Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D86F89C43E6F11F19FA3A9E0CE1D38B0.roa
File: D86F89C43E6F11F19FA3A9E0CE1D38B0.roa (raw, json)
Hash identifier: Y4XUxH9NQl0QJoVIM/s0n6Kd0xWstdZxDngb/lgWuGE=
Subject key identifier: 99:C3:AA:0F:E4:58:16:45:1D:3E:F7:AD:52:3A:DC:43:44:CE:BD:B3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AE4D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D86F89C43E6F11F19FA3A9E0CE1D38B0.roa
Signing time: Wed 22 Apr 2026 17:22:32 +0000
ROA not before: Wed 22 Apr 2026 17:22:27 +0000
ROA not after: Tue 09 Jun 2026 17:22:27 +0000
asID: 7018
IP address blocks: 45.202.74.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 14 May 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110157 (0x1ae4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 22 17:22:27 2026 GMT
Not After : Jun 9 17:22:27 2026 GMT
Subject: CN=69e903d8-75fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:6c:09:a5:0f:8b:74:ff:93:69:3f:0b:dd:be:
0d:79:cd:ee:9c:aa:7f:8b:de:e9:a0:3b:4a:47:80:
5d:05:86:24:84:a3:14:7d:0c:0a:20:38:e9:8f:80:
74:29:73:60:65:c9:1f:f9:20:2c:f1:3e:34:c6:27:
df:f4:25:b4:f5:5a:a9:a3:a2:92:ab:18:36:bb:7a:
7c:da:7a:0c:ff:07:65:b4:28:c2:9b:b3:7d:49:23:
f4:a2:02:c1:b4:65:03:d5:a0:31:8d:e4:1c:52:d0:
17:12:68:d3:05:7d:49:bb:86:db:09:a5:81:8b:1d:
7c:1a:37:ed:80:99:7a:f7:46:be:c3:af:62:50:8d:
c3:8f:ef:39:4e:b9:5d:23:5f:89:16:be:78:61:34:
93:39:f2:88:8d:ed:52:fc:41:13:21:ac:94:7a:b5:
db:a1:bc:82:58:ef:ca:1b:2b:8c:ed:18:3b:e0:d6:
1e:6c:ba:bb:05:9f:f6:21:d2:cc:02:56:0f:ae:51:
d1:dc:76:1e:01:93:d6:c7:3a:0b:3d:ab:2c:1c:78:
9e:5e:83:aa:0c:47:15:27:cd:50:3c:a1:f2:a8:9f:
f7:f1:41:26:d2:72:43:90:18:fe:fb:9d:ef:7b:30:
9b:eb:a9:b7:c2:05:bf:38:2c:73:40:30:db:f8:49:
91:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:C3:AA:0F:E4:58:16:45:1D:3E:F7:AD:52:3A:DC:43:44:CE:BD:B3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D86F89C43E6F11F19FA3A9E0CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.74.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:ba:79:c3:e0:bd:e3:42:c5:7a:92:2b:a9:d7:ae:68:3f:3e:
59:ea:52:2c:37:32:09:49:f4:57:98:92:a9:58:3c:e6:66:f9:
28:d3:c7:b0:f9:96:67:b5:77:35:52:64:77:2a:bd:f2:5c:2f:
76:ba:d9:7f:10:8f:87:01:14:ab:50:fb:bf:99:a3:8a:37:9c:
77:b1:23:0e:e6:ef:3d:ed:08:ca:aa:e0:db:6f:eb:8e:21:ef:
72:aa:85:e1:f8:2c:76:cc:7d:f9:cc:bd:db:dd:ba:cf:b2:e6:
44:fd:f8:d1:a2:8a:52:4d:cb:9a:6b:59:ac:90:e9:fa:f3:62:
08:cb:04:69:da:f5:fa:7c:3b:f8:46:e1:ce:ca:23:6c:96:d2:
5b:27:23:c1:c2:80:b8:57:29:6a:97:66:10:a4:0b:49:20:2b:
22:97:15:95:df:c8:4c:a7:03:3d:ea:90:7d:49:11:3e:a5:4e:
6e:4b:d2:90:dc:1e:41:e9:86:6b:a4:cd:63:9d:ad:79:fd:f9:
a6:fc:5c:96:61:3e:97:12:05:00:ee:48:f8:78:50:c4:67:d2:
5a:76:60:70:ad:b7:3a:58:7d:d3:b4:45:bf:a6:20:62:07:df:
fc:6d:21:e3:3e:db:b6:cb:07:1b:a7:b1:65:c1:5c:7d:30:a8:
b2:b3:f8:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:21:04 2026 by rpki-client