Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0C2EACCA2F2C11F1A08D239DDAE4EC9C.roa
File: 0C2EACCA2F2C11F1A08D239DDAE4EC9C.roa (raw, json)
Hash identifier: H+vcT+a8C5PJf/uD9ZDTO16ed7lbTftfl8swH7lve2k=
Subject key identifier: F0:6E:B5:C4:0F:62:7E:FB:0E:98:AF:AD:BC:1D:00:39:CA:AD:17:51
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A98A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0C2EACCA2F2C11F1A08D239DDAE4EC9C.roa
Signing time: Fri 03 Apr 2026 07:09:26 +0000
ROA not before: Fri 03 Apr 2026 07:09:21 +0000
ROA not after: Sat 09 May 2026 07:09:21 +0000
asID: 211577
IP address blocks: 45.192.19.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:26:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108938 (0x1a98a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 3 07:09:21 2026 GMT
Not After : May 9 07:09:21 2026 GMT
Subject: CN=69cf67a6-ca78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:00:a7:f0:da:f6:21:5c:d2:17:2d:c7:a2:1d:
e7:57:31:e5:f6:3d:29:b6:0f:aa:d3:7f:d7:e5:e1:
01:3b:8a:47:04:8b:bd:88:d9:39:ab:85:ac:e4:70:
c5:8b:b5:91:a2:c8:77:8e:12:86:32:fd:3a:bd:98:
b4:aa:77:44:45:0c:1c:25:1d:5f:e0:38:16:2c:0b:
bf:40:c5:dc:4e:e4:a1:7b:f7:9c:a9:f1:aa:bf:65:
83:bc:27:ef:7e:1e:ee:8d:51:90:dc:56:e6:9c:05:
ef:39:bc:0a:4f:0f:85:34:37:f4:f7:27:1a:b9:23:
ed:ac:e8:e9:0d:e2:7a:a8:ae:7f:21:a8:89:dc:aa:
ce:3d:da:81:a2:c6:7b:fa:2c:3d:2c:1f:8e:9c:8e:
cc:a8:37:0d:77:a2:12:18:eb:b8:67:d2:df:63:96:
f9:91:6f:a6:81:99:a5:da:49:44:67:e3:82:c6:74:
a6:36:63:06:27:ae:7b:1b:97:60:6c:3d:54:f0:ef:
e3:4b:6a:86:07:2f:73:01:04:86:c1:51:d6:31:de:
36:0d:ca:0a:41:a9:c6:71:93:e6:a6:e4:eb:f6:63:
d6:e1:90:bd:2e:30:79:4f:19:4e:47:c8:9a:0f:e9:
c3:85:1e:f9:c9:3f:a5:03:96:28:7a:66:43:0c:a3:
87:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:6E:B5:C4:0F:62:7E:FB:0E:98:AF:AD:BC:1D:00:39:CA:AD:17:51
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0C2EACCA2F2C11F1A08D239DDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.19.0/24
Signature Algorithm: sha256WithRSAEncryption
03:45:e4:13:25:ee:51:e7:55:04:53:45:82:ce:ad:99:a2:39:
13:01:fb:36:d8:10:63:b9:46:df:c9:36:cf:fd:50:bb:29:c0:
7a:be:cf:d7:58:32:8b:4d:e3:3a:b6:ab:ca:dd:e1:00:23:15:
30:8d:7d:63:78:32:b2:57:67:eb:eb:bc:77:d1:c3:b9:59:5a:
c5:0c:2e:00:cf:24:88:72:27:51:0d:f1:95:33:3e:53:56:93:
62:8f:69:16:d2:1e:a2:cd:3a:c5:9c:63:43:cf:69:3b:97:07:
b1:06:ca:ae:03:ea:92:79:48:1b:5e:1e:3c:e2:d3:b8:40:e8:
10:08:46:7a:e4:9e:53:0f:6e:5d:25:23:c7:01:de:7d:ed:2d:
9b:f8:50:7e:10:89:10:8f:52:fd:d6:ff:35:42:19:02:d4:d9:
f4:be:5d:72:bc:08:4b:1d:e5:f3:6b:75:99:4b:c7:e6:a8:a1:
2b:99:a0:df:14:ef:2c:17:fe:3d:9a:b0:27:45:9f:88:7b:79:
40:4c:35:2c:6c:5b:1b:28:e2:6c:83:ea:87:6a:c3:dc:cc:d5:
07:07:e0:40:38:47:8e:20:08:da:df:64:a4:64:2f:7c:1a:c8:
97:78:05:ed:32:32:73:52:18:76:9c:00:78:3b:9c:39:1f:91:
af:14:e2:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:45:46 2026 by rpki-client