Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DC2F465429B011F19314ADE4DAE4EC9C.roa
File: DC2F465429B011F19314ADE4DAE4EC9C.roa (raw, json)
Hash identifier: 9HyuVIWFtEgUZ7erDvOZkCQiat3RYs+qE6ZPp/CvrhQ=
Subject key identifier: E0:98:5A:B8:82:C9:DA:12:D4:C9:4B:F9:D2:D7:88:8B:85:82:E1:E2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A7B1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DC2F465429B011F19314ADE4DAE4EC9C.roa
Signing time: Fri 27 Mar 2026 07:45:01 +0000
ROA not before: Fri 27 Mar 2026 07:44:57 +0000
ROA not after: Sun 03 May 2026 07:44:57 +0000
asID: 401366
IP address blocks: 45.202.75.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 14:05:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108465 (0x1a7b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 27 07:44:57 2026 GMT
Not After : May 3 07:44:57 2026 GMT
Subject: CN=69c6357d-959d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:07:59:83:24:b5:ac:0d:70:81:cf:9c:72:02:
71:97:34:21:ef:02:a8:39:27:45:cf:99:71:ee:f2:
fa:b4:cd:69:2a:b2:65:71:ba:ad:c5:cd:40:2c:ac:
4a:cc:fa:6c:eb:58:1d:34:20:6d:06:a8:97:b1:3a:
1a:18:04:19:62:7e:ac:c3:70:ef:78:36:52:16:23:
25:c4:c5:09:74:45:d5:bd:f1:bc:23:63:df:8a:2a:
f8:d8:f6:8d:e9:f3:92:18:90:48:79:2b:bd:5c:39:
ec:5e:1f:50:fb:30:7c:12:a7:18:10:a5:40:3e:64:
ac:94:21:94:10:c5:d0:78:cc:a4:94:5a:c5:1b:81:
63:d1:fa:ed:64:0f:fa:b0:23:bd:ea:e0:23:8e:e0:
fb:68:71:1d:a6:8f:02:7c:92:54:49:92:48:ee:8e:
7c:ba:37:ad:fe:8d:0d:cd:61:72:59:7c:2e:ba:d5:
bf:1b:cf:5f:15:73:44:c0:9e:ca:44:33:8d:20:56:
3b:cf:76:97:e4:1a:15:93:a1:8b:23:03:48:94:3c:
19:8e:55:b9:1d:97:ae:00:26:f3:1a:f7:34:8c:6d:
60:98:37:e1:b4:e1:c9:49:21:51:58:fe:06:fe:dd:
4d:91:ab:07:0f:d4:7a:29:eb:32:15:3d:c3:11:8c:
c4:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:98:5A:B8:82:C9:DA:12:D4:C9:4B:F9:D2:D7:88:8B:85:82:E1:E2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DC2F465429B011F19314ADE4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.75.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:d6:57:24:44:71:79:64:e0:df:cf:3f:a5:7f:b4:ba:d2:0f:
9c:b2:b7:2d:d3:70:28:8d:cc:d9:00:4e:10:83:74:23:eb:8b:
dd:51:da:c2:3d:b6:23:73:b1:89:99:c4:66:14:7a:2f:05:f8:
ac:6a:f6:de:35:83:24:66:6e:b6:65:ae:c1:77:53:5a:3a:b2:
27:b6:4f:d2:ec:02:66:48:bf:3d:b0:c4:b6:e0:f1:c8:f4:ce:
b4:d0:b2:b5:53:88:b9:a1:0c:b3:48:fc:35:e7:5c:c4:60:2d:
c9:c3:23:dd:c1:9f:16:d4:57:2b:99:5f:d5:20:43:a4:c7:cf:
87:a2:6d:66:e4:58:c9:20:0c:5b:49:ef:9a:47:cd:64:9a:2c:
63:6e:b0:15:bf:46:9e:8f:9c:37:00:be:ae:04:fb:75:0f:c0:
57:c3:83:cc:90:b2:ad:b8:b5:2a:43:7b:5e:2d:26:39:a7:4a:
dd:40:19:65:cb:67:08:0e:1a:19:cb:cf:b9:2b:8e:fd:f9:fa:
ef:0f:8c:5b:dd:ec:63:2f:f8:1c:89:3d:25:7d:03:64:a6:88:
5e:ad:3c:aa:97:26:c5:ee:ae:38:3f:94:4a:aa:00:1b:98:b4:
21:5b:1e:75:42:4a:ae:df:cb:55:ba:00:12:3c:c8:dc:7a:73:
b2:32:74:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 23:54:29 2026 by rpki-client