Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F4924F5C30AE11F1815E49D2DAE4EC9C.roa
File: F4924F5C30AE11F1815E49D2DAE4EC9C.roa (raw, json)
Hash identifier: ihCrxU9gKhQZ+AxVKjBdse+EEa+/AcsOJ1IL5zQ/Ul8=
Subject key identifier: F9:AD:27:68:92:3D:09:03:53:B3:79:19:8A:94:CA:38:7A:39:04:FF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A9E9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F4924F5C30AE11F1815E49D2DAE4EC9C.roa
Signing time: Sun 05 Apr 2026 05:19:01 +0000
ROA not before: Sun 05 Apr 2026 05:18:56 +0000
ROA not after: Sun 10 May 2026 05:18:56 +0000
asID: 61112
IP address blocks: 45.202.240.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 14:05:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109033 (0x1a9e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 5 05:18:56 2026 GMT
Not After : May 10 05:18:56 2026 GMT
Subject: CN=69d1f0c5-f808
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:10:82:22:0d:3f:52:d6:5d:fb:30:58:4a:ed:
ea:48:a9:28:bc:8c:cd:21:43:30:f3:41:1d:91:ee:
34:e9:69:60:88:2d:b8:ed:c3:d9:fa:68:18:62:23:
70:4a:78:b2:7b:53:46:4d:6c:a8:3b:67:5a:ca:e8:
ad:e1:98:6a:c2:07:7e:e9:a2:c1:a3:20:c8:d8:a9:
a5:6d:92:61:fe:b5:99:01:92:42:a1:a0:83:5d:dd:
23:b8:39:56:18:8f:25:24:03:4c:37:e0:18:20:61:
aa:95:8f:aa:66:ba:74:66:64:a0:91:65:01:7b:b3:
a7:66:f0:0c:aa:fc:58:8b:98:a4:88:80:f6:21:d0:
1e:1c:c0:ba:e6:fe:f5:b8:e8:46:24:b6:86:cc:81:
4b:7c:5b:3c:1a:72:bf:5c:03:f5:3c:8f:53:be:72:
ad:a8:4d:90:ee:ad:8d:1b:69:5f:b2:02:1c:58:d4:
38:50:03:f1:97:81:fa:26:60:c5:d3:bd:66:f4:b2:
23:aa:59:a3:1e:a4:31:58:51:ef:fe:61:b5:08:44:
0c:ce:41:94:16:7c:e1:e9:c6:af:3c:cc:e6:19:be:
55:0b:07:5e:d2:fe:e4:70:2c:3e:ff:75:30:a3:84:
ae:5c:4c:88:04:2c:0f:dd:16:36:78:8d:81:3b:0a:
f9:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:AD:27:68:92:3D:09:03:53:B3:79:19:8A:94:CA:38:7A:39:04:FF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F4924F5C30AE11F1815E49D2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.240.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:f2:35:16:43:aa:51:00:6d:10:60:87:fc:ad:4e:89:1e:e7:
a5:5b:30:b1:d0:d8:8c:87:03:2e:db:57:3d:92:23:73:b4:02:
fa:08:7e:e9:b4:e6:aa:34:bd:15:22:77:72:2a:d7:7a:fc:54:
d0:4a:ac:f0:cf:2f:e6:fa:39:90:e9:74:df:83:f9:6e:23:89:
3e:7b:75:38:5f:73:0c:df:9b:46:fa:47:32:96:12:f1:59:7b:
77:27:24:20:59:cf:44:04:60:00:61:fb:fa:13:e6:18:6f:85:
ff:2e:c2:3a:55:6c:0c:c2:db:a9:bd:ce:65:3b:92:f0:e7:2b:
1b:31:65:a5:94:d9:a1:c5:49:4b:a7:1f:94:a1:51:56:34:e0:
60:78:78:60:2c:61:34:ec:3a:30:00:57:ae:1c:53:34:c6:5d:
3e:0e:a7:10:6d:92:99:23:1d:58:29:e2:76:24:03:44:c3:54:
a6:c3:eb:95:e2:d3:8f:40:01:f6:ec:6c:55:c6:c8:94:c9:96:
c0:6a:e8:75:6b:69:69:30:71:fb:49:83:42:75:7f:54:34:1b:
6f:73:d4:00:9e:25:54:71:93:af:b2:db:b6:25:06:d5:5d:40:
e9:9c:ff:f3:42:13:1a:67:ff:7c:63:6d:2e:7d:87:0e:90:3b:
07:ca:47:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 23:55:15 2026 by rpki-client