Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8FBECDF043E411F1BA7E17ACCE1D38B0.roa
File: 8FBECDF043E411F1BA7E17ACCE1D38B0.roa (raw, json)
Hash identifier: tTeH+i2P7jnxE2cfo/37g7QjFTVdRhuIkDEO7XtNnxs=
Subject key identifier: 3F:20:9C:E7:EE:E2:92:C1:8A:07:57:CE:49:22:00:3A:23:CC:1C:EB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AFE9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8FBECDF043E411F1BA7E17ACCE1D38B0.roa
Signing time: Wed 29 Apr 2026 16:00:37 +0000
ROA not before: Wed 29 Apr 2026 16:00:32 +0000
ROA not after: Fri 29 May 2026 16:00:32 +0000
asID: 199707
IP address blocks: 45.202.107.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110569 (0x1afe9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 29 16:00:32 2026 GMT
Not After : May 29 16:00:32 2026 GMT
Subject: CN=69f22b25-5852
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:dc:10:fa:2b:2c:31:2e:d8:d6:77:c7:6f:56:
4d:e9:98:c9:ae:b5:19:da:6b:33:7f:d0:b7:fd:5b:
4a:3d:12:30:c1:3d:cf:f9:bf:0a:f9:46:39:8a:d6:
e3:d3:85:4f:c7:6c:dc:c6:88:14:12:80:c6:85:32:
30:ab:2c:4c:50:fe:68:28:e4:e9:8a:c6:a1:e2:85:
b4:12:29:9b:6d:c7:fe:23:ec:b4:3c:cc:64:06:2e:
78:7e:c6:87:57:54:07:6c:38:a1:2b:ff:7d:44:7a:
93:09:62:20:28:48:6f:d8:03:07:00:8a:d4:13:14:
93:fa:85:58:fb:65:43:dc:20:89:c4:0f:0d:0a:f6:
a4:c8:c1:d4:01:fd:45:df:72:ee:c0:4a:22:e7:ee:
45:33:d1:bb:2f:c5:bb:c2:30:2f:43:95:91:2b:67:
e0:bc:c4:55:6b:2a:cd:de:1e:97:8a:ed:52:7d:1e:
43:09:88:f9:ba:10:91:8c:81:96:e2:b8:e7:c7:8b:
19:8a:cf:1e:b7:1b:6e:68:5f:41:bd:fd:7c:13:64:
ab:98:62:4a:6c:5c:ba:f1:e8:8d:93:56:1e:93:83:
92:31:2c:35:a1:f8:c7:08:af:72:e4:61:57:4b:54:
93:24:99:7b:e6:73:ba:f3:61:ac:59:69:70:65:5c:
7a:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:20:9C:E7:EE:E2:92:C1:8A:07:57:CE:49:22:00:3A:23:CC:1C:EB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8FBECDF043E411F1BA7E17ACCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.107.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:14:73:8b:45:a4:48:17:6c:bf:5c:71:d3:6f:0b:84:45:0f:
b3:85:ac:0f:c4:ea:9c:c4:ea:f1:ee:c0:28:00:83:29:39:3e:
25:4a:a1:69:78:ea:c6:c3:ea:1e:0e:55:85:06:54:f2:e7:cf:
b0:bd:69:57:9f:c2:9e:8d:f3:f4:08:0f:22:3f:3e:66:89:fd:
21:65:7a:89:a8:ff:65:38:6d:06:f3:60:8e:78:8b:bd:34:ba:
ce:7d:54:04:9b:7d:d7:a4:81:07:a6:02:71:68:d6:50:8d:6a:
a0:07:32:9a:a3:99:58:9e:b4:37:79:7a:f0:d7:f3:f3:01:d3:
17:a2:eb:23:fc:dd:76:10:51:1d:b3:69:bb:44:6e:36:b0:bc:
41:d8:91:a3:02:9d:90:43:a9:0e:f5:2a:8a:d5:5f:eb:4d:38:
d1:29:ad:1b:9d:ec:f6:25:bd:d5:37:bd:55:81:de:ca:8b:75:
51:4a:1b:7a:12:91:0e:d1:c7:b2:a8:3c:c2:c6:4e:77:11:25:
5e:03:18:a3:0d:b0:f4:56:59:2a:5e:40:26:ba:30:4a:3c:b9:
fd:c1:0f:87:d6:2a:4a:08:d5:af:fc:a5:c6:6e:a5:05:80:b0:
9b:93:d3:f9:b5:1c:51:51:f6:e5:f5:82:76:32:f2:3e:63:6a:
1f:7d:9c:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 04:47:19 2026 by rpki-client