Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4ED43E5229C611F19C890CE0DAE4EC9C.roa
File: 4ED43E5229C611F19C890CE0DAE4EC9C.roa (raw, json)
Hash identifier: uYRc8jbWFbPpQ3Ssxykpjf4P3to1RuTVBURb4hY0eU0=
Subject key identifier: AF:31:7D:34:6E:7B:06:D4:23:08:1E:0B:B9:2F:7F:FC:85:96:35:7A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A7BB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4ED43E5229C611F19C890CE0DAE4EC9C.roa
Signing time: Fri 27 Mar 2026 10:18:33 +0000
ROA not before: Fri 27 Mar 2026 10:18:28 +0000
ROA not after: Sun 10 May 2026 10:18:28 +0000
asID: 7018
IP address blocks: 45.202.74.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 14:05:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108475 (0x1a7bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 27 10:18:28 2026 GMT
Not After : May 10 10:18:28 2026 GMT
Subject: CN=69c65979-9930
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:33:a8:b2:7e:ab:ce:56:ce:ba:45:65:2c:70:
55:78:7b:71:b2:53:3c:5a:f5:cf:7f:cb:f1:e4:cb:
3b:5f:d7:32:47:35:87:36:68:7b:2e:88:0e:e6:aa:
9f:3c:15:20:5d:36:d9:52:59:7c:61:6b:6e:56:76:
e7:a5:02:da:6a:1d:2b:e6:1c:12:20:d7:53:eb:8a:
66:2e:e0:bb:cc:b3:9a:2f:4b:ed:d1:6b:74:88:72:
62:36:ff:8a:73:a9:0d:34:6f:a7:27:c5:cf:12:d5:
66:d0:05:82:c9:d1:c6:d6:7d:4a:99:26:bf:70:6e:
8b:38:2d:03:da:2c:a0:cc:17:18:15:df:c8:4b:59:
ba:39:d7:a6:73:c8:f2:de:82:ee:92:1d:23:37:ef:
8d:b9:c2:5e:1f:4d:75:e0:b3:a2:4b:9f:d1:69:14:
04:1b:2a:e1:9f:67:a7:30:7e:e3:bf:63:df:a3:c9:
ac:86:7a:5c:ac:54:4e:43:99:1f:47:6c:4c:00:03:
54:49:ab:b9:9a:c5:f9:03:8c:f7:28:bd:cd:b7:d5:
7b:74:e4:0f:2d:29:b9:f4:b3:e3:93:b0:e1:7d:2e:
05:bc:9b:9f:0f:d6:30:32:a2:3d:1f:30:9f:76:59:
4b:d0:d3:c3:f4:76:e8:75:08:c5:32:bb:9a:03:b0:
52:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:31:7D:34:6E:7B:06:D4:23:08:1E:0B:B9:2F:7F:FC:85:96:35:7A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4ED43E5229C611F19C890CE0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.74.0/24
Signature Algorithm: sha256WithRSAEncryption
66:9b:1d:e7:f5:73:01:e3:63:b0:e9:06:71:68:d6:1b:13:68:
69:5b:e2:5e:67:ec:c6:34:95:fc:95:d2:9c:b3:23:b7:cd:1c:
1e:6b:48:50:23:20:c4:bf:33:40:9b:fe:f5:1c:dd:09:75:61:
5b:db:b7:1d:25:57:72:d9:9c:1d:46:8a:99:fa:be:68:05:0f:
0e:77:32:93:96:38:01:ae:80:4c:16:22:8c:c3:41:47:36:58:
b2:ad:13:8c:b4:83:ac:1f:3d:f7:57:34:8d:e0:82:c6:8a:a8:
1b:6d:c9:6a:fb:f4:99:3c:d2:7e:a2:74:06:3d:af:e2:77:cc:
7d:de:96:9c:76:b9:a0:37:8d:12:37:5f:9a:c7:a9:74:69:ee:
4f:42:27:ce:5d:f2:34:05:2f:73:93:fc:72:a2:85:e7:5b:56:
52:e5:71:ff:fb:47:97:a5:82:65:8d:93:d3:12:02:25:e9:45:
4a:ca:b1:06:f9:a5:e9:fc:85:8f:81:df:c3:f5:a6:73:73:e9:
11:94:20:05:20:6b:cd:47:7c:1f:ed:cc:8d:55:8d:bc:17:46:
e3:a7:fe:2c:af:1a:82:bf:7c:fb:9d:4e:a7:e2:39:d3:94:0c:
71:a7:e5:36:97:eb:a1:f6:67:41:b8:b3:91:c3:18:22:73:b5:
f1:78:98:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 16:37:13 2026 by rpki-client