Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/583CC6CE12FD11F1AB4094C3DAE4EC9C.roa
File: 583CC6CE12FD11F1AB4094C3DAE4EC9C.roa (raw, json)
Hash identifier: K0gjv3TEVcCfpcuQ5HApB0QWsdJu+mhR2WAr4ObGoLY=
Subject key identifier: 32:B5:7F:42:DB:C7:74:C5:56:4A:AB:38:8A:99:B8:33:15:3B:A1:8E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A0A9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/583CC6CE12FD11F1AB4094C3DAE4EC9C.roa
Signing time: Thu 26 Feb 2026 10:24:34 +0000
ROA not before: Thu 26 Feb 2026 10:24:29 +0000
ROA not after: Mon 30 Mar 2026 10:24:29 +0000
asID: 401783
IP address blocks: 45.197.3.0/24 maxlen: 24
45.197.8.0/24 maxlen: 24
45.197.10.0/24 maxlen: 24
45.197.11.0/24 maxlen: 24
45.198.5.0/24 maxlen: 24
45.201.35.0/24 maxlen: 24
45.201.41.0/24 maxlen: 24
45.201.42.0/24 maxlen: 24
45.201.48.0/24 maxlen: 24
45.201.61.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106665 (0x1a0a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 26 10:24:29 2026 GMT
Not After : Mar 30 10:24:29 2026 GMT
Subject: CN=69a01f62-3622
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:5e:9f:ca:82:f8:65:b2:22:f0:ad:cc:03:9c:
70:8b:31:d7:f9:38:98:04:62:d9:aa:21:99:82:d2:
84:3d:86:7b:9c:d6:0c:a7:5b:ef:16:de:fb:8b:91:
07:7f:b2:9d:bc:47:c0:c5:50:ec:d6:8c:2b:10:3c:
f7:fe:af:2c:e5:f1:98:e2:8b:10:f6:54:a2:14:37:
45:be:d9:64:a8:b1:6e:8b:63:6c:76:61:d4:4c:73:
ae:56:13:a6:6f:a5:19:ae:21:a1:45:e5:52:2a:39:
7e:cc:fe:61:2f:df:45:9c:13:4c:e7:8e:f2:4c:22:
ec:57:2e:18:7e:ab:47:69:7c:87:54:a7:a6:85:aa:
13:58:12:78:d3:2e:fd:d3:32:f1:58:9b:a5:82:80:
a4:89:4c:4c:9d:bf:0c:7b:84:12:ba:d6:0d:b6:82:
38:b5:53:91:39:58:ec:29:8d:95:ba:c1:f5:e3:6f:
c0:ec:f7:8d:6c:1a:b3:8d:cf:fc:19:27:7e:c8:bf:
0b:81:c9:c7:76:9d:b2:60:4a:b2:77:89:d7:0c:d9:
02:09:14:f0:c8:9e:84:9d:d9:b4:f6:71:9f:e1:f5:
fb:29:d7:13:87:b0:28:af:ce:02:3b:dc:86:22:d4:
ef:d6:bf:5e:cb:db:74:cb:33:37:18:46:f1:ae:bb:
2e:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:B5:7F:42:DB:C7:74:C5:56:4A:AB:38:8A:99:B8:33:15:3B:A1:8E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/583CC6CE12FD11F1AB4094C3DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.3.0/24
45.197.8.0/24
45.197.10.0/23
45.198.5.0/24
45.201.35.0/24
45.201.41.0-45.201.42.255
45.201.48.0/24
45.201.61.0/24
Signature Algorithm: sha256WithRSAEncryption
90:45:5f:73:9c:f9:97:6e:f6:ee:92:82:99:9e:b3:3f:8e:db:
03:da:1c:65:13:26:b9:7a:12:af:a5:e9:75:0a:bb:8d:71:95:
fd:d8:af:88:92:1d:b8:9b:17:78:a7:a3:2d:97:68:04:da:1f:
a2:5f:df:a0:bf:96:c6:f1:1f:f6:08:29:eb:0c:b6:f8:2a:da:
fe:5b:6f:a9:4f:a9:82:62:df:f6:6f:23:56:1e:02:d8:3c:26:
f6:07:29:fb:56:be:83:43:79:37:32:4e:c7:e8:33:b0:c4:aa:
f9:61:8b:b2:da:44:e0:6a:83:c9:d8:4e:65:8d:03:b2:73:02:
d3:cb:3a:9f:46:35:27:71:9c:a9:61:1b:86:20:44:b1:64:36:
2e:89:36:fc:7e:79:1e:07:7d:39:b3:66:44:e4:e4:c7:26:20:
29:b8:2c:2d:5a:9d:2a:20:6c:2e:8a:db:df:86:4a:dd:89:4c:
fe:60:fa:68:f6:3e:e9:39:f1:ae:d3:8a:93:39:8a:22:0c:74:
f2:4c:27:df:0c:1d:55:df:e1:2d:4f:36:e4:1c:30:26:4e:75:
8f:fd:9f:53:61:3f:22:42:cb:ce:69:64:43:90:19:9b:1c:db:
0e:e5:be:46:2e:8c:1c:d7:ec:5d:d2:69:b0:c2:44:7d:a1:e4:
df:9b:c4:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 20:07:24 2026 by rpki-client