Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F04835D4479B11F183720ED0CE1D38B0.roa
File: F04835D4479B11F183720ED0CE1D38B0.roa (raw, json)
Hash identifier: Wt9C9aD9kCHD2wpkcbsnpuVjKLciKsxkrOdCCWfZUgI=
Subject key identifier: 5E:42:19:A4:49:A4:B9:7E:F3:70:1B:15:79:C3:25:CA:36:9D:15:9D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B167
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F04835D4479B11F183720ED0CE1D38B0.roa
Signing time: Mon 04 May 2026 09:30:50 +0000
ROA not before: Mon 04 May 2026 09:30:46 +0000
ROA not after: Sat 08 May 2027 09:30:46 +0000
asID: 137510
IP address blocks: 45.204.68.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110951 (0x1b167)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 4 09:30:46 2026 GMT
Not After : May 8 09:30:46 2027 GMT
Subject: CN=69f8674a-8a0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:50:94:22:20:d0:26:2a:61:da:00:6a:45:e4:
dc:89:87:67:f9:1f:db:4f:a6:ae:d1:19:15:7f:8e:
c1:b4:73:b9:1e:15:a3:0f:5c:e6:49:b7:58:a8:3f:
d0:4e:b7:41:b8:b1:f3:2c:d1:b8:29:e3:b7:0c:e6:
91:4c:9a:59:cc:47:5a:c3:77:39:30:b9:aa:ac:b1:
ea:dc:bf:93:b7:9b:67:fd:19:62:cd:6e:d3:21:72:
99:82:3e:1e:65:c0:21:ff:84:48:e3:10:13:32:5f:
b0:94:95:f1:4f:e8:b6:2e:ed:76:89:ac:8a:0f:58:
d5:32:f4:00:95:0c:39:87:32:19:ab:ba:42:bd:63:
47:b4:9a:99:62:bc:52:3a:fb:d0:92:7f:13:1b:b9:
ef:e2:ec:22:0f:9f:df:2a:f7:84:87:7b:eb:c4:13:
35:b9:56:eb:2c:83:b8:a9:da:84:0c:f1:96:07:e0:
09:63:d0:ce:df:81:0e:87:11:02:37:29:68:25:3c:
c8:63:fd:a4:60:52:59:b1:31:1d:1d:0d:e6:b0:86:
ea:ad:33:ca:0b:20:bf:80:8f:b6:82:86:53:31:9e:
9e:da:dc:2d:20:65:1d:4e:57:fa:a9:2c:43:c2:2f:
c1:df:65:ea:6e:43:01:66:7e:0e:de:75:ee:c3:26:
e4:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:42:19:A4:49:A4:B9:7E:F3:70:1B:15:79:C3:25:CA:36:9D:15:9D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F04835D4479B11F183720ED0CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.204.68.0/24
Signature Algorithm: sha256WithRSAEncryption
33:2a:f3:52:49:d1:a0:5e:fc:9f:c8:77:81:38:98:24:2f:d6:
25:70:81:3a:88:bf:ed:9a:86:e0:9c:dc:c0:85:73:cf:f8:69:
cf:a0:ae:45:e5:59:29:52:7e:a0:d9:84:2f:e8:22:82:ca:68:
7a:db:47:26:af:a8:17:01:66:84:2b:42:c2:8c:c2:d7:91:d5:
51:b7:8e:be:23:15:02:05:5a:1a:dd:bc:7a:3e:fe:10:b6:4d:
b4:4e:f7:2a:d0:ef:18:e4:03:2f:a6:b0:33:f4:fe:1d:d1:43:
35:e3:81:e8:ab:f6:62:1b:c5:77:4c:de:ac:9f:19:15:65:ee:
e0:a6:01:b5:ff:19:1f:c5:f4:b1:9a:8f:15:6b:52:d0:ce:36:
2e:5c:88:e7:ce:a0:22:08:e4:f2:cd:18:f0:22:bd:ae:0c:20:
c3:24:15:e8:08:b4:29:1b:e0:79:65:04:ae:c9:e2:e1:be:1f:
c4:2e:96:86:d2:1e:34:40:77:9f:83:3d:b6:ca:a2:bc:88:bc:
5e:cc:c8:e0:3a:26:01:70:75:9b:3c:79:13:aa:32:1d:a5:74:
c1:e5:ff:af:73:66:e7:ec:39:90:41:eb:69:45:b7:fc:00:cb:
5b:d7:9e:79:23:05:07:aa:a0:92:8b:6c:22:8d:28:3b:1b:ff:
a3:67:29:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 09:17:19 2026 by rpki-client