Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4C008AC03E3711F1A4199F0CCF1D38B0.roa
File: 4C008AC03E3711F1A4199F0CCF1D38B0.roa (raw, json)
Hash identifier: hxUU0o979EKJRbF9GyZx3JQ25TugJ+LrKo3ipfBqCFo=
Subject key identifier: 36:D6:97:CB:1F:E7:FC:8E:14:FE:57:AE:A1:AB:6E:3C:6D:B3:71:34
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01ADFB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4C008AC03E3711F1A4199F0CCF1D38B0.roa
Signing time: Wed 22 Apr 2026 10:37:45 +0000
ROA not before: Wed 22 Apr 2026 10:37:40 +0000
ROA not after: Thu 28 May 2026 10:37:40 +0000
asID: 48031
IP address blocks: 45.200.190.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110075 (0x1adfb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 22 10:37:40 2026 GMT
Not After : May 28 10:37:40 2026 GMT
Subject: CN=69e8a4f9-49b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:58:dd:13:d5:08:15:92:c1:d1:71:0d:ec:93:
d5:54:ad:92:ea:91:27:65:63:f5:8c:8d:65:c8:4e:
2d:a5:11:a7:a9:88:15:11:b4:c5:10:3a:59:0e:d6:
7c:51:2a:8d:0b:a1:d9:bc:82:9e:97:46:c0:7a:90:
11:eb:e2:02:f4:61:15:c0:f5:0d:43:82:bb:86:f1:
bf:01:b7:d7:88:28:8e:e1:2c:bd:5e:b9:9a:08:65:
c5:8f:88:97:17:49:e9:4a:38:7e:2b:40:a4:b6:d6:
cc:19:d3:2a:1e:69:ee:c5:1e:a4:0f:4f:e8:b4:a4:
0f:45:f1:b8:11:29:5c:62:ec:d2:6b:81:1c:96:04:
a0:12:df:2d:0f:03:c6:42:95:69:e3:e1:06:c0:3b:
3f:1c:ff:e2:3c:33:8c:8b:c9:1c:95:ca:2c:11:f4:
0a:72:f7:c3:8b:9f:37:f4:87:90:05:08:3c:70:c7:
0f:40:79:cc:a8:a3:95:0d:da:ac:8a:08:93:db:43:
95:87:c4:17:c0:0e:9a:b4:d6:01:d0:36:12:ea:9b:
97:87:9d:02:6e:77:2f:77:d2:55:63:ab:89:e5:be:
9f:ad:c3:7b:7c:b4:70:04:e8:aa:83:cf:6f:24:ce:
00:73:5f:5f:c3:39:72:20:f9:9f:aa:dc:6d:13:f1:
a4:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:D6:97:CB:1F:E7:FC:8E:14:FE:57:AE:A1:AB:6E:3C:6D:B3:71:34
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4C008AC03E3711F1A4199F0CCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.200.190.0/24
Signature Algorithm: sha256WithRSAEncryption
08:17:0a:ce:87:b7:6d:cc:92:18:2c:64:b3:f1:24:d6:6b:1a:
d8:ce:2f:ed:9b:f6:48:04:73:25:dc:bc:33:6c:a9:67:0a:3b:
9f:b2:a7:d0:0d:a8:73:ce:5e:07:43:54:9b:d0:5f:1a:8f:9e:
6f:dd:94:d1:7f:ab:73:9b:11:21:72:d4:0a:87:2e:a8:3f:23:
ab:e2:77:0e:a3:dc:fc:13:60:a2:5d:27:b9:ee:82:f5:9c:12:
bc:2a:91:47:44:af:9b:d7:50:7a:ca:bc:c0:28:9d:21:1b:08:
07:ff:35:de:6c:09:26:44:66:ab:9e:20:1a:c0:e2:a2:86:75:
1f:06:5b:bd:30:5a:57:3d:3e:f8:16:9e:cf:fe:00:6f:0f:be:
f4:22:06:16:50:21:31:7e:fd:ce:76:81:d1:f8:f9:f8:eb:31:
0d:0b:a6:27:6b:f6:4c:9e:fc:07:4e:e7:38:a1:5c:79:25:5a:
9a:10:8d:4a:f3:18:94:44:8f:0c:34:38:46:55:de:b3:48:f4:
b4:5c:48:75:67:47:c8:f3:37:90:24:44:0f:bb:5b:7b:1a:de:
a5:dd:7b:18:86:5e:ad:ab:90:30:d4:fd:03:af:67:1f:2c:71:
88:45:22:31:81:25:83:e9:ef:c3:d3:bb:7b:51:1f:fc:60:ad:
c5:cb:fc:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 12:24:43 2026 by rpki-client