Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BD29DB1033E811F19C2E4F15CF1D38B0.roa
File: BD29DB1033E811F19C2E4F15CF1D38B0.roa (raw, json)
Hash identifier: JsrpS76sWtm0aIqVYPWJB6gvwSd35QgymUC47j5djwQ=
Subject key identifier: 04:6E:97:C8:FA:DB:26:F2:4A:31:64:5C:F1:00:39:C4:AF:88:96:9C
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AB1E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BD29DB1033E811F19C2E4F15CF1D38B0.roa
Signing time: Thu 09 Apr 2026 07:50:13 +0000
ROA not before: Thu 09 Apr 2026 07:50:08 +0000
ROA not after: Sat 16 May 2026 07:50:08 +0000
asID: 151407
IP address blocks: 45.196.220.0/23 maxlen: 24
45.196.220.0/24 maxlen: 24
45.196.221.0/24 maxlen: 24
45.196.236.0/23 maxlen: 24
45.196.236.0/24 maxlen: 24
45.196.237.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 14:05:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109342 (0x1ab1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 9 07:50:08 2026 GMT
Not After : May 16 07:50:08 2026 GMT
Subject: CN=69d75a35-5dd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:78:54:29:d7:70:3c:49:98:e8:a0:1d:f3:5b:
77:0c:3b:46:91:37:cf:51:49:71:83:a4:a7:84:e0:
fe:41:78:e2:06:62:02:33:6f:e7:de:c6:90:ab:57:
75:b7:22:66:06:32:cd:d2:31:57:d6:24:4f:98:4b:
74:06:c3:59:31:30:52:df:df:79:c8:9c:17:76:89:
73:61:cb:e0:be:c4:00:25:47:c4:9c:82:32:9c:d4:
f8:40:05:db:d1:7d:2f:62:fc:bf:03:2e:db:fe:ce:
f3:d9:52:68:c6:88:f1:b5:65:4c:73:88:bc:77:28:
59:86:f2:48:68:ed:1f:c0:7b:d5:a1:bd:9b:16:ea:
15:86:4c:b3:81:b7:5d:1b:8f:af:c9:6e:6e:e7:50:
e8:9b:ea:4c:a4:e7:04:40:f7:23:c7:31:62:b1:d1:
17:6d:39:e4:ee:af:5d:e9:08:2b:b1:4b:3d:f3:18:
6f:30:2e:19:8a:2d:85:df:bf:60:e8:b2:02:c1:c5:
60:e9:38:db:e7:d6:85:67:82:a9:9d:c0:78:aa:3d:
18:2c:1b:13:0a:e7:1d:ff:92:bc:99:4d:c9:6d:b0:
9e:35:64:dd:f0:3b:ad:cb:03:94:2f:3a:51:bd:d9:
1c:92:08:17:a9:f3:c0:90:4b:49:32:5d:27:cb:09:
d9:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:6E:97:C8:FA:DB:26:F2:4A:31:64:5C:F1:00:39:C4:AF:88:96:9C
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BD29DB1033E811F19C2E4F15CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.220.0/23
45.196.236.0/23
Signature Algorithm: sha256WithRSAEncryption
98:92:bb:f4:78:e7:22:63:6e:90:e9:54:35:a2:81:ca:69:d9:
21:be:2e:c7:6f:d1:48:7d:42:a1:8d:0e:1b:76:2a:50:ac:6f:
7a:f7:17:5c:ac:07:4a:a7:9b:3c:5b:bf:cc:5c:12:4d:5d:f7:
44:9f:91:71:9e:31:24:e7:ba:84:17:c5:aa:2c:9b:dc:43:d3:
ee:52:c2:9e:d5:ac:c0:b5:e3:d9:78:37:a4:55:33:58:38:c6:
17:8e:40:ce:45:26:d5:03:97:26:81:78:b1:fd:22:f8:00:cb:
36:fd:bc:92:d9:05:26:44:ae:47:37:a3:42:ec:77:7a:2b:fd:
6b:cc:3d:bf:3b:6e:07:e1:88:d5:92:bf:26:01:5a:d3:c8:1a:
0c:7c:ea:f7:a1:cc:ec:0a:84:f6:b9:b3:ff:5c:1c:ea:e2:78:
1f:b0:be:71:ac:63:6c:d4:f3:3f:2e:62:89:73:86:0f:55:75:
a5:a5:86:61:30:d4:cb:26:3a:dc:df:82:9f:e3:e6:8b:a0:b5:
b0:d0:ad:ad:5b:6f:f4:7e:7c:61:7b:d6:3e:40:2b:33:09:62:
98:54:31:9a:cf:3c:05:96:f0:3b:b8:f6:08:35:37:03:d4:33:
36:cf:42:ae:dc:fe:28:e8:4f:5f:9e:3f:48:d4:5e:c0:d3:85:
1d:47:3f:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:50:44 2026 by rpki-client