Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/23E49322FF5011F0A809B1DBDAE4EC9C.roa
File: 23E49322FF5011F0A809B1DBDAE4EC9C.roa (raw, json)
Hash identifier: Ec2UUIg5Ye7vZRK4OuMMTcjD83IQWpKFyHDtKjTeSjs=
Subject key identifier: 9D:F1:BA:ED:F2:6C:8E:C9:9A:EB:00:4D:E3:95:B4:90:A9:5C:14:72
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 019B2A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/23E49322FF5011F0A809B1DBDAE4EC9C.roa
Signing time: Sun 01 Feb 2026 09:26:52 +0000
ROA not before: Sun 01 Feb 2026 09:26:46 +0000
ROA not after: Sun 08 Mar 2026 09:26:46 +0000
asID: 44559
IP address blocks: 45.202.207.0/24 maxlen: 24
45.202.208.0/24 maxlen: 24
45.202.213.0/24 maxlen: 24
45.204.65.0/24 maxlen: 24
45.204.73.0/24 maxlen: 24
45.204.75.0/24 maxlen: 24
45.207.2.0/24 maxlen: 24
45.207.3.0/24 maxlen: 24
45.207.161.0/24 maxlen: 24
45.207.162.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105258 (0x19b2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 1 09:26:46 2026 GMT
Not After : Mar 8 09:26:46 2026 GMT
Subject: CN=697f1c5c-be66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:5c:ab:e8:b9:0d:91:00:34:6c:18:94:f2:b9:
b4:05:e1:27:13:c7:ed:3d:00:95:d9:0a:5f:36:86:
f3:64:8f:d8:a3:92:ad:e1:9c:99:c6:62:72:29:0f:
9b:fc:4c:5b:7f:42:8e:ed:74:5a:28:88:77:1a:eb:
d8:4a:2e:cc:7d:d3:04:16:db:f8:e6:85:b9:92:ed:
e5:9a:3d:84:25:38:bc:be:10:b2:81:5d:fe:7f:76:
9e:7b:cb:5b:a7:93:d5:01:94:df:e4:c3:5e:61:05:
48:24:7f:1a:79:e0:ac:27:bc:e9:49:de:ec:5f:ba:
6b:6e:bf:e6:38:e4:ca:d5:aa:d6:93:a8:17:84:90:
ec:cd:11:94:f8:1c:19:dd:8e:ce:10:d2:14:d4:ed:
ad:1e:a4:bd:58:51:44:c7:7e:ff:b3:8d:9e:5e:ff:
f6:a1:1c:29:34:ce:bf:0d:97:8e:5a:cf:c2:7e:e1:
f7:85:e4:88:41:97:47:cd:85:31:7c:b9:73:79:4f:
db:f1:5c:7b:68:67:33:80:8d:42:12:0d:e0:bb:2d:
69:3c:14:57:73:57:77:05:4e:01:a2:4b:6d:01:6b:
8e:f7:41:6d:81:3b:d5:a3:e3:b1:df:59:31:cf:c7:
26:04:55:92:90:c6:9a:c2:73:40:4c:e6:67:8e:5b:
4f:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:F1:BA:ED:F2:6C:8E:C9:9A:EB:00:4D:E3:95:B4:90:A9:5C:14:72
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/23E49322FF5011F0A809B1DBDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.207.0-45.202.208.255
45.202.213.0/24
45.204.65.0/24
45.204.73.0/24
45.204.75.0/24
45.207.2.0/23
45.207.161.0-45.207.162.255
Signature Algorithm: sha256WithRSAEncryption
97:26:74:23:f8:25:75:e3:d2:0d:b1:e8:5a:cc:d2:b5:7b:c9:
fb:13:ea:54:e5:21:94:a1:40:e5:5a:44:43:42:ca:7a:04:9f:
99:68:77:27:ce:2f:b7:f3:3c:6e:39:f4:c9:7b:d5:5d:93:bf:
7e:09:df:fe:7e:d1:7c:58:65:3f:35:f1:15:1e:76:62:a2:eb:
55:ca:41:b7:8d:c5:7d:2c:3b:5b:79:a8:f3:92:cd:56:d3:c4:
da:97:f0:57:1e:09:05:fe:dd:5a:a4:61:8a:7d:97:a6:18:91:
0c:10:31:b6:d4:bf:48:39:09:2a:c6:fb:5f:ca:13:24:9f:1c:
7e:f6:f8:9a:40:c3:00:3b:fe:56:a5:11:7d:00:70:69:62:9c:
0d:25:b7:21:a2:b9:bb:0d:45:7d:eb:30:c4:06:5f:e4:89:0d:
b3:34:79:4d:d6:db:80:e6:d6:95:9e:c1:98:2b:1b:4e:7e:7c:
cc:36:c6:b3:e8:92:b6:f4:29:29:87:67:64:57:ca:d0:2e:9c:
cf:33:f2:ac:8f:1d:98:c3:4a:00:39:29:34:a9:1d:b7:04:f5:
a8:57:66:61:66:5d:bf:60:fd:54:12:0b:d0:7a:32:4e:80:0f:
b5:e3:1e:f4:62:4d:56:02:77:e9:7f:34:64:5c:bf:14:53:c0:
9b:c5:e8:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:57:12 2026 by rpki-client