Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4FC273663FD711F198019500CF1D38B0.roa
File: 4FC273663FD711F198019500CF1D38B0.roa (raw, json)
Hash identifier: Ze2Xx6diY/wmznWAX6EtcLMdxxwZ7yFRj5AfnWRaCzM=
Subject key identifier: DD:8C:D8:B2:28:4C:D8:03:81:D4:7A:01:F6:88:5F:46:EE:33:61:9D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AEF6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4FC273663FD711F198019500CF1D38B0.roa
Signing time: Fri 24 Apr 2026 12:15:42 +0000
ROA not before: Fri 24 Apr 2026 12:15:37 +0000
ROA not after: Sun 31 May 2026 12:15:37 +0000
asID: 44559
IP address blocks: 45.196.122.0/24 maxlen: 24
45.196.123.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110326 (0x1aef6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 24 12:15:37 2026 GMT
Not After : May 31 12:15:37 2026 GMT
Subject: CN=69eb5eee-6396
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a7:fd:dd:3c:86:a3:24:8a:e1:e5:56:65:ba:
44:ea:85:6c:1c:b8:2f:28:f2:6f:43:83:7f:d7:d4:
05:e8:62:bb:5e:bd:dc:7d:b5:5a:0c:ff:46:c2:62:
d0:64:aa:f5:66:a6:05:ec:53:25:d5:a0:9d:7d:62:
f5:55:16:ae:08:63:b8:e5:5f:16:51:79:b0:34:4f:
40:29:d0:e7:90:82:ab:3a:d0:f9:32:ae:eb:15:95:
e4:c0:dc:86:1b:27:ec:72:ed:8c:1c:80:f4:b7:e0:
ab:1c:d7:98:4c:b4:fb:fb:86:5c:2f:34:df:8a:ae:
13:c1:38:51:ba:a7:d5:af:2f:8a:e4:c0:c7:68:f5:
c3:6d:6f:0f:83:66:44:f2:47:e2:71:38:9f:53:82:
11:1f:df:3e:69:44:61:00:94:d3:3b:39:13:7c:29:
69:c0:6d:59:e9:9d:fc:49:61:a8:38:35:a3:d5:12:
06:4a:9f:69:a2:3b:d2:55:4b:e1:02:e4:78:e0:50:
b4:ad:c7:6e:13:6a:e1:24:c5:d1:a7:8c:51:a8:3b:
c8:80:9b:d2:e0:3f:67:4e:50:4f:be:3b:50:6c:9d:
eb:42:46:50:b2:f1:3b:e8:d1:43:61:a5:d8:c6:35:
06:e0:b0:af:47:e5:f0:75:d0:a3:a3:ce:63:e2:11:
a6:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:8C:D8:B2:28:4C:D8:03:81:D4:7A:01:F6:88:5F:46:EE:33:61:9D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4FC273663FD711F198019500CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.122.0/23
Signature Algorithm: sha256WithRSAEncryption
73:83:4e:51:74:f8:16:e7:9a:7b:f0:a0:96:b8:7f:cc:c3:f4:
b5:88:72:5f:da:04:5d:6f:b4:ec:bf:0d:41:40:bc:7d:6c:37:
80:71:6d:9f:de:c9:fb:67:fe:e7:65:7b:1a:e7:c1:99:42:f2:
0d:00:49:f4:a8:9a:18:54:d2:dd:57:90:06:8c:c9:29:96:7e:
f3:18:47:10:e7:f7:14:e8:be:8a:1f:9d:a6:6d:89:67:c7:c8:
b2:c7:54:e8:08:12:74:17:ca:cf:72:85:0f:1a:95:09:79:da:
0c:16:a0:c9:1e:60:2b:f0:1d:e9:07:02:5a:d4:57:ab:76:d9:
0f:86:c2:94:d9:2c:85:7d:bb:27:e9:5a:b7:7c:06:71:ad:18:
63:0d:42:b8:37:31:7a:f6:e1:c7:e0:1b:18:ab:e1:72:cc:17:
04:ff:28:16:52:b2:6b:de:4f:c4:21:8b:82:eb:bf:8e:63:39:
05:47:cc:f6:08:99:b4:4c:70:4f:32:9d:bc:2e:3c:ba:3c:41:
ba:bb:30:bc:18:c9:d6:c6:d9:b1:a8:d9:22:36:6f:55:dd:2b:
80:ab:77:32:4d:d7:2e:3b:d8:04:08:48:a6:e0:02:5a:5f:62:
51:f1:3b:2b:b7:dd:ef:a0:a7:62:2e:45:1b:61:78:7b:65:48:
ef:f9:20:38
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAa72MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwNDI0MTIxNTM3WhcNMjYwNTMxMTIxNTM3WjAYMRYw
FAYDVQQDEw02OWViNWVlZS02Mzk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAraf93TyGoySK4eVWZbpE6oVsHLgvKPJvQ4N/19QF6GK7Xr3cfbVaDP9G
wmLQZKr1ZqYF7FMl1aCdfWL1VRauCGO45V8WUXmwNE9AKdDnkIKrOtD5Mq7rFZXk
wNyGGyfscu2MHID0t+CrHNeYTLT7+4ZcLzTfiq4TwThRuqfVry+K5MDHaPXDbW8P
g2ZE8kficTifU4IRH98+aURhAJTTOzkTfClpwG1Z6Z38SWGoODWj1RIGSp9pojvS
VUvhAuR44FC0rcduE2rhJMXRp4xRqDvIgJvS4D9nTlBPvjtQbJ3rQkZQsvE76NFD
YaXYxjUG4LCvR+XwddCjo85j4hGm2QIDAQABo4ICojCCAp4wHQYDVR0OBBYEFN2M
2LIoTNgDgdR6AfaIX0buM2GdMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC80RkMyNzM2NjNGRDcxMUYxOTgwMTk1MDBDRjFEMzhCMC5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLcR6MA0GCSqGSIb3DQEBCwUA
A4IBAQBzg05RdPgW55p78KCWuH/Mw/S1iHJf2gRdb7Tsvw1BQLx9bDeAcW2f3sn7
Z/7nZXsa58GZQvINAEn0qJoYVNLdV5AGjMkpln7zGEcQ5/cU6L6KH52mbYlnx8iy
x1ToCBJ0F8rPcoUPGpUJedoMFqDJHmAr8B3pBwJa1FerdtkPhsKU2SyFfbsn6Vq3
fAZxrRhjDUK4NzF69uHH4BsYq+FyzBcE/ygWUrJr3k/EIYuC67+OYzkFR8z2CJm0
THBPMp28Ljy6PEG6uzC8GMnWxtmxqNkiNm9V3SuAq3cyTdcuO9gECEim4AJaX2JR
8Tsrt93voKdiLkUbYXh7ZUjv+SA4
-----END CERTIFICATE-----
Generated at Wed May 13 07:45:03 2026 by rpki-client