Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7DF2F2222F3511F184F362D1DAE4EC9C.roa
File: 7DF2F2222F3511F184F362D1DAE4EC9C.roa (raw, json)
Hash identifier: 0HRn21ZmY4b7J1feMCBhGyQ8PSS9s+kYXks+CkKw9Ms=
Subject key identifier: 8B:18:69:C7:C0:99:48:50:BD:E6:EE:CA:6A:6B:83:3C:D0:E6:91:D8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A99E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7DF2F2222F3511F184F362D1DAE4EC9C.roa
Signing time: Fri 03 Apr 2026 08:17:02 +0000
ROA not before: Fri 03 Apr 2026 08:16:58 +0000
ROA not after: Thu 14 May 2026 08:16:58 +0000
asID: 141718
IP address blocks: 45.194.86.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:26:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108958 (0x1a99e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 3 08:16:58 2026 GMT
Not After : May 14 08:16:58 2026 GMT
Subject: CN=69cf777e-ef87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:38:cf:f5:d3:84:ba:e6:63:30:82:36:56:2d:
10:52:aa:5a:41:ab:b7:f8:e6:31:a0:c5:b1:c4:1e:
7d:54:5d:33:4a:81:25:02:1e:2c:96:97:72:b4:95:
9a:19:e0:2d:56:7d:de:c8:28:be:45:cf:bc:1e:c7:
3e:77:03:d7:d4:f0:95:99:07:be:63:8d:5d:20:de:
1d:4c:e0:44:da:93:40:37:8c:33:de:cc:c5:92:ce:
18:c5:37:f9:d0:50:8b:17:67:d6:38:1e:cd:81:d4:
8b:62:73:c3:c0:5e:7e:52:d4:83:95:20:c1:e2:fc:
d9:f4:df:f3:59:de:ab:fb:8c:29:85:0c:04:19:82:
af:2a:57:5c:76:82:60:bc:99:c6:cf:f0:d2:e5:c0:
c6:5a:cb:03:1b:e9:0e:5d:18:cb:7a:60:fa:e5:36:
7c:42:95:6c:19:58:c4:88:51:28:92:f8:8a:d6:76:
f3:e8:fb:cb:b7:b4:f4:1a:54:8e:de:19:39:d7:7f:
c7:9d:9c:f1:ef:f0:9e:c3:d0:53:33:78:b9:9f:db:
08:80:65:da:13:ba:35:e1:ce:b1:f9:12:ba:ec:20:
b6:4b:7e:14:37:b7:c1:be:62:ff:ff:0d:06:a1:18:
8c:37:23:00:41:70:61:38:42:15:c8:7c:70:04:74:
f7:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:18:69:C7:C0:99:48:50:BD:E6:EE:CA:6A:6B:83:3C:D0:E6:91:D8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7DF2F2222F3511F184F362D1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.86.0/24
Signature Algorithm: sha256WithRSAEncryption
39:51:e3:16:57:5e:ce:2a:b6:98:d7:31:3d:ae:b4:41:97:ae:
03:49:03:28:b1:cd:65:85:bc:1a:99:4f:0f:21:86:6b:6e:e2:
82:75:49:21:e0:e6:84:18:ff:b0:63:2e:9c:8f:09:24:2f:d7:
c2:39:5b:53:d3:0f:e3:d7:bd:2d:0d:74:ac:74:d7:90:e8:35:
d2:9b:6d:0d:49:84:16:ca:f3:c9:6b:d7:fb:82:42:03:cb:f1:
3b:f1:f4:80:c9:80:b5:c9:f6:13:a7:d5:44:f5:32:1b:d0:72:
8e:7f:25:a8:82:ec:10:06:c8:55:69:6e:8e:0d:ad:40:37:9f:
38:10:28:17:ba:62:cc:2c:11:84:c3:0c:c6:14:a4:03:ec:5e:
1f:7d:09:60:29:00:9d:ad:34:c0:4e:c7:32:3d:2f:c8:ce:82:
29:c3:a5:23:12:5e:47:4b:25:70:7f:bb:e9:cb:f7:75:e4:4d:
fe:71:41:fe:25:c3:7e:ae:87:d9:b9:5a:ee:52:c5:ab:34:d6:
48:84:c3:ed:08:d3:04:8d:e1:55:55:e3:02:fd:e2:08:bd:fd:
b5:d5:55:79:9f:3d:4d:2e:0b:ba:b9:98:7b:a2:d1:b0:2a:73:
4b:6f:44:e5:e7:52:e1:8a:20:2a:1f:f2:58:f2:a8:72:dd:b7:
bd:9d:de:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:53:58 2026 by rpki-client