Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A598310E033211F1BCBE67BFDAE4EC9C.roa
File: A598310E033211F1BCBE67BFDAE4EC9C.roa (raw, json)
Hash identifier: VMbcbo8tz98q2Ug7i/IAVJSGFuzVrO6ks2UWiuXpkso=
Subject key identifier: 22:1B:7E:4E:4C:15:2A:1C:F2:6C:72:75:F0:7B:B1:19:15:A4:A5:19
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 019BFE
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A598310E033211F1BCBE67BFDAE4EC9C.roa
Signing time: Fri 06 Feb 2026 08:05:49 +0000
ROA not before: Fri 06 Feb 2026 08:05:44 +0000
ROA not after: Fri 20 Mar 2026 08:05:44 +0000
asID: 133180
IP address blocks: 45.192.2.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105470 (0x19bfe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 6 08:05:44 2026 GMT
Not After : Mar 20 08:05:44 2026 GMT
Subject: CN=6985a0dd-4683
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a4:0a:ab:3a:84:19:4b:ed:c2:39:e6:32:4c:
17:98:aa:c2:fa:e3:9b:e7:fb:74:68:1a:7d:3f:6d:
c5:ba:37:56:b0:cc:bd:b6:ab:51:12:2c:a3:59:09:
63:0f:33:5e:0a:28:e8:05:c8:bd:96:44:8a:47:0d:
7b:2c:65:54:05:71:b5:2b:e7:7a:18:bd:ca:c2:d0:
42:10:6a:5b:8c:24:a7:b4:10:fa:cb:33:7f:60:cd:
a8:35:e6:85:0d:d8:f7:ff:7d:66:41:2a:fc:48:24:
d8:12:92:7d:bc:a0:d5:7d:40:c6:17:1a:06:87:8a:
1f:98:5f:e0:62:eb:3d:67:bf:8b:72:44:e7:2d:9f:
fa:25:f8:61:b3:6c:e3:c6:84:d5:16:db:fa:e7:33:
e3:96:d5:93:10:a2:37:3e:a7:2e:24:e5:8d:c6:77:
f4:46:21:ab:ca:21:16:07:bd:4b:8d:50:bb:29:38:
f3:bc:08:b5:50:06:60:e9:15:f9:53:31:9c:4c:cb:
7d:0c:c3:5b:14:6a:38:9c:b0:80:a8:77:22:7f:44:
84:00:70:46:3a:fa:c7:68:db:9d:85:ca:91:cf:6c:
99:41:b1:aa:e7:50:2e:b3:8b:bb:d4:55:f1:2f:10:
e6:e9:3c:1e:b2:5f:2d:ca:22:13:9e:2b:79:f0:28:
1e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:1B:7E:4E:4C:15:2A:1C:F2:6C:72:75:F0:7B:B1:19:15:A4:A5:19
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A598310E033211F1BCBE67BFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.2.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:b0:d8:77:2d:33:e6:42:15:44:b4:10:ba:da:c9:0b:3c:ac:
83:b4:44:7d:fe:af:18:1c:2a:f6:29:ab:3d:4d:93:91:16:0d:
cc:ae:2b:f0:45:bf:64:98:4c:86:9e:9e:4a:63:4f:12:fc:d9:
ee:34:55:6c:ff:8f:7c:ab:a4:9d:56:a2:a8:e1:42:60:79:e0:
5b:36:c8:ee:95:50:f7:e8:bf:eb:f8:9e:bd:04:a0:f9:4a:d1:
0d:e2:7c:d5:de:f3:0a:23:f9:c0:64:8d:18:18:4d:d3:9b:4b:
c6:f5:36:0d:f4:78:d4:8b:7f:09:8a:84:c2:6c:5b:df:b4:0c:
64:a3:89:bd:27:e3:15:61:e9:5c:66:f3:29:4b:90:58:79:b3:
0b:11:f8:56:a9:d5:35:fe:dd:f3:1a:d1:7d:e2:cd:24:a5:87:
dc:ae:64:5a:ec:af:46:f0:b7:91:b7:69:c5:ef:ee:8a:a5:1c:
61:6e:49:5b:b3:99:88:69:de:a6:d8:0d:e2:81:8f:61:30:48:
68:a0:e5:18:f1:d2:9b:ca:06:04:9a:a9:8e:ab:ce:04:b0:4d:
45:f7:a0:c8:9d:dc:fb:52:c7:13:6b:21:33:8e:b5:74:0b:5b:
d4:04:15:9d:25:28:a6:a0:20:70:9e:0d:81:d7:c0:e7:14:0c:
c0:a0:86:2b
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAZv+MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwMjA2MDgwNTQ0WhcNMjYwMzIwMDgwNTQ0WjAYMRYw
FAYDVQQDEw02OTg1YTBkZC00NjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAsqQKqzqEGUvtwjnmMkwXmKrC+uOb5/t0aBp9P23FujdWsMy9tqtREiyj
WQljDzNeCijoBci9lkSKRw17LGVUBXG1K+d6GL3KwtBCEGpbjCSntBD6yzN/YM2o
NeaFDdj3/31mQSr8SCTYEpJ9vKDVfUDGFxoGh4ofmF/gYus9Z7+LckTnLZ/6Jfhh
s2zjxoTVFtv65zPjltWTEKI3PqcuJOWNxnf0RiGryiEWB71LjVC7KTjzvAi1UAZg
6RX5UzGcTMt9DMNbFGo4nLCAqHcif0SEAHBGOvrHaNudhcqRz2yZQbGq51Aus4u7
1FXxLxDm6Twesl8tyiITnit58CgeRQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFCIb
fk5MFSoc8mxydfB7sRkVpKUZMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9BNTk4MzEwRTAzMzIxMUYxQkNCRTY3QkZEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALcACMA0GCSqGSIb3DQEBCwUA
A4IBAQB+sNh3LTPmQhVEtBC62skLPKyDtER9/q8YHCr2Kas9TZORFg3MrivwRb9k
mEyGnp5KY08S/NnuNFVs/498q6SdVqKo4UJgeeBbNsjulVD36L/r+J69BKD5StEN
4nzV3vMKI/nAZI0YGE3Tm0vG9TYN9HjUi38JioTCbFvftAxko4m9J+MVYelcZvMp
S5BYebMLEfhWqdU1/t3zGtF94s0kpYfcrmRa7K9G8LeRt2nF7+6KpRxhbklbs5mI
ad6m2A3igY9hMEhooOUY8dKbygYEmqmOq84EsE1F96DIndz7UscTayEzjrV0C1vU
BBWdJSimoCBwng2B18DnFAzAoIYr
-----END CERTIFICATE-----
Generated at Mon Mar 2 11:20:48 2026 by rpki-client