Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1E9C0416FDA911F0B26C0CB4DAE4EC9C.roa
File: 1E9C0416FDA911F0B26C0CB4DAE4EC9C.roa (raw, json)
Hash identifier: tnDWbNNqRE2ma0GeQDF/rDI5Tk52FkOth/+ulZg7M7g=
Subject key identifier: 04:E0:98:99:84:80:72:97:95:03:09:01:10:8C:49:6F:F9:1F:9C:55
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 019AB5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1E9C0416FDA911F0B26C0CB4DAE4EC9C.roa
Signing time: Fri 30 Jan 2026 06:58:46 +0000
ROA not before: Fri 30 Jan 2026 06:58:40 +0000
ROA not after: Sat 07 Mar 2026 06:58:40 +0000
asID: 17497
IP address blocks: 45.202.114.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105141 (0x19ab5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jan 30 06:58:40 2026 GMT
Not After : Mar 7 06:58:40 2026 GMT
Subject: CN=697c56a6-1ec4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:45:9f:fb:be:08:cd:6d:2e:1d:ce:e4:ed:2a:
60:86:07:9e:ad:a7:9c:2e:47:05:cf:81:95:db:88:
df:2a:52:6f:62:76:ba:ac:37:7c:1d:2a:bb:a7:cf:
66:dc:43:de:d9:2c:cb:2c:20:45:9b:88:97:54:98:
2b:91:70:2b:5b:e4:c4:59:ee:ae:03:4e:0f:cc:07:
75:06:b8:c3:f0:93:a6:c4:d9:83:f9:47:50:f9:a3:
cf:59:9b:b7:7a:b3:3f:c9:7c:9d:85:1c:6d:3b:a3:
9b:3a:c0:e9:00:4d:ad:14:82:8f:c7:31:c7:90:02:
5a:ac:5e:8b:5e:eb:f5:c9:b8:97:9f:9c:0e:95:a0:
c4:8c:21:c4:d0:fe:6f:f6:b2:6d:1f:9b:f4:a6:33:
7b:61:ea:08:b1:a9:cc:05:23:4b:f0:1b:61:ec:38:
38:c8:3e:8c:7f:eb:57:c5:0d:1c:9e:13:88:9d:fd:
c7:66:ad:d1:4b:34:32:71:86:b1:e8:de:4f:f3:82:
db:d7:df:b0:31:f6:5b:64:80:f0:30:19:ce:36:d3:
3e:f5:0e:3a:a8:7a:00:24:84:72:8a:bf:9b:ac:36:
41:54:57:10:e3:8d:76:f7:cb:52:29:63:4c:2a:70:
f5:52:56:0d:18:9e:34:7f:29:1e:37:f7:83:af:a4:
1e:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:E0:98:99:84:80:72:97:95:03:09:01:10:8C:49:6F:F9:1F:9C:55
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1E9C0416FDA911F0B26C0CB4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.114.0/24
Signature Algorithm: sha256WithRSAEncryption
42:e6:c4:e0:fb:11:77:fb:0e:f6:19:67:6e:e6:70:ae:47:8c:
d9:32:f5:85:0f:03:2f:0f:d3:bf:22:43:d8:f5:0d:f0:03:e4:
9a:1d:17:c0:a4:21:4f:fc:1c:54:82:cc:63:8d:0b:a5:01:d0:
56:eb:6c:e4:e9:49:bc:5d:2b:1e:52:27:d8:f8:ce:19:21:07:
32:51:e5:5d:c4:e8:b3:c5:66:db:f9:ae:ab:97:ee:c0:fb:1c:
74:47:66:db:e9:71:e1:0c:d8:60:fb:75:71:c2:a1:17:d2:d7:
2e:c5:f5:48:df:25:40:2e:43:8b:12:88:a4:9a:ea:9a:16:40:
7f:d4:e3:87:d3:98:54:f3:11:db:7b:88:93:97:92:5b:bd:53:
f2:92:48:7b:39:75:29:d7:66:72:a1:f2:d3:17:c7:82:37:0b:
eb:02:20:59:79:7a:78:51:00:73:01:26:eb:c4:1a:cd:e2:f7:
74:33:0b:fd:04:f9:03:8c:86:bc:3b:e6:fb:09:30:88:d2:cc:
c0:63:25:7b:f4:83:e7:19:98:39:8e:2b:0e:8a:9f:8e:b6:d3:
81:d0:aa:38:bc:a3:3b:71:a2:4d:bf:90:35:18:ae:9c:06:c8:
8a:c2:6a:b1:aa:c1:39:1a:64:04:0c:12:9e:ee:77:a4:21:8f:
2d:ff:36:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 14:54:28 2026 by rpki-client