:65:63:50:8f:c2:23:2f:76:b0:19:bb:0b:aa:c8:d8:
ca:97:57:a9:1a:b4:07:12:cf:de:af:ba:69:ec:ee:fb:4c:77:
eb:20:5f:d3:d4:08:f2:2c:f3:fb:65:c7:26:11:46:2c:34:98:
10:f8:f8:b4
-----BEGIN CERTIFICATE-----
MIIFnzCCBIegAwIBAgIDAa4fMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwNDIyMTMyNzUyWhcNMjYwNjA5MTMyNzUyWjAYMRYw
FAYDVQQDEw02OWU4Y2NkYy0yZDQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAu+F3paHjen0DG4W2yMgzMX0MCYBxebpcrBe1HKRcSzlf8Rjp/N6NmWN7
QfETWk2H8Y8W1sNzg0bsr276f6gIxKuzYHQs9sdGgM4rlyoo3Hdtgp0lYmg68VNU
pTGj3Id5ElyUpIhvMg/Ha+7q+PAEMi2ndiUfraU68qqacuvxEFxKrk+QtXQpDZnc
XBsgfPYG3PAp29LKasH85BFn4+Gna0pS1bGNsyUkbK/c3Y0UQ8F7LMPt1+zpOhqo
Yt1hukP7vMjeCk2VrSmQQXPfQpfwzv6EcxLGN4KXzTdN/LoGdnrsrP7kuWFs1gxK
AD2dlyFfhpSPZPcNDAinfsDt7vgYgwIDAQABo4ICwDCCArwwHQYDVR0OBBYEFGed
SBjizaPEjH2/3nVk1z3WSPQhMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8xMkE3NUJEODNFNEYxMUYxQTU3RjhBMUNDRjFEMzhCMC5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQALcDvAwQALcD0AwQALcIBAwQB
LcIEAwQALcM/AwQCLcbkMA0GCSqGSIb3DQEBCwUAA4IBAQAsR6P/tfMyUBhUJtVv
UwIn9Svdh26VXgYC9uPhoxjBrRq7HcG5pEvbdTTuUgJwfaHhDdjOAi7eGluduGvW
8E2h/vmmkwYhCV1XAboqpz/cM26y0XKcRi0xSvwV8UM5hwGUfya20wjtvc9llJj2
Tr5QZ2wg2ly0Ouv8cwbt338YaQ6FG8CVpbCQRZZ8EwOnybxjtQE/5T8UStCYozy1
R9Yu5/AjK4bYiIi5XomjyK93ve2VLxsC2Xl548bt2440jo9rqUZxKa73XdVlY1CP
wiMvdrAZuwuqyNjKl1epGrQHEs/er7pp7O77THfrIF/T1AjyLPP7ZccmEUYsNJgQ
+Pi0
-----END CERTIFICATE-----
Generated at Wed May 13 12:17:56 2026 by rpki-client