Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3BA4E76AFF4F11F0BFDC66D7DAE4EC9C.roa
File: 3BA4E76AFF4F11F0BFDC66D7DAE4EC9C.roa (raw, json)
Hash identifier: 7ebf9hDSuZmynqZ7E+d446PNp4NVDgj6ZPwrS2nwxbY=
Subject key identifier: 18:93:39:97:42:7F:9A:C9:B8:66:36:20:18:D4:20:0C:99:FD:B0:19
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 019B28
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3BA4E76AFF4F11F0BFDC66D7DAE4EC9C.roa
Signing time: Sun 01 Feb 2026 09:20:22 +0000
ROA not before: Sun 01 Feb 2026 09:20:17 +0000
ROA not after: Sun 08 Mar 2026 09:20:17 +0000
asID: 44559
IP address blocks: 45.196.106.0/24 maxlen: 24
45.196.107.0/24 maxlen: 24
45.202.192.0/24 maxlen: 24
45.202.193.0/24 maxlen: 24
45.202.198.0/24 maxlen: 24
45.202.200.0/24 maxlen: 24
45.202.201.0/24 maxlen: 24
45.202.202.0/24 maxlen: 24
45.202.205.0/24 maxlen: 24
45.202.206.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105256 (0x19b28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 1 09:20:17 2026 GMT
Not After : Mar 8 09:20:17 2026 GMT
Subject: CN=697f1ad6-0d4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:27:37:94:0c:26:9b:57:8b:14:25:a6:53:26:
0c:e6:09:8a:b8:8d:42:b2:09:50:3e:c5:4b:fe:11:
5e:f6:2c:be:f8:64:4e:67:b8:af:21:06:47:22:c9:
00:46:34:2e:fe:22:4c:a0:9e:19:e4:6a:d1:92:59:
2d:7a:67:36:34:25:af:04:70:2d:8e:c8:e7:4b:fa:
d6:d9:f5:79:dc:c6:df:1e:a9:8e:ea:29:c4:1b:cd:
57:9d:b2:44:03:39:a6:05:78:23:5c:5d:47:58:7f:
e1:e8:76:65:cc:03:8a:ce:3d:2f:c6:a2:7b:3c:6c:
30:bb:73:d2:c6:38:85:b4:f6:2a:da:88:56:03:57:
a9:9c:b0:ed:24:03:75:2a:30:f2:8a:1f:34:da:b2:
61:52:17:bc:d8:84:24:94:95:d6:f0:b2:5d:42:a2:
45:49:09:33:c9:81:0f:bf:ea:fb:0f:b9:6a:95:62:
6f:1b:c3:ba:45:ab:d2:eb:3c:71:35:93:94:17:dc:
5d:89:86:c4:15:fc:14:d2:74:ac:1a:e8:83:e6:3b:
e6:9b:86:ae:a7:e8:df:d2:6d:46:56:9d:d2:2b:12:
49:df:5a:9f:3f:3f:90:cf:59:18:b6:3e:7e:b3:3c:
32:9e:e9:19:62:b5:0c:4b:e1:45:89:3a:b1:5c:16:
8d:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:93:39:97:42:7F:9A:C9:B8:66:36:20:18:D4:20:0C:99:FD:B0:19
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3BA4E76AFF4F11F0BFDC66D7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.106.0/23
45.202.192.0/23
45.202.198.0/24
45.202.200.0-45.202.202.255
45.202.205.0-45.202.206.255
Signature Algorithm: sha256WithRSAEncryption
42:36:11:c2:9e:fd:42:dc:0f:d5:06:f8:7f:41:aa:93:98:88:
a7:bb:05:b7:d6:4c:31:3a:c9:5c:d6:de:81:ae:da:7f:5f:1f:
53:20:8d:15:ce:ca:14:8d:62:8d:99:f4:60:5e:e6:c6:c4:6a:
4e:1b:62:28:85:41:36:d6:b8:a4:cf:29:91:92:7e:4f:41:87:
2a:f5:6c:36:c5:32:24:b2:9e:6a:3f:e5:8b:fd:fa:36:aa:f3:
a9:8c:8f:e5:65:68:66:52:0b:5c:b7:6e:fb:80:fa:d3:f7:ab:
ca:7f:bd:ce:6f:7f:9a:0f:52:40:bc:5c:69:7a:5b:25:64:f4:
46:6c:40:e8:dd:ae:5a:ea:9b:fe:89:08:f3:c0:0d:18:f8:36:
54:ad:a3:bb:43:e3:96:2e:d5:16:ed:ce:3c:3d:2c:67:e8:03:
e2:08:69:9e:90:14:0a:c3:c9:ff:c8:1e:32:3c:99:09:00:e0:
ab:f8:db:70:a1:2d:88:45:83:3c:19:a1:61:3d:63:42:da:ee:
1d:d1:a6:6a:0c:8f:d9:63:06:7d:b2:7e:62:8c:8a:42:b6:92:
3a:09:63:e1:74:b9:27:0b:e1:8f:b6:c1:be:6a:2e:1f:a4:9e:
d6:0b:39:4c:81:c6:1a:8b:3a:3c:b0:4d:67:6f:61:3f:ce:a9:
33:6f:21:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 20:07:12 2026 by rpki-client