Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/627FD604397611F1B63130E5CE1D38B0.roa
File: 627FD604397611F1B63130E5CE1D38B0.roa (raw, json)
Hash identifier: AEd7V9C38rzfoZ+qEQcj7pSn6V6vUDCG/e8tudlhOeQ=
Subject key identifier: 51:4B:6E:05:1E:47:B4:B8:43:85:E8:7B:33:EC:25:EF:47:08:EE:41
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AD0B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/627FD604397611F1B63130E5CE1D38B0.roa
Signing time: Thu 16 Apr 2026 09:26:45 +0000
ROA not before: Thu 16 Apr 2026 09:26:40 +0000
ROA not after: Wed 29 Apr 2026 09:26:40 +0000
asID: 214143
IP address blocks: 45.197.135.0/24 maxlen: 24
45.198.69.0/24 maxlen: 24
45.198.75.0/24 maxlen: 24
45.198.81.0/24 maxlen: 24
45.198.84.0/24 maxlen: 24
45.198.86.0/24 maxlen: 24
45.198.89.0/24 maxlen: 24
45.198.90.0/24 maxlen: 24
45.198.104.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 14:05:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109835 (0x1ad0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 16 09:26:40 2026 GMT
Not After : Apr 29 09:26:40 2026 GMT
Subject: CN=69e0ab55-993a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f9:5f:07:b9:83:32:6c:ed:1e:e7:15:75:2e:
95:b7:1b:25:5d:43:70:89:98:f6:86:f8:5f:38:dd:
91:34:1c:3f:df:66:fe:7e:d3:e1:0e:d6:59:f6:e8:
d6:87:ac:5e:5b:f7:e2:5a:14:13:c9:dc:05:d4:b7:
a0:3d:3d:8d:19:36:1d:54:a8:e8:31:58:b1:6c:44:
13:03:3a:e7:3f:a2:6a:17:5c:72:bc:c5:b8:5a:d0:
94:b2:df:8b:27:52:68:e1:cf:b8:35:fe:3c:c5:09:
b6:bc:a7:7a:ca:f8:ba:1b:05:f5:5e:5b:db:3c:c6:
94:b2:62:bd:7d:1c:09:11:ce:8a:f5:5b:b7:de:4d:
fb:ab:4c:c3:06:0c:be:1f:b7:8e:47:e4:5a:a6:2f:
d1:b2:cd:f7:b3:63:10:c3:c4:c3:30:9d:b0:50:fc:
99:69:03:d2:bc:64:a6:04:6e:6c:ba:0e:25:f0:ab:
48:d4:4a:d5:81:58:c4:14:ac:17:27:b4:f0:2e:1f:
24:6d:5e:9f:d6:5c:f6:75:fd:50:af:51:c2:a3:75:
ec:38:ec:20:a0:ae:e3:da:87:2a:b4:cf:47:da:c3:
4f:31:25:30:a6:85:98:0f:84:17:5a:2e:5e:1a:fe:
39:8e:e6:3a:47:a9:84:c7:cb:79:08:fa:4f:ab:eb:
5e:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:4B:6E:05:1E:47:B4:B8:43:85:E8:7B:33:EC:25:EF:47:08:EE:41
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/627FD604397611F1B63130E5CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.135.0/24
45.198.69.0/24
45.198.75.0/24
45.198.81.0/24
45.198.84.0/24
45.198.86.0/24
45.198.89.0-45.198.90.255
45.198.104.0/24
Signature Algorithm: sha256WithRSAEncryption
96:f1:d3:e9:a9:73:1f:ad:8b:e4:f5:b7:63:f2:49:26:ec:a7:
61:41:0d:3e:58:1a:67:93:c5:4a:99:9f:5d:60:ad:67:49:b5:
28:9a:44:37:26:02:56:56:44:83:29:2f:77:a1:5f:8a:b5:42:
0e:a3:a0:ef:29:11:9d:d4:fd:f0:d7:a8:4a:66:f1:aa:3a:8a:
a2:38:49:97:ed:d1:a5:0a:c6:c7:24:d7:a5:0e:df:9f:a7:73:
1a:fd:e3:fe:d5:cd:e4:9a:26:68:88:04:f1:ed:3b:e4:61:be:
a6:de:9d:a4:a8:0f:19:cd:c3:66:26:d1:61:cc:4c:21:2a:44:
7f:2c:84:29:90:66:bd:81:b1:95:0c:00:a6:24:bc:d1:62:bd:
74:9d:bc:47:3c:04:d2:93:8d:33:89:ba:4c:e9:57:e6:19:65:
97:5a:66:5f:d2:cf:aa:03:be:37:d5:0c:73:11:55:7b:0b:7b:
7c:fe:8e:df:e7:23:fb:8f:e2:45:99:3a:35:04:e4:53:57:a7:
3f:f1:3d:c3:0b:8e:9d:3e:60:8a:ee:fc:e3:43:18:c7:46:33:
8f:d7:56:62:38:ab:40:55:78:a3:ee:c9:8f:57:77:76:c8:bd:
7b:21:b1:a4:13:82:d4:68:6e:5f:2d:c6:fb:dc:b7:40:1e:76:
d4:47:60:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:59:34 2026 by rpki-client