Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/496B8F5007DF11F1BC76FD78DAE4EC9C.roa
File: 496B8F5007DF11F1BC76FD78DAE4EC9C.roa (raw, json)
Hash identifier: TroQYWcm/Dx7BI5Hy4NJpFUaddmWqQZnJ8yHsLxWQFM=
Subject key identifier: 20:3D:49:3C:F5:68:86:B3:25:A7:CD:AC:B9:B7:73:9A:C3:2C:25:92
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 019D1A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/496B8F5007DF11F1BC76FD78DAE4EC9C.roa
Signing time: Thu 12 Feb 2026 06:51:43 +0000
ROA not before: Thu 12 Feb 2026 06:51:35 +0000
ROA not after: Fri 14 Aug 2026 06:51:35 +0000
asID: 63199
IP address blocks: 45.201.232.0/24 maxlen: 24
45.201.233.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105754 (0x19d1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 12 06:51:35 2026 GMT
Not After : Aug 14 06:51:35 2026 GMT
Subject: CN=698d787f-66cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c7:3f:86:06:33:86:df:26:34:f9:b6:f4:85:
09:9d:2c:02:d5:db:32:61:81:44:81:c4:04:15:5a:
6f:bf:53:11:57:2d:99:99:25:f0:8e:36:e6:43:81:
80:ea:a5:b0:91:92:80:84:fc:0f:32:c6:26:24:3d:
f6:87:ab:b7:8b:17:47:b3:75:12:07:d6:f7:8c:93:
ee:16:7a:53:84:c1:09:b8:9b:49:5b:4c:b0:e4:2e:
1e:50:f4:74:0f:c0:4b:34:a0:92:20:a4:4f:ef:35:
09:c3:25:06:15:67:b7:3c:b4:34:01:1a:6a:e3:23:
a2:db:94:fc:21:35:1d:8e:4b:de:a3:a1:b4:b9:9b:
1c:f2:15:eb:df:63:e7:7e:ac:36:36:d2:bb:c8:1e:
5c:72:8a:b9:4c:07:cc:ed:ec:8a:1e:2d:96:b9:2a:
55:28:e4:5d:9c:06:07:4e:6c:68:c6:bd:ad:9f:77:
d5:6b:cf:17:af:8f:80:e1:de:f3:5a:b6:dc:68:c6:
40:23:1c:a9:79:28:c8:13:52:c2:41:87:d7:fd:96:
16:d7:ea:a6:97:d2:78:e8:8f:c5:93:83:73:a1:47:
e9:39:d1:f7:e5:80:2c:c6:48:8b:e3:bf:0f:70:06:
a0:a8:e3:9b:bf:24:bb:71:08:2c:9c:65:81:7f:a9:
c0:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:3D:49:3C:F5:68:86:B3:25:A7:CD:AC:B9:B7:73:9A:C3:2C:25:92
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/496B8F5007DF11F1BC76FD78DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.201.232.0/23
Signature Algorithm: sha256WithRSAEncryption
6f:6c:9f:fe:c6:70:8c:1b:cc:7d:99:89:4b:00:bd:aa:03:3b:
94:02:ba:ca:e1:5c:03:0a:c5:bd:f7:e7:ff:03:58:8d:eb:5d:
0a:a3:17:06:97:f7:9f:c1:c8:65:2b:56:98:c7:6b:b9:59:da:
65:2b:56:6e:fb:31:f8:45:b1:96:ff:4c:30:76:56:ea:88:8b:
fe:7d:db:31:4f:d3:3b:44:d7:0e:58:4e:ad:8c:7b:88:cc:34:
a5:bd:0c:13:8c:29:c8:ee:a4:91:c6:63:8d:11:55:1a:84:bd:
a4:1c:2c:f3:84:31:49:7c:8e:10:06:95:d9:7d:51:d1:d8:d6:
cf:a3:b8:27:06:6b:7b:39:6c:02:b7:14:f9:ca:96:7f:c2:10:
44:18:34:c7:65:f3:f6:0d:17:f5:c3:c7:d0:1c:bf:52:80:11:
25:b0:c9:e4:16:07:d6:2e:db:34:23:cc:a5:48:2e:1f:41:52:
ab:4f:ed:b5:16:ac:32:02:08:35:2d:af:99:59:ff:19:69:23:
d9:43:5a:9e:37:a6:f6:49:2c:d9:d1:99:e1:b7:0b:3d:9a:de:
d4:6e:43:1f:c1:df:dd:07:d3:c4:6a:c6:98:7b:f4:5d:20:17:
f5:f5:58:1a:53:5c:f2:6f:00:1a:6d:87:0d:b8:d7:56:1d:78:
2f:ca:ed:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 20:07:02 2026 by rpki-client