Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/059C4C94066111F19088FDC8DAE4EC9C.roa
File: 059C4C94066111F19088FDC8DAE4EC9C.roa (raw, json)
Hash identifier: ApSh2Xpppu0iGWggl9ompHLQ3zSIupKkzUKneFAdMDU=
Subject key identifier: AC:CC:C6:93:03:07:80:C3:24:01:DA:99:B3:16:96:DC:F5:16:66:44
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 019C8F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/059C4C94066111F19088FDC8DAE4EC9C.roa
Signing time: Tue 10 Feb 2026 09:15:20 +0000
ROA not before: Tue 10 Feb 2026 09:15:15 +0000
ROA not after: Sun 08 Mar 2026 09:15:15 +0000
asID: 273020
IP address blocks: 45.194.71.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105615 (0x19c8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 10 09:15:15 2026 GMT
Not After : Mar 8 09:15:15 2026 GMT
Subject: CN=698af728-08bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:2d:3a:f8:e8:49:26:14:e5:6a:87:a1:92:bc:
a3:29:bd:32:8e:01:83:d3:d7:ff:55:29:88:86:48:
d1:ba:76:c9:c5:4f:8b:16:3c:2c:dc:31:7f:fe:bd:
e5:6d:b8:bb:76:6e:71:74:55:f0:d1:99:2c:d8:ad:
eb:94:8b:61:fe:fd:2d:00:6c:4b:32:3d:ea:f9:96:
c6:ed:b7:c2:a0:5a:44:74:95:52:c5:df:aa:c6:b8:
6d:80:7e:0b:ce:89:a1:a9:12:4c:46:c6:79:5e:67:
09:76:a3:33:5c:f3:19:30:d6:cf:d5:a4:91:c3:2e:
23:90:5c:de:fb:60:0a:87:1c:ce:45:4a:ba:a0:27:
6a:eb:b8:6b:de:4e:42:3c:f6:cc:08:34:b1:c9:ac:
4d:ba:01:1b:34:2e:a8:d6:f1:ca:58:a0:8c:0a:ac:
74:55:3c:7e:94:d3:70:e7:15:ff:b7:18:1a:7f:e2:
26:0a:1c:48:a3:c1:40:8a:ee:b5:4b:1d:2f:ae:53:
61:03:3f:5b:d9:d8:b1:3c:48:57:a0:2d:b7:6f:f2:
d6:f0:68:79:bc:7f:c0:88:49:39:64:33:cc:b4:40:
a7:d8:6c:d3:38:7f:e2:57:bd:a3:39:35:c0:95:68:
a8:4d:23:ea:e1:b4:2b:22:25:5e:6d:de:da:21:eb:
f1:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:CC:C6:93:03:07:80:C3:24:01:DA:99:B3:16:96:DC:F5:16:66:44
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/059C4C94066111F19088FDC8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.71.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:39:4a:6f:87:71:de:cb:a9:7f:c5:a4:5e:08:d1:40:46:6a:
80:54:b0:84:3e:a9:6c:79:d9:59:bb:a5:7c:86:33:59:00:3b:
ac:63:92:37:9a:58:06:40:55:49:43:38:e8:74:e9:50:9c:f9:
d3:a5:9f:a0:ac:b9:14:dd:c3:08:c9:93:ab:e3:51:10:97:4c:
62:47:60:85:b9:63:45:96:51:f5:30:6d:ab:a0:24:23:56:4d:
e4:08:6c:72:59:a8:18:e6:83:a7:bb:b4:c9:44:25:27:d2:b2:
d1:69:91:d7:77:d0:7d:f5:66:92:95:a3:da:41:b2:a7:bb:84:
80:9c:26:f6:fb:87:72:70:c8:66:76:ed:f0:b9:5b:f0:b1:f2:
61:62:65:35:4e:ae:11:16:66:ab:f7:f3:a3:0d:8b:6b:36:8e:
80:6d:aa:1a:85:8d:08:7e:c0:12:63:fb:a6:d9:6d:fc:55:a5:
85:4e:77:75:91:72:bf:90:a4:2d:aa:81:69:fd:f6:23:6c:0a:
c0:70:90:6f:6d:04:3c:07:a9:84:fe:ce:4c:df:cf:de:b2:d6:
5c:80:36:70:e2:79:29:32:c4:a2:26:47:97:fc:53:fa:7c:b4:
16:f3:f2:cd:51:f6:a4:78:b4:46:f4:c0:7c:56:22:ab:92:f2:
14:7e:fe:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:19:14 2026 by rpki-client