Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/49A3C3584A5F11F1BAE87810CF1D38B0.roa
File: 49A3C3584A5F11F1BAE87810CF1D38B0.roa (raw, json)
Hash identifier: tYz1uoCAn7feE4JiPEPEZNy5NyLgLsFROIkWvrSJgS8=
Subject key identifier: AA:C2:CD:56:59:B3:40:6F:B0:63:5B:70:22:D7:18:E7:E1:9E:24:A9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B280
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/49A3C3584A5F11F1BAE87810CF1D38B0.roa
Signing time: Thu 07 May 2026 21:54:15 +0000
ROA not before: Thu 07 May 2026 21:54:10 +0000
ROA not after: Wed 10 Jun 2026 21:54:10 +0000
asID: 271916
IP address blocks: 45.194.48.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111232 (0x1b280)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 7 21:54:10 2026 GMT
Not After : Jun 10 21:54:10 2026 GMT
Subject: CN=69fd0a06-c240
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b2:c9:5d:8e:6f:86:4a:1b:d2:b8:ea:b1:a4:
bc:66:8a:4e:7f:d3:f9:7a:f7:64:e8:cd:33:82:36:
d0:e3:dc:39:fe:ac:6c:c8:69:bb:4b:b0:72:2f:18:
d4:53:52:03:ad:f8:9b:d7:c9:46:1c:3a:5e:cf:06:
5b:1d:c3:cc:89:41:d5:6d:55:88:25:53:0f:60:29:
8b:e8:62:3b:f8:79:f8:57:06:d7:ec:67:73:70:92:
64:b2:cc:98:10:b4:ab:1f:1c:51:95:af:17:09:ff:
32:fc:38:3e:7a:c1:d5:58:5c:88:99:da:8e:98:a0:
de:6f:6d:66:78:bf:e6:4f:56:34:bc:28:8c:bf:5c:
eb:05:de:c7:35:f1:1c:cf:45:5d:92:96:6a:dd:32:
42:b1:3e:8c:4c:4f:d5:b7:0b:e3:ec:8d:fe:43:6d:
e5:63:a3:43:0a:ac:e7:95:fc:97:96:13:47:f9:19:
ee:4e:50:d7:6d:8c:b7:a1:7b:d9:2f:d2:31:2b:ea:
c3:7b:b0:53:a5:fc:59:aa:48:d8:68:52:bc:8e:d5:
21:51:3c:45:74:14:51:e4:68:c9:c2:20:6e:ea:38:
d5:1e:6b:7f:5e:b1:20:ab:05:b6:74:8d:c6:e1:76:
67:2d:74:25:e0:58:46:66:6f:7f:5b:55:c1:8d:87:
db:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:C2:CD:56:59:B3:40:6F:B0:63:5B:70:22:D7:18:E7:E1:9E:24:A9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/49A3C3584A5F11F1BAE87810CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.48.0/22
Signature Algorithm: sha256WithRSAEncryption
96:a7:b0:a4:6d:8a:30:bf:76:59:a2:41:f0:7d:2f:b4:f3:03:
9a:6f:9b:85:31:80:be:45:a1:5a:6a:56:a1:84:c3:a5:ab:90:
3c:5f:6a:8c:71:5a:31:d7:7f:d3:4f:b9:65:87:83:37:9c:b6:
7c:a0:f3:21:6e:d1:d7:34:24:b5:43:6c:0a:68:8a:ce:11:e3:
07:c8:46:7c:f7:bd:05:43:b5:db:8b:dc:09:a4:c4:b1:70:ec:
e7:26:fd:bc:35:d8:b4:27:8d:2f:d3:a2:ff:50:23:13:18:52:
cf:d5:71:25:2f:a3:80:ff:f0:35:87:67:e9:b5:fa:3f:c7:16:
41:75:7a:68:9c:f5:ef:bc:65:f1:77:7d:38:9e:9e:02:30:b8:
41:c8:85:c3:be:bd:7c:06:52:c9:52:55:27:84:c4:fb:13:f1:
a2:fd:b0:47:ae:ac:b1:99:52:30:af:80:ec:24:97:b0:9c:2a:
aa:3b:48:71:c0:3f:34:ff:d8:61:d7:7f:58:21:e8:81:b7:1e:
51:fa:bf:4f:01:d7:db:df:ba:92:d4:14:60:b4:b7:64:7f:29:
d9:36:8f:4f:31:23:96:ac:2f:9f:a1:df:02:88:45:bf:7e:98:
fe:c4:05:51:28:51:1c:18:43:2d:6e:f7:10:c8:6a:26:5c:30:
d3:29:e8:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 10:20:44 2026 by rpki-client