Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6B07D8083E7111F1B77979ECCE1D38B0.roa
File: 6B07D8083E7111F1B77979ECCE1D38B0.roa (raw, json)
Hash identifier: TRTlRYIrNXgh3Hf3gaXpbqBl/DFd+KPmvjS/Tr46ORQ=
Subject key identifier: D6:00:D5:37:B0:34:C2:B9:64:50:31:4D:6F:61:43:A7:CD:B3:1A:4F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AE4F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6B07D8083E7111F1B77979ECCE1D38B0.roa
Signing time: Wed 22 Apr 2026 17:33:48 +0000
ROA not before: Wed 22 Apr 2026 17:33:43 +0000
ROA not after: Tue 09 Jun 2026 17:33:43 +0000
asID: 2914
IP address blocks: 45.192.232.0/24 maxlen: 24
45.192.244.0/24 maxlen: 24
45.201.12.0/22 maxlen: 24
45.202.74.0/24 maxlen: 24
45.204.149.0/24 maxlen: 24
45.204.150.0/24 maxlen: 24
45.204.151.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110159 (0x1ae4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 22 17:33:43 2026 GMT
Not After : Jun 9 17:33:43 2026 GMT
Subject: CN=69e9067b-91ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:cc:2b:07:c9:04:b4:45:2e:01:d1:a7:30:d2:
87:33:ac:d8:9b:83:d0:da:85:9d:96:2e:0a:ce:5f:
48:e2:70:38:d2:da:a9:f6:43:c4:2c:d1:9d:ac:43:
26:b8:23:4d:35:e3:b1:26:6e:73:ad:be:3f:40:69:
6f:50:8c:d4:83:03:15:22:44:2e:39:92:37:aa:5f:
c3:a3:29:fb:3d:46:c0:cc:ea:54:e5:7d:c9:0f:ac:
dc:14:27:3d:e8:0e:23:57:40:fc:2e:e3:98:f7:db:
b0:9e:01:e8:2e:75:c3:3b:f2:3a:b6:cb:68:a1:c1:
07:2a:53:c2:4e:b4:a3:da:d8:71:a5:34:20:ee:7f:
39:f8:ae:e5:36:ff:78:91:ab:9a:fc:1c:36:e5:4a:
20:62:4c:0a:df:c6:68:80:4d:a7:a3:83:4c:5d:37:
5e:f9:d5:11:b1:99:35:59:fd:a8:87:b7:e3:e0:ee:
a3:b5:e7:42:c4:e2:ec:84:3d:45:63:65:b1:2f:8d:
88:24:30:ba:bb:48:30:5f:02:13:3a:68:e5:9e:c6:
ba:31:c3:c3:a4:7c:85:c7:30:eb:80:27:e4:31:8d:
0e:0f:af:38:a8:96:df:48:7f:cf:ad:b8:39:90:3f:
fa:5d:02:f5:dd:95:bd:b5:15:a5:24:2c:16:47:34:
0b:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:00:D5:37:B0:34:C2:B9:64:50:31:4D:6F:61:43:A7:CD:B3:1A:4F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6B07D8083E7111F1B77979ECCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.232.0/24
45.192.244.0/24
45.201.12.0/22
45.202.74.0/24
45.204.149.0-45.204.151.255
Signature Algorithm: sha256WithRSAEncryption
11:26:bb:d3:b4:ca:45:3e:80:b1:57:5c:0f:a7:f0:28:d8:af:
a5:32:c2:90:cb:93:15:b1:41:dd:94:f6:5a:70:f0:7e:64:e6:
66:47:58:30:f9:2b:f2:1c:9f:2a:5f:e2:90:88:07:54:9c:3e:
bf:5a:b0:67:fa:82:1f:87:51:13:7e:4f:24:41:e5:14:db:f7:
a4:a7:a0:20:4a:b5:04:f1:b9:26:db:e2:68:d7:94:d4:7f:11:
02:93:cb:77:14:a7:fd:af:1d:00:9d:2a:2b:13:01:f4:9d:c5:
eb:f7:dd:22:a6:05:f9:c8:87:c5:dc:4a:ea:a0:9a:72:8a:29:
5c:c7:83:7f:9b:e5:ba:bc:20:73:8f:a9:4f:b1:de:2f:5f:8a:
7e:65:20:0d:74:13:5f:f2:3c:79:12:2d:0b:23:10:57:61:37:
0e:23:05:23:17:8e:1c:5c:64:d4:e9:54:84:2d:5c:10:bf:08:
5e:f4:fc:0d:1c:45:7a:28:02:c4:99:d8:4e:ba:36:ec:e3:b9:
23:58:14:50:7f:20:96:7c:61:af:aa:cc:67:68:f4:01:aa:70:
eb:bc:2d:14:34:97:82:01:63:10:2c:99:e9:54:61:11:5f:a5:
20:a3:1c:5b:d6:5e:b8:ec:07:b6:1f:e0:98:ac:ae:c5:df:24:
47:b6:d2:b4
-----BEGIN CERTIFICATE-----
MIIFoTCCBImgAwIBAgIDAa5PMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwNDIyMTczMzQzWhcNMjYwNjA5MTczMzQzWjAYMRYw
FAYDVQQDEw02OWU5MDY3Yi05MWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvMwrB8kEtEUuAdGnMNKHM6zYm4PQ2oWdli4Kzl9I4nA40tqp9kPELNGd
rEMmuCNNNeOxJm5zrb4/QGlvUIzUgwMVIkQuOZI3ql/Doyn7PUbAzOpU5X3JD6zc
FCc96A4jV0D8LuOY99uwngHoLnXDO/I6tstoocEHKlPCTrSj2thxpTQg7n85+K7l
Nv94kaua/Bw25UogYkwK38ZogE2no4NMXTde+dURsZk1Wf2oh7fj4O6jtedCxOLs
hD1FY2WxL42IJDC6u0gwXwITOmjlnsa6McPDpHyFxzDrgCfkMY0OD684qJbfSH/P
rbg5kD/6XQL13ZW9tRWlJCwWRzQLuwIDAQABo4ICwjCCAr4wHQYDVR0OBBYEFNYA
1TewNMK5ZFAxTW9hQ6fNsxpPMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC82QjA3RDgwODNFNzExMUYxQjc3OTc5RUNDRTFEMzhCMC5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MD8GCCsGAQUFBwEHAQH/BDAwLjAsBAIAATAmAwQALcDoAwQALcD0AwQCLckMAwQA
LcpKMAwDBAAtzJUDBAMtzJAwDQYJKoZIhvcNAQELBQADggEBABEmu9O0ykU+gLFX
XA+n8CjYr6UywpDLkxWxQd2U9lpw8H5k5mZHWDD5K/Icnypf4pCIB1ScPr9asGf6
gh+HURN+TyRB5RTb96SnoCBKtQTxuSbb4mjXlNR/EQKTy3cUp/2vHQCdKisTAfSd
xev33SKmBfnIh8XcSuqgmnKKKVzHg3+b5bq8IHOPqU+x3i9fin5lIA10E1/yPHkS
LQsjEFdhNw4jBSMXjhxcZNTpVIQtXBC/CF70/A0cRXooAsSZ2E66NuzjuSNYFFB/
IJZ8Ya+qzGdo9AGqcOu8LRQ0l4IBYxAsmelUYRFfpSCjHFvWXrjsB7Yf4JisrsXf
JEe20rQ=
-----END CERTIFICATE-----
Generated at Wed May 13 09:12:52 2026 by rpki-client