Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/893625D863D711F1A3BDB40ECF1D38B0.roa
File: 893625D863D711F1A3BDB40ECF1D38B0.roa (raw, json)
Hash identifier: AGLL1cHNQ+/hclohDpMC7UnXHVRlttM2aM5nVRT54Nk=
Subject key identifier: CE:23:BE:09:64:3A:E6:4F:01:44:6D:52:74:71:F7:EA:95:02:E0:98
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01BC7F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/893625D863D711F1A3BDB40ECF1D38B0.roa
Signing time: Tue 09 Jun 2026 07:48:00 +0000
ROA not before: Tue 09 Jun 2026 07:47:55 +0000
ROA not after: Fri 19 Jun 2026 07:47:55 +0000
asID: 216211
IP address blocks: 45.192.196.0/22 maxlen: 24
45.192.200.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113791 (0x1bc7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 9 07:47:55 2026 GMT
Not After : Jun 19 07:47:55 2026 GMT
Subject: CN=6a27c530-c48d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:f3:a1:6b:3c:15:07:58:c2:70:32:42:3e:43:
c4:fa:3d:6b:63:42:34:71:e4:a5:ef:5d:d2:49:ea:
67:98:e2:ce:08:8a:ed:ff:ed:3b:8a:d9:5d:55:cb:
37:b5:72:d7:17:f8:ce:bb:cc:47:6c:d1:8c:dc:b1:
b5:3f:38:e1:cb:af:6e:0c:80:f4:71:98:9b:82:68:
37:c8:d0:0f:b3:46:73:93:67:02:a4:16:ce:0f:dc:
8e:f7:09:03:57:23:1c:ee:df:11:43:33:09:6c:fb:
fc:a1:a6:24:9f:47:11:33:79:7e:75:c1:2d:da:a3:
c1:ae:ca:e9:06:de:1f:63:7a:87:b4:5f:c5:de:1d:
51:8f:6a:5b:39:e1:77:5a:0c:3a:6e:01:23:1a:17:
c3:34:3d:40:40:d3:6e:b9:2d:1b:43:eb:53:6a:e5:
a2:12:6d:89:23:25:f4:a9:9f:33:34:45:f1:d7:de:
07:23:da:f2:f5:36:34:49:85:3d:78:c8:42:67:14:
a4:ff:38:85:a3:57:5b:e2:9e:9a:42:47:42:5e:b8:
72:b0:d0:2c:06:b7:7a:ec:d5:ed:7a:56:fe:3c:12:
5c:da:b0:16:69:21:76:4a:83:c9:9a:d5:a8:63:45:
e7:a9:cd:f7:3a:16:00:d8:2c:83:b3:f5:62:ef:13:
9c:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:23:BE:09:64:3A:E6:4F:01:44:6D:52:74:71:F7:EA:95:02:E0:98
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/893625D863D711F1A3BDB40ECF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.196.0-45.192.203.255
Signature Algorithm: sha256WithRSAEncryption
0a:92:7b:2b:e8:e4:13:3c:50:92:10:25:ba:c9:da:72:2c:be:
e4:8d:c1:26:b7:8d:65:d9:17:78:97:ba:00:e7:c2:a8:e0:78:
fb:b3:2a:f3:07:fa:9b:bd:01:23:c6:61:0a:d2:51:64:52:9d:
28:24:c8:e9:1c:05:81:f0:ff:61:88:d7:42:30:f9:8c:54:4c:
44:fc:8d:d7:d0:95:c1:c5:89:3a:bd:89:2e:85:06:8e:09:17:
87:d1:8a:cc:a8:a5:1f:74:5e:1b:12:48:05:e7:04:bd:28:9b:
b7:6c:8c:3d:e8:a5:b7:c2:78:38:4d:11:76:6c:df:0d:f0:1f:
0d:66:07:03:75:bd:52:f5:c2:4f:b0:1d:f5:8f:a0:99:d4:dd:
74:15:c6:d5:cf:53:e0:20:fe:31:fc:e7:40:98:06:61:31:12:
68:6c:b1:d3:3b:ad:1e:d7:74:f2:46:fc:3c:b6:7e:54:4e:16:
8e:fe:36:0c:06:c0:09:9c:de:f6:a2:b7:0d:17:30:e4:bf:f1:
a9:2e:12:38:e9:d1:dd:ed:2e:60:d4:9f:26:63:19:d6:99:f4:
0a:14:28:11:15:d3:a1:28:96:12:76:fd:8d:79:31:9e:89:31:
4e:d0:60:b3:03:86:a7:48:f5:88:05:62:2c:9d:f4:1a:e9:dc:
ea:6c:f3:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:53:48 2026 by rpki-client