Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1CAD54E6448C11F19C1336ACCE1D38B0.roa
File: 1CAD54E6448C11F19C1336ACCE1D38B0.roa (raw, json)
Hash identifier: 91RjpM8ZijkXv0pcFqyNaqrSORxwbEPd7AqbFgiTUVA=
Subject key identifier: 59:EE:0E:97:3E:A4:35:9D:70:4E:28:2E:34:9C:B0:D0:D1:23:7C:06
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B036
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1CAD54E6448C11F19C1336ACCE1D38B0.roa
Signing time: Thu 30 Apr 2026 11:59:59 +0000
ROA not before: Thu 30 Apr 2026 11:59:54 +0000
ROA not after: Thu 05 Nov 2026 11:59:54 +0000
asID: 141109
IP address blocks: 45.198.6.0/23 maxlen: 24
45.198.7.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110646 (0x1b036)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 30 11:59:54 2026 GMT
Not After : Nov 5 11:59:54 2026 GMT
Subject: CN=69f3443f-d59d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:62:e1:a3:c1:63:e4:ec:24:50:fd:b3:ed:8a:
fc:c7:bb:2f:bc:6f:1a:41:52:8a:9d:3a:14:ef:e7:
68:4e:03:32:f6:96:5c:df:cf:2e:a1:b6:3c:45:38:
21:f8:35:db:8e:3b:13:e1:37:71:4a:f6:fb:2b:18:
cf:35:0e:77:eb:61:47:19:2d:fe:48:eb:6b:5c:56:
9a:b5:20:cd:0a:00:94:05:c7:47:23:6a:0a:c1:18:
ae:23:f4:25:ac:c8:e9:67:80:70:7b:35:69:ed:e1:
cc:8c:50:f8:b3:6c:a9:d5:73:61:8e:c9:46:fd:57:
f4:1b:99:13:fa:2e:d6:93:75:e6:e3:01:c3:20:aa:
5b:0b:49:7e:97:f4:b6:83:fd:05:99:99:c9:17:22:
83:d8:ff:e0:63:4d:aa:ad:b6:44:9f:21:a9:ee:fa:
1c:aa:c9:a5:ef:55:f5:c2:0b:de:78:28:5e:71:07:
b5:97:48:cc:a7:ef:98:d7:d9:e3:e3:91:8f:35:6f:
2f:12:d8:4c:50:9d:23:52:c6:3c:62:8e:c6:e4:99:
e9:af:9b:b9:7b:9b:52:2e:aa:fe:ea:45:87:23:af:
6e:1f:20:67:94:11:37:1a:24:10:df:11:59:6d:ef:
23:3a:69:98:a8:bb:fa:36:ab:eb:54:7a:c6:7b:c6:
9a:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:EE:0E:97:3E:A4:35:9D:70:4E:28:2E:34:9C:B0:D0:D1:23:7C:06
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1CAD54E6448C11F19C1336ACCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.6.0/23
Signature Algorithm: sha256WithRSAEncryption
a5:9b:19:cb:18:a4:1b:db:de:c5:8f:2f:7e:dc:4d:3d:14:3e:
da:2f:da:8a:24:0d:fe:c3:89:eb:32:27:5c:60:43:94:f8:ec:
f6:0a:e1:d9:94:64:b4:99:99:4d:94:57:a0:90:11:29:87:c8:
d5:1a:32:70:76:48:db:3b:fc:a6:cd:be:97:9d:0c:56:36:59:
de:f9:12:86:00:8c:da:8f:55:e1:18:17:92:eb:21:e2:f5:0a:
6c:4c:87:9a:92:b3:d5:cb:e9:11:64:72:32:d7:e4:5b:17:6f:
86:b0:cd:39:5b:1b:c4:fb:30:06:9a:62:b7:c1:da:38:71:f7:
74:06:14:9a:10:18:0d:63:77:58:24:c4:23:fd:32:5b:cf:5e:
90:1d:61:92:61:05:67:65:c8:2d:1b:19:c9:1c:e1:1c:02:c1:
8f:00:c1:08:4e:5b:b4:59:42:9e:c9:0a:e6:e9:41:b6:f4:15:
dd:bb:80:35:d3:20:06:20:7a:fa:d8:b6:e0:0b:21:75:2f:9d:
a4:05:96:98:00:7b:0a:5f:a2:39:11:e4:b3:54:69:e2:78:c3:
db:14:d4:2e:aa:1b:04:74:aa:b2:45:fd:4c:3c:1f:9b:18:71:
43:b9:97:b4:41:cb:84:c3:6c:60:14:6a:11:e9:fd:2f:2d:fe:
37:e8:3b:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 12:42:22 2026 by rpki-client