Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/70F333724ABD11F1B80749DECE1D38B0.roa
File: 70F333724ABD11F1B80749DECE1D38B0.roa (raw, json)
Hash identifier: VZBcL2Lo5rYMmVjlTKPmtxmYiAXCt1tHZUSBn/nyABI=
Subject key identifier: 1B:60:F1:07:83:7B:D2:2B:5B:2A:99:D6:A2:33:73:B2:98:95:7A:9F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B2BB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/70F333724ABD11F1B80749DECE1D38B0.roa
Signing time: Fri 08 May 2026 09:08:13 +0000
ROA not before: Fri 08 May 2026 09:08:07 +0000
ROA not after: Mon 18 May 2026 09:08:07 +0000
asID: 137443
IP address blocks: 45.192.184.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111291 (0x1b2bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 8 09:08:07 2026 GMT
Not After : May 18 09:08:07 2026 GMT
Subject: CN=69fda7fd-267b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:d9:57:27:e2:21:db:a5:b6:78:56:2f:60:b3:
e4:c2:91:dc:65:c7:a2:54:4b:3d:af:cc:b5:dd:92:
b3:f8:e0:b1:41:3f:4c:ba:e7:93:53:2c:ed:e6:ea:
3f:b5:74:7a:9d:2b:ea:13:fd:25:ae:d8:c0:d4:33:
6a:75:d4:62:37:be:a3:4c:4c:2e:3c:20:52:df:9f:
08:43:6b:5e:b7:21:52:62:58:05:89:ae:4a:e4:84:
4f:cc:ee:c5:c1:d4:b6:d9:c3:22:90:f1:4a:73:90:
41:12:ee:70:d1:1b:12:5e:5f:14:1d:7c:fd:4f:17:
1b:3d:a7:5e:eb:5e:18:32:a8:2c:96:4e:51:ca:5d:
44:bf:4b:32:c8:71:4b:e1:dc:54:c0:ee:ef:58:3e:
90:7f:82:1b:de:03:d3:7f:9c:e8:5b:73:06:bd:83:
f4:a4:20:8f:cb:54:10:76:03:47:92:30:6f:78:7a:
e3:1e:5c:f0:4a:2c:6f:d2:75:2d:69:d8:db:e9:02:
bf:94:ae:34:df:33:c7:b2:76:32:f9:db:cd:7d:eb:
cc:8f:5f:e1:4c:6e:f9:78:8d:8d:2d:43:10:be:de:
55:ba:90:35:2c:ec:31:2c:a2:0e:56:96:3e:8d:bc:
6e:83:e7:52:32:fe:e2:08:d8:69:70:87:43:49:bd:
ba:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:60:F1:07:83:7B:D2:2B:5B:2A:99:D6:A2:33:73:B2:98:95:7A:9F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/70F333724ABD11F1B80749DECE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.184.0/22
Signature Algorithm: sha256WithRSAEncryption
8d:9f:a4:25:dc:f1:7c:4b:5b:c4:87:d3:8b:87:99:50:86:7a:
28:2d:a9:c5:3e:a8:19:9b:ab:51:68:12:7f:3f:95:0c:0d:2f:
39:26:3f:57:a1:0c:18:4c:73:40:d7:24:fb:8a:c5:f0:8e:ea:
63:fb:a1:29:67:f8:d8:9c:02:8a:bc:a5:d1:4d:50:62:e4:a5:
d1:67:aa:f6:5d:58:7b:ef:33:19:5f:3f:d1:94:ab:b8:e0:c9:
f4:7f:cd:30:27:f1:c7:95:e3:09:43:79:f4:67:36:3b:4d:88:
d6:99:0c:47:0c:a6:eb:23:ff:a0:0b:a3:7c:99:c9:11:4c:5b:
91:64:9f:b8:2c:c0:b7:ed:c7:90:61:7d:5f:52:21:19:64:de:
d6:f4:68:4a:9c:2d:2f:c5:cb:5c:ee:9d:90:fa:71:f3:75:38:
6b:9f:47:52:08:b6:8b:84:92:c2:16:9d:ac:8e:35:67:80:7c:
2c:b4:d7:dd:09:c8:85:5d:66:36:75:6a:d0:17:10:77:d4:fd:
70:9b:79:36:ac:d6:c1:b0:6b:9e:bb:e7:62:a5:ab:6a:99:a5:
cd:31:81:39:f0:1e:aa:10:94:a0:9f:9e:8b:e8:01:89:7a:a1:
63:86:75:ca:35:78:c1:ae:c4:ef:a1:c2:a6:62:dd:ac:ee:bb:
a6:b0:fc:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 14:02:50 2026 by rpki-client