Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/57E2F1D629DB11F1AB2805D8DAE4EC9C.roa
File: 57E2F1D629DB11F1AB2805D8DAE4EC9C.roa (raw, json)
Hash identifier: lhzOYHxmIHe+Sq3Asu7LAKCYUERp7hF1vgyxdCfBsUw=
Subject key identifier: 87:99:FA:B0:A5:97:6A:71:04:46:7E:99:A7:6A:E1:52:7B:38:38:10
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A7D6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/57E2F1D629DB11F1AB2805D8DAE4EC9C.roa
Signing time: Fri 27 Mar 2026 12:49:08 +0000
ROA not before: Fri 27 Mar 2026 12:49:03 +0000
ROA not after: Sun 10 May 2026 12:49:03 +0000
asID: 32043
IP address blocks: 45.192.120.0/21 maxlen: 24
45.194.114.0/23 maxlen: 24
45.194.118.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 14:05:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108502 (0x1a7d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 27 12:49:03 2026 GMT
Not After : May 10 12:49:03 2026 GMT
Subject: CN=69c67cc4-af39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:83:4a:fc:f2:24:a5:2a:ed:81:4c:56:99:b1:
9d:5b:61:ef:73:90:3c:20:35:24:b1:ce:f9:2d:50:
0a:2f:5a:dc:2d:ea:27:fa:83:15:6a:e8:c1:b2:3c:
4d:77:6c:63:9e:d8:34:f3:0e:0c:16:5d:a1:ed:9c:
a9:5b:53:db:5a:d1:07:80:99:24:65:08:0d:ed:d0:
42:40:3b:e0:52:fe:a0:ba:57:f0:90:52:bd:72:3f:
47:69:c8:d8:ec:43:fe:a5:0e:17:32:71:f1:b4:13:
e7:97:a6:3c:65:6f:8f:0a:b5:0e:6b:70:19:b2:5b:
aa:b1:07:8d:4c:6e:52:0d:d5:8a:ba:c1:8b:74:29:
9b:cf:07:49:95:78:53:cd:78:e0:4b:40:ac:14:6f:
41:32:7d:c1:d8:a8:2c:44:4a:8e:0a:0b:62:6d:c9:
4a:d6:db:88:63:67:bb:48:2e:a0:56:1f:48:a1:c8:
6b:66:87:71:d5:d3:eb:b9:a7:c9:fb:de:7b:a2:cb:
d6:ed:37:0b:11:a8:15:ba:42:3a:a9:d1:70:2a:01:
eb:84:0b:ff:a1:9a:d7:23:e3:13:50:ad:69:21:00:
bc:0d:72:e5:30:89:7a:ad:b5:0c:64:70:eb:63:c7:
b4:94:a2:9f:5f:ec:73:b6:38:00:21:00:42:0c:c8:
8d:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:99:FA:B0:A5:97:6A:71:04:46:7E:99:A7:6A:E1:52:7B:38:38:10
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/57E2F1D629DB11F1AB2805D8DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.120.0/21
45.194.114.0/23
45.194.118.0/24
Signature Algorithm: sha256WithRSAEncryption
71:b9:df:16:83:4d:f7:5d:1e:3e:e3:3e:2c:c8:ac:e3:dd:06:
50:b2:16:54:c5:b4:e8:26:49:e2:76:4a:50:a5:84:0d:9c:99:
52:7f:b4:31:7f:c0:17:be:82:9a:00:3b:4b:d2:56:3c:35:02:
ed:8e:8b:72:ff:e9:41:d4:e7:69:6d:fc:dd:8e:b1:9e:f8:ce:
19:dd:2b:2f:3d:64:7b:08:c0:35:21:88:34:13:19:24:ae:74:
72:90:8b:d9:14:ae:b8:fd:17:f0:01:bd:cf:b6:fc:a0:c6:fb:
15:e7:bc:19:1f:b1:f5:cf:14:b2:08:b4:5e:25:6c:71:fc:36:
f8:cf:37:71:b9:6e:6c:c2:1a:f7:5b:13:ca:bb:a0:7a:18:7f:
f7:dd:4c:20:36:9a:23:a9:e9:37:01:9f:5d:1c:a9:83:89:ac:
75:15:64:53:be:08:28:0d:95:ca:f7:00:aa:e6:b4:0d:e1:57:
94:8e:d3:a9:35:7a:e0:d5:fb:be:c9:ce:d8:f1:71:ca:c8:0e:
ac:2a:b6:69:62:7a:d7:56:a4:4f:f5:0f:99:fa:39:bf:f4:02:
6f:f3:bf:66:b1:4d:91:68:4a:c4:d7:55:74:09:34:59:62:17:
ca:35:d1:2b:a4:fc:94:0f:e0:cd:99:68:6c:b9:7a:3e:d0:ce:
5c:09:36:db
-----BEGIN CERTIFICATE-----
MIIFjTCCBHWgAwIBAgIDAafWMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwMzI3MTI0OTAzWhcNMjYwNTEwMTI0OTAzWjAYMRYw
FAYDVQQDEw02OWM2N2NjNC1hZjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAwINK/PIkpSrtgUxWmbGdW2Hvc5A8IDUksc75LVAKL1rcLeon+oMVaujB
sjxNd2xjntg08w4MFl2h7ZypW1PbWtEHgJkkZQgN7dBCQDvgUv6gulfwkFK9cj9H
acjY7EP+pQ4XMnHxtBPnl6Y8ZW+PCrUOa3AZsluqsQeNTG5SDdWKusGLdCmbzwdJ
lXhTzXjgS0CsFG9BMn3B2KgsREqOCgtibclK1tuIY2e7SC6gVh9IochrZodx1dPr
uafJ+957osvW7TcLEagVukI6qdFwKgHrhAv/oZrXI+MTUK1pIQC8DXLlMIl6rbUM
ZHDrY8e0lKKfX+xztjgAIQBCDMiNJQIDAQABo4ICrjCCAqowHQYDVR0OBBYEFIeZ
+rCll2pxBEZ+madq4VJ7ODgQMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC81N0UyRjFENjI5REIxMUYxQUIyODA1RDhEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQDLcB4AwQBLcJyAwQALcJ2MA0G
CSqGSIb3DQEBCwUAA4IBAQBxud8Wg033XR4+4z4syKzj3QZQshZUxbToJknidkpQ
pYQNnJlSf7Qxf8AXvoKaADtL0lY8NQLtjoty/+lB1OdpbfzdjrGe+M4Z3SsvPWR7
CMA1IYg0ExkkrnRykIvZFK64/RfwAb3PtvygxvsV57wZH7H1zxSyCLReJWxx/Db4
zzdxuW5swhr3WxPKu6B6GH/33UwgNpojqek3AZ9dHKmDiax1FWRTvggoDZXK9wCq
5rQN4VeUjtOpNXrg1fu+yc7Y8XHKyA6sKrZpYnrXVqRP9Q+Z+jm/9AJv879msU2R
aErE11V0CTRZYhfKNdErpPyUD+DNmWhsuXo+0M5cCTbb
-----END CERTIFICATE-----
Generated at Fri Apr 17 23:55:08 2026 by rpki-client