Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AF264D9444C511F1819B3302CF1D38B0.roa
File: AF264D9444C511F1819B3302CF1D38B0.roa (raw, json)
Hash identifier: qOq6bc7aBLcQym/JsyAHRK8DHr3Ng3/LVhhXx+JeYAI=
Subject key identifier: D4:A2:6A:84:0B:68:A9:F1:B6:DA:0C:F8:8D:52:A4:69:95:70:C1:8F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B050
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AF264D9444C511F1819B3302CF1D38B0.roa
Signing time: Thu 30 Apr 2026 18:52:07 +0000
ROA not before: Thu 30 Apr 2026 18:52:01 +0000
ROA not after: Sat 30 May 2026 18:52:01 +0000
asID: 272865
IP address blocks: 45.198.107.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110672 (0x1b050)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 30 18:52:01 2026 GMT
Not After : May 30 18:52:01 2026 GMT
Subject: CN=69f3a4d6-4721
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:69:1e:0b:93:ee:2d:f0:40:b7:ac:27:c7:99:
7a:1d:6b:b9:bf:7c:41:86:9a:a8:a4:a6:f6:b0:a6:
78:32:da:2e:81:7b:aa:62:b9:3c:db:a2:47:72:d9:
2b:56:e6:a4:fd:9b:65:c3:9d:60:9a:d1:2d:0c:02:
89:04:18:00:fc:97:a6:5b:31:e5:62:67:ec:02:3f:
ba:c1:d1:0e:43:ad:bd:38:e1:34:0a:db:c9:06:ef:
ea:29:30:dd:f1:62:03:34:6f:de:e6:e6:8d:aa:02:
fd:ff:22:c8:d5:b8:f2:bd:33:d6:05:65:6f:f1:9f:
24:1d:f5:14:db:51:30:ba:bd:aa:f5:cf:98:2d:58:
c7:1c:b9:d2:d2:5a:35:53:52:83:57:e1:48:f0:26:
94:df:2b:94:8a:8e:a1:15:b7:68:74:63:4f:2e:78:
81:1d:22:0e:d0:a0:56:55:0e:97:45:57:66:25:b0:
ae:a1:cc:c4:f6:48:70:f9:df:c5:3b:95:81:5a:b6:
6d:ef:a9:16:5c:30:a1:d0:ed:ed:5e:41:02:5b:5b:
c5:cd:07:38:50:d7:f0:7b:31:1c:bd:0b:c7:e8:9e:
c7:d9:d7:5c:40:c7:df:ff:3c:a0:f2:e3:2c:59:d1:
37:e4:dd:34:ad:24:b4:64:ff:ab:75:0e:9a:fb:93:
6e:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:A2:6A:84:0B:68:A9:F1:B6:DA:0C:F8:8D:52:A4:69:95:70:C1:8F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AF264D9444C511F1819B3302CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.107.0/24
Signature Algorithm: sha256WithRSAEncryption
97:16:87:11:bc:98:32:6a:3c:31:77:a8:5b:e8:51:5a:f8:70:
d6:31:65:99:5b:80:47:26:b9:22:a0:17:28:d1:25:7f:83:98:
1a:11:19:92:fc:dc:a2:62:70:a7:bd:a6:14:43:2a:b9:48:cf:
62:24:e2:65:8e:79:6d:72:d3:8c:b1:82:d0:9d:96:48:54:01:
8c:ac:16:72:5c:1c:48:e0:cf:3b:17:e1:fb:e8:d2:4d:c9:5f:
cb:33:b0:f6:6f:e5:21:22:72:b7:18:59:40:52:46:07:7f:38:
3f:7e:cb:cd:81:87:cc:69:2b:f3:5b:61:62:d3:b4:63:49:d9:
84:a0:6a:f6:74:18:56:15:df:cf:6b:9c:af:83:d9:bf:9a:bd:
46:8d:cc:36:44:77:54:5f:83:a9:77:aa:42:8f:76:f7:ce:ed:
14:bf:d6:b1:68:b5:a7:89:c9:c3:84:80:14:9b:6f:2e:2e:9e:
df:85:b7:a8:7a:30:9b:87:11:2a:57:94:5c:92:d9:64:a6:e8:
9c:0c:5a:74:19:88:99:6e:3e:5c:4f:c1:21:48:62:fe:7e:15:
e5:ad:41:4b:e1:49:e0:dc:a1:ef:96:dd:85:03:85:97:2e:ed:
bd:2d:ad:c1:b1:42:31:7f:d8:aa:05:55:b0:0f:ca:fe:22:89:
00:bc:c9:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:46:29 2026 by rpki-client