Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/85B461E83FDF11F18F1863B2CE1D38B0.roa
File: 85B461E83FDF11F18F1863B2CE1D38B0.roa (raw, json)
Hash identifier: D1+tV1yHCpkjN+vOJ12ReS9u4eOYpStcX/WMHxuWGuk=
Subject key identifier: 26:47:DD:25:D7:90:9E:3C:3B:C1:8F:82:F7:99:FA:CF:4B:07:B9:AA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AEFC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/85B461E83FDF11F18F1863B2CE1D38B0.roa
Signing time: Fri 24 Apr 2026 13:14:28 +0000
ROA not before: Fri 24 Apr 2026 13:14:23 +0000
ROA not after: Mon 01 Jun 2026 13:14:23 +0000
asID: 11427
IP address blocks: 45.202.92.0/22 maxlen: 24
45.202.96.0/22 maxlen: 24
45.202.116.0/23 maxlen: 24
45.202.120.0/22 maxlen: 24
45.207.0.0/23 maxlen: 24
45.207.36.0/22 maxlen: 24
45.207.48.0/21 maxlen: 24
45.207.164.0/23 maxlen: 24
45.207.170.0/23 maxlen: 24
45.207.174.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110332 (0x1aefc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 24 13:14:23 2026 GMT
Not After : Jun 1 13:14:23 2026 GMT
Subject: CN=69eb6cb4-55d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:99:f3:aa:f5:52:87:37:e8:66:69:64:af:69:
31:6a:3f:c6:f3:1a:36:98:7e:34:6c:13:be:13:18:
7f:40:8f:f1:a6:2c:02:36:d6:52:5b:14:bb:b0:40:
33:9e:c2:fb:41:74:99:c8:dd:bc:16:65:25:82:2d:
78:50:59:59:d1:70:0d:04:67:ed:e9:f9:02:0c:75:
a2:e7:01:09:45:ed:3f:db:a7:dc:8f:76:9a:d7:4c:
66:b1:27:e6:be:d1:a6:89:c9:f4:02:ce:3e:4e:f5:
dc:c8:19:63:c6:5c:a6:84:de:4f:c8:ab:aa:bc:d9:
eb:e1:2a:6d:6b:c8:eb:00:eb:50:b4:c7:56:80:79:
29:52:c8:08:8d:7d:e5:34:a8:8d:38:68:67:9f:ca:
d8:fe:73:82:31:c5:47:08:19:39:0b:c6:44:a5:8a:
f9:11:9d:16:96:03:9b:45:ba:29:a7:4f:80:36:58:
30:61:01:06:0a:d4:b4:00:fd:87:46:c9:f6:f8:8a:
5e:d6:54:86:93:14:a1:ef:52:6a:ee:94:5b:84:a7:
54:3f:b0:af:e5:4c:84:b6:cb:86:81:97:f9:1a:6c:
92:a8:77:a8:28:5d:72:cb:5f:39:4a:b0:30:83:eb:
8a:9b:58:87:ed:eb:0e:a0:89:e6:41:00:08:7b:7a:
d4:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:47:DD:25:D7:90:9E:3C:3B:C1:8F:82:F7:99:FA:CF:4B:07:B9:AA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/85B461E83FDF11F18F1863B2CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.92.0-45.202.99.255
45.202.116.0/23
45.202.120.0/22
45.207.0.0/23
45.207.36.0/22
45.207.48.0/21
45.207.164.0/23
45.207.170.0/23
45.207.174.0/23
Signature Algorithm: sha256WithRSAEncryption
25:7b:91:e4:f0:61:98:70:f2:07:26:69:18:a7:0c:5f:29:64:
c5:ce:c0:ac:15:35:df:64:a1:e9:f9:c8:0f:13:9e:73:94:97:
31:25:3f:ba:ec:55:80:b6:92:52:39:85:f9:77:26:f0:fd:e2:
e9:e2:ef:e2:07:38:66:8f:a1:93:17:8a:78:d7:20:6d:50:0b:
34:b6:27:a0:ca:01:7b:71:0e:89:bc:12:b1:8f:0e:e7:e3:31:
23:56:9d:c8:9c:07:97:e9:83:46:bd:d1:4b:36:c2:26:8d:7a:
09:05:9d:14:46:7b:89:4c:15:0e:4e:ac:ec:46:b6:b5:bb:5d:
4a:4f:e9:c5:b6:59:33:3e:48:e4:58:dc:ad:ae:d1:9d:12:96:
32:a4:1d:05:00:d9:54:9b:6f:63:84:f6:30:bb:79:15:48:4f:
de:0f:ec:88:14:ed:d0:d4:c9:60:af:e4:a3:b1:25:05:e0:a3:
e9:f6:3a:8a:bf:5e:2c:63:fd:ec:a0:62:0b:8f:03:d2:74:aa:
f4:10:82:1b:8c:9b:20:7d:cb:05:e1:0b:12:dd:a0:ba:23:6e:
32:2b:d1:cf:1a:81:20:27:3b:ce:bc:39:c3:5d:46:a3:f6:94:
a4:7e:ad:de:51:96:90:00:2d:c8:c6:35:5e:c5:04:ce:d8:76:
cb:63:e1:09
-----BEGIN CERTIFICATE-----
MIIFuTCCBKGgAwIBAgIDAa78MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwNDI0MTMxNDIzWhcNMjYwNjAxMTMxNDIzWjAYMRYw
FAYDVQQDEw02OWViNmNiNC01NWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEArZnzqvVShzfoZmlkr2kxaj/G8xo2mH40bBO+Exh/QI/xpiwCNtZSWxS7
sEAznsL7QXSZyN28FmUlgi14UFlZ0XANBGft6fkCDHWi5wEJRe0/26fcj3aa10xm
sSfmvtGmicn0As4+TvXcyBljxlymhN5PyKuqvNnr4Spta8jrAOtQtMdWgHkpUsgI
jX3lNKiNOGhnn8rY/nOCMcVHCBk5C8ZEpYr5EZ0WlgObRbopp0+ANlgwYQEGCtS0
AP2HRsn2+Ipe1lSGkxSh71Jq7pRbhKdUP7Cv5UyEtsuGgZf5GmySqHeoKF1yy185
SrAwg+uKm1iH7esOoInmQQAIe3rUPQIDAQABo4IC2jCCAtYwHQYDVR0OBBYEFCZH
3SXXkJ48O8GPgveZ+s9LB7mqMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC84NUI0NjFFODNGREYxMUYxOEYxODYzQjJDRTFEMzhCMC5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MFcGCCsGAQUFBwEHAQH/BEgwRjBEBAIAATA+MAwDBAItylwDBAItymADBAEtynQD
BAItyngDBAEtzwADBAItzyQDBAMtzzADBAEtz6QDBAEtz6oDBAEtz64wDQYJKoZI
hvcNAQELBQADggEBACV7keTwYZhw8gcmaRinDF8pZMXOwKwVNd9koen5yA8TnnOU
lzElP7rsVYC2klI5hfl3JvD94uni7+IHOGaPoZMXinjXIG1QCzS2J6DKAXtxDom8
ErGPDufjMSNWncicB5fpg0a90Us2wiaNegkFnRRGe4lMFQ5OrOxGtrW7XUpP6cW2
WTM+SORY3K2u0Z0SljKkHQUA2VSbb2OE9jC7eRVIT94P7IgU7dDUyWCv5KOxJQXg
o+n2Ooq/Xixj/eygYguPA9J0qvQQghuMmyB9ywXhCxLdoLojbjIr0c8agSAnO868
OcNdRqP2lKR+rd5RlpAALcjGNV7FBM7Ydstj4Qk=
-----END CERTIFICATE-----
Generated at Wed May 13 05:43:02 2026 by rpki-client