Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2E6157383A4F11F1B48AE213CF1D38B0.roa
File: 2E6157383A4F11F1B48AE213CF1D38B0.roa (raw, json)
Hash identifier: HCPBb4IZpnPojKLieI6KVwVGK/b5J455ftDB4ojII+0=
Subject key identifier: 71:F4:B0:6E:12:00:9A:F8:A5:8F:47:A3:6C:46:8F:D5:FC:B5:9A:2D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AD68
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2E6157383A4F11F1B48AE213CF1D38B0.roa
Signing time: Fri 17 Apr 2026 11:18:38 +0000
ROA not before: Fri 17 Apr 2026 11:18:34 +0000
ROA not after: Sat 23 May 2026 11:18:34 +0000
asID: 149940
IP address blocks: 45.198.1.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 14:05:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109928 (0x1ad68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 17 11:18:34 2026 GMT
Not After : May 23 11:18:34 2026 GMT
Subject: CN=69e2170e-a71d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ec:92:4e:96:9a:75:eb:94:0a:e9:ea:ad:0f:
67:d7:7d:b8:f2:27:fc:84:12:29:ba:e9:20:d6:3d:
7a:59:b9:c8:dc:dd:ab:02:b0:fe:18:8f:b3:74:4e:
f3:b1:27:77:48:af:cf:ae:a4:c1:63:c1:ac:98:7a:
83:14:3b:36:c5:b4:0d:ea:28:06:a2:02:3c:55:99:
0c:18:2a:58:62:70:fc:4d:5e:89:d7:9c:9f:16:cf:
ac:a2:e3:bc:13:dd:e6:4f:17:8e:60:0f:dd:e6:10:
fd:bd:1a:eb:29:f8:ea:82:20:bf:b3:8e:55:cb:41:
4b:b7:87:32:43:79:b6:a2:9d:1b:dc:a3:01:f4:57:
07:72:64:f3:e9:c8:4c:87:c0:c8:85:6b:96:35:ef:
36:fd:4b:fe:49:7d:96:0b:1e:bb:64:35:09:86:c1:
23:02:33:38:a9:3d:4e:98:56:1b:78:c3:a9:03:43:
7b:2e:50:f7:48:1e:38:42:6f:d0:af:69:87:b7:b3:
8c:92:9d:e2:fc:49:fe:cd:f3:42:1d:1c:d2:05:20:
31:32:bc:06:b7:7e:cf:a5:0f:37:1f:93:13:ef:29:
67:40:46:8a:47:de:75:88:49:8e:f8:cb:aa:e2:8a:
0a:cb:88:23:e7:e1:2c:43:d1:83:d5:c3:b5:46:f7:
9a:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:F4:B0:6E:12:00:9A:F8:A5:8F:47:A3:6C:46:8F:D5:FC:B5:9A:2D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2E6157383A4F11F1B48AE213CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.1.0/24
Signature Algorithm: sha256WithRSAEncryption
78:a1:b3:1b:80:e9:0d:9b:4c:7d:95:11:e6:be:93:71:68:8b:
eb:b9:8a:23:42:73:23:09:d9:4c:30:9d:b6:a3:f4:c3:85:45:
9f:a7:40:49:e7:1b:0d:b7:db:e9:34:6e:e7:a8:79:d5:65:6e:
b9:7f:38:52:e0:46:76:bc:74:0b:76:19:d2:0d:d1:b5:14:6c:
7c:01:03:6e:21:c1:52:f5:ef:4d:aa:df:34:e9:6f:6a:14:6e:
73:7a:b9:9f:69:14:dc:4d:7e:d0:de:92:8d:d0:01:16:7f:fb:
dd:b5:77:b2:ec:e5:7f:1d:cc:14:de:62:b6:9a:07:92:7a:29:
d3:db:e3:b4:87:0a:75:33:40:c8:c3:cb:5e:ca:45:1a:09:da:
01:ea:2d:04:c7:83:16:b0:c8:f0:2d:0e:a4:c9:21:f5:70:f2:
67:35:c0:1b:ef:eb:ed:71:a4:6b:3b:47:f8:e7:23:f5:7b:bf:
7d:e5:da:e2:14:40:57:25:65:e7:1a:a6:38:87:ae:2b:7e:13:
c9:e7:46:23:1c:17:15:fd:ab:1a:f1:83:6a:08:46:58:66:df:
b4:99:03:3b:d4:36:69:b6:e1:35:14:42:1e:7c:2e:8a:15:68:
52:05:ca:b0:60:bf:e1:2a:da:38:48:6b:6b:42:b2:c7:ab:30:
22:1e:a7:16
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAa1oMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwNDE3MTExODM0WhcNMjYwNTIzMTExODM0WjAYMRYw
FAYDVQQDEw02OWUyMTcwZS1hNzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAruySTpaadeuUCunqrQ9n13248if8hBIpuukg1j16WbnI3N2rArD+GI+z
dE7zsSd3SK/PrqTBY8GsmHqDFDs2xbQN6igGogI8VZkMGCpYYnD8TV6J15yfFs+s
ouO8E93mTxeOYA/d5hD9vRrrKfjqgiC/s45Vy0FLt4cyQ3m2op0b3KMB9FcHcmTz
6chMh8DIhWuWNe82/Uv+SX2WCx67ZDUJhsEjAjM4qT1OmFYbeMOpA0N7LlD3SB44
Qm/Qr2mHt7OMkp3i/En+zfNCHRzSBSAxMrwGt37PpQ83H5MT7ylnQEaKR951iEmO
+Muq4ooKy4gj5+EsQ9GD1cO1Rvea9wIDAQABo4ICojCCAp4wHQYDVR0OBBYEFHH0
sG4SAJr4pY9Ho2xGj9X8tZotMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8yRTYxNTczODNBNEYxMUYxQjQ4QUUyMTNDRjFEMzhCMC5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALcYBMA0GCSqGSIb3DQEBCwUA
A4IBAQB4obMbgOkNm0x9lRHmvpNxaIvruYojQnMjCdlMMJ22o/TDhUWfp0BJ5xsN
t9vpNG7nqHnVZW65fzhS4EZ2vHQLdhnSDdG1FGx8AQNuIcFS9e9Nqt806W9qFG5z
ermfaRTcTX7Q3pKN0AEWf/vdtXey7OV/HcwU3mK2mgeSeinT2+O0hwp1M0DIw8te
ykUaCdoB6i0Ex4MWsMjwLQ6kySH1cPJnNcAb7+vtcaRrO0f45yP1e7995driFEBX
JWXnGqY4h64rfhPJ50YjHBcV/asa8YNqCEZYZt+0mQM71DZptuE1FEIefC6KFWhS
BcqwYL/hKto4SGtrQrLHqzAiHqcW
-----END CERTIFICATE-----
Generated at Fri Apr 17 21:01:32 2026 by rpki-client