Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9CEAFD42455A11F1AC974C14CF1D38B0.roa
File: 9CEAFD42455A11F1AC974C14CF1D38B0.roa (raw, json)
Hash identifier: GpPyJNmcMySifNw5uvq0mMT30e/8UgruzxqdEcPBBKM=
Subject key identifier: 7A:52:2D:5D:D1:0B:CE:6B:AF:64:67:3F:1C:52:CF:E2:3F:F0:BC:E8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B098
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9CEAFD42455A11F1AC974C14CF1D38B0.roa
Signing time: Fri 01 May 2026 12:38:11 +0000
ROA not before: Fri 01 May 2026 12:38:07 +0000
ROA not after: Wed 27 May 2026 12:38:07 +0000
asID: 138456
IP address blocks: 45.202.194.0/23 maxlen: 24
45.202.196.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110744 (0x1b098)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 1 12:38:07 2026 GMT
Not After : May 27 12:38:07 2026 GMT
Subject: CN=69f49eb3-a7f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:9a:82:02:37:32:ea:cc:9d:43:0d:d3:15:57:
bc:75:35:0b:d6:74:fb:d1:72:03:ef:c3:f0:1b:62:
f8:30:33:0b:07:5f:81:d4:21:dc:6c:6a:63:ed:24:
34:7b:d0:0b:67:7b:b2:4b:f2:b3:1a:18:11:1c:98:
21:7b:df:4f:82:0c:42:f7:21:38:e3:5c:92:d6:d7:
9d:af:d5:6a:b8:a5:0f:60:b0:8d:7a:80:df:2b:38:
0c:65:7e:80:88:e5:2a:c4:af:48:24:97:6c:96:7b:
ac:4a:9f:69:3f:53:e5:45:ce:f3:4d:a1:7b:7b:14:
1b:95:22:af:aa:12:9e:c5:5a:5f:dd:68:23:ee:dc:
63:5a:51:0c:f6:f9:56:44:f8:c2:a8:ce:2f:59:78:
7e:3a:19:7d:a3:6e:ac:ac:fb:69:0c:9c:b5:8c:7e:
f9:03:fa:74:cb:ad:08:5a:48:12:1b:30:b5:86:2a:
2d:e7:12:bb:53:de:d2:68:ad:91:43:73:da:b4:1e:
b6:8e:3b:4f:23:57:62:66:52:9b:a4:11:ab:34:7a:
53:48:33:2b:43:aa:6f:dd:9e:ee:90:d4:d7:50:b1:
5b:26:09:cb:b8:a5:31:7f:6a:51:bc:b6:63:88:c1:
d1:a9:07:c0:41:92:90:fd:b1:50:71:8a:a5:d3:0c:
74:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:52:2D:5D:D1:0B:CE:6B:AF:64:67:3F:1C:52:CF:E2:3F:F0:BC:E8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9CEAFD42455A11F1AC974C14CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.194.0-45.202.196.255
Signature Algorithm: sha256WithRSAEncryption
88:f9:c2:b1:1e:2b:af:5e:89:4d:fe:a5:04:6a:f9:b6:0a:e1:
cc:0c:64:69:f3:cf:f6:46:8f:78:7d:c4:c5:0c:eb:2d:88:b3:
05:3c:41:71:dc:f0:40:5e:7f:0a:9c:b0:f5:c7:78:a1:7d:d8:
0f:91:93:96:37:6a:e3:4a:c0:0b:e4:5a:71:3b:dd:c4:48:cd:
cf:d9:5b:b2:75:32:ca:0e:6e:db:98:77:36:9a:4d:56:83:39:
27:8e:c2:1c:a1:eb:16:b3:d4:25:6f:ba:5c:68:1c:8c:46:38:
13:f6:59:a2:7d:ca:49:f4:6d:b4:f8:09:43:9d:b1:6a:65:4e:
48:1c:30:62:be:d0:d4:67:e3:31:f4:ed:9d:25:08:df:28:45:
cb:38:99:1f:73:54:7f:ac:c2:f1:22:20:0c:ed:e9:26:ea:51:
30:f1:b6:0a:5f:dd:91:cc:d1:53:74:14:24:41:7d:d2:04:76:
2f:6e:f7:a9:4c:8a:68:f3:a1:19:54:cc:48:76:6d:d7:e1:18:
26:d9:45:37:b0:9a:bd:f5:d2:04:c5:98:90:21:23:bf:aa:5d:
40:48:78:a9:ae:68:7f:3b:86:77:ea:10:b7:e7:be:08:a6:f7:
c4:e7:4e:df:6d:f8:0e:d3:7f:f8:da:be:fe:3e:ac:29:38:bd:
24:10:01:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:45:26 2026 by rpki-client