Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EBC5A91A4D0411F19F5071BCCE1D38B0.roa
File: EBC5A91A4D0411F19F5071BCCE1D38B0.roa (raw, json)
Hash identifier: lJMKBr3+V3IidX6ZD1+5BBi7LUoCH/Cmr5T+5vA6weI=
Subject key identifier: CF:0A:C6:28:2D:8F:0E:23:76:A6:1D:1E:9C:66:42:3D:EB:AF:B0:5D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B3A9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EBC5A91A4D0411F19F5071BCCE1D38B0.roa
Signing time: Mon 11 May 2026 06:44:56 +0000
ROA not before: Mon 11 May 2026 06:44:51 +0000
ROA not after: Sat 13 Jun 2026 06:44:51 +0000
asID: 213690
IP address blocks: 45.192.0.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111529 (0x1b3a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 11 06:44:51 2026 GMT
Not After : Jun 13 06:44:51 2026 GMT
Subject: CN=6a017ae8-3987
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:50:e9:88:6b:8b:db:14:89:b5:6d:77:99:2c:
ad:3e:1a:6f:39:13:4a:14:bd:15:3d:f1:d9:13:7a:
95:ed:15:cb:55:07:a5:06:f1:79:cb:43:4b:ad:71:
9d:57:26:1a:e7:b2:f9:f3:4c:a5:f3:c1:b2:a3:d9:
2a:fc:bd:95:46:e5:be:05:1c:db:5d:9b:d1:5e:90:
94:9c:89:58:dc:47:6b:48:28:b2:fa:4e:17:5b:74:
75:a4:b2:d9:a9:54:93:10:33:1f:35:e6:4e:f6:ba:
28:f2:a1:9f:98:49:bc:6d:69:72:10:3b:bd:93:e0:
0c:13:6a:cb:d2:b8:99:5f:42:ad:35:04:08:24:68:
80:cd:62:ee:6f:96:ee:67:35:f9:5f:c6:19:bd:98:
09:b2:e6:33:da:08:91:d5:79:b4:bd:03:57:03:13:
bc:fc:83:fd:71:c0:86:a8:f3:e5:88:17:40:bc:19:
33:d9:37:12:3c:aa:2c:84:9a:7f:72:24:8b:29:8b:
90:e0:b5:dd:db:28:f8:e5:e2:e2:30:79:df:b3:ec:
af:b0:27:e3:4c:b3:6a:b7:16:e1:3e:d7:ab:d4:3a:
b9:5a:33:8d:a3:66:b7:65:bb:47:39:53:6a:d8:ad:
0a:11:90:1d:77:fe:a7:ce:5d:37:b2:a5:ea:bc:d0:
dc:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:0A:C6:28:2D:8F:0E:23:76:A6:1D:1E:9C:66:42:3D:EB:AF:B0:5D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EBC5A91A4D0411F19F5071BCCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.0.0/23
Signature Algorithm: sha256WithRSAEncryption
b2:7a:a3:72:70:46:43:d1:b5:ff:83:96:84:17:c7:e8:1e:e2:
f8:1e:13:f3:2b:e7:bf:95:97:b0:16:03:c5:c1:0c:da:da:c1:
21:b8:49:f2:28:18:a3:24:9a:f2:2d:4e:e7:e6:c5:ac:2a:7e:
73:3d:be:55:7e:50:0b:b2:79:e2:a9:59:73:83:23:e5:55:1a:
93:8f:58:69:02:20:d3:da:fa:5d:64:29:83:35:9e:0e:41:fb:
58:13:ce:79:8a:e9:f2:72:d2:20:d8:88:3d:07:c9:f0:29:d2:
54:c8:6b:ef:20:56:9d:ca:f0:6b:10:12:99:13:f6:95:68:09:
54:6c:79:b3:13:d2:e4:38:28:4c:02:dd:29:95:3e:8b:12:d9:
71:ff:91:49:f0:b0:fc:74:21:cf:0a:22:ff:38:d1:24:60:ad:
30:69:e8:1d:46:63:e9:db:62:87:cc:81:95:d6:9f:78:ee:ef:
25:4e:b8:c2:bf:8c:4a:47:96:70:1f:f7:dd:a2:5f:81:93:52:
9d:3d:f4:63:a9:02:07:35:5b:88:2a:9c:4a:bc:6b:90:93:57:
3c:bc:46:e5:fc:48:23:c5:00:f9:f2:33:50:10:b2:11:ca:e5:
54:3f:8b:ab:50:ba:6e:9e:fa:01:d1:8d:0a:04:fd:e0:b0:44:
77:4c:5f:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 11:49:45 2026 by rpki-client