Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/656E313C131311F19EF4C7C7DAE4EC9C.roa
File: 656E313C131311F19EF4C7C7DAE4EC9C.roa (raw, json)
Hash identifier: rlO0zFPUA4rXTolQWoJpm44xFqO6A+CTh2+w4GQXGFk=
Subject key identifier: 43:76:8A:24:59:B3:D6:DB:CF:49:37:FC:08:67:0F:4D:35:12:61:E6
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A0C1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/656E313C131311F19EF4C7C7DAE4EC9C.roa
Signing time: Thu 26 Feb 2026 13:02:25 +0000
ROA not before: Thu 26 Feb 2026 13:02:20 +0000
ROA not after: Thu 09 Apr 2026 13:02:20 +0000
asID: 395793
IP address blocks: 45.194.12.0/23 maxlen: 24
45.196.64.0/22 maxlen: 24
45.196.68.0/24 maxlen: 24
45.197.6.0/23 maxlen: 24
45.201.21.0/24 maxlen: 24
45.204.147.0/24 maxlen: 24
45.204.148.0/24 maxlen: 24
45.204.149.0/24 maxlen: 24
45.204.150.0/24 maxlen: 24
45.204.151.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106689 (0x1a0c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 26 13:02:20 2026 GMT
Not After : Apr 9 13:02:20 2026 GMT
Subject: CN=69a04461-2b50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:66:78:df:e2:70:2f:12:4e:f5:64:b4:76:65:
c8:3d:7b:84:57:4b:14:3c:1b:19:53:5d:38:98:d8:
e9:c8:a9:bb:d0:92:bb:18:a2:c9:ef:37:f0:a0:48:
7e:a3:6c:98:ad:c2:ec:91:3c:40:84:ea:d9:44:c4:
d8:aa:5b:9f:ca:67:59:fd:9c:8c:dd:cf:70:3f:dd:
c9:40:15:fe:25:24:03:76:94:0f:f3:f4:54:5b:8e:
2a:0b:92:c6:14:cd:f0:8c:46:5e:70:0d:33:cd:70:
21:cb:5b:d6:f5:a1:af:b4:05:f0:7a:6d:42:b9:97:
3c:17:d0:3f:e8:93:7f:e6:aa:69:4b:fd:8d:be:ae:
cd:2e:6d:2c:29:56:13:57:ea:ef:a1:21:84:14:1e:
ba:bc:cf:ff:9d:d0:ca:68:55:d0:06:a1:a1:3e:24:
bb:af:d8:f5:28:6f:7e:44:a2:d1:18:26:18:4b:dd:
a9:5c:25:ca:a6:89:ed:f8:7c:f0:3a:75:6f:7d:d8:
0f:e2:2f:e8:48:1f:5a:43:b3:6c:f4:c4:81:1c:cb:
7f:3a:0d:bf:f9:20:eb:14:8b:56:fd:1e:42:48:eb:
d1:26:46:b9:07:17:b5:97:85:fd:a7:0e:9b:62:d2:
88:7b:0e:e0:8b:62:1e:f4:fc:4c:e2:06:bd:2a:86:
6c:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:76:8A:24:59:B3:D6:DB:CF:49:37:FC:08:67:0F:4D:35:12:61:E6
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/656E313C131311F19EF4C7C7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.12.0/23
45.196.64.0-45.196.68.255
45.197.6.0/23
45.201.21.0/24
45.204.147.0-45.204.151.255
Signature Algorithm: sha256WithRSAEncryption
45:8e:82:a2:5e:86:4b:cd:b1:de:5a:a9:df:df:5e:a5:9b:62:
11:bc:44:2b:f6:ed:f3:fa:0f:6b:53:7c:a7:43:0e:12:ab:ae:
bb:a7:4a:56:16:ca:9f:71:b6:8d:fd:cb:59:a5:c0:27:be:1d:
01:48:51:55:77:33:b4:2c:f5:59:e2:47:7a:e1:23:50:f4:da:
ee:4f:11:de:03:83:b4:14:7a:51:0c:0a:a7:d9:1b:2d:9a:dc:
02:7c:96:3f:a8:f2:fa:ea:74:c1:b7:5e:2e:8a:bf:4f:29:5e:
36:c6:07:31:3d:51:2a:6d:97:0c:c8:db:84:96:3d:b0:0f:af:
88:9e:47:5a:5c:85:8e:1a:66:5a:26:54:0e:71:ab:00:6c:57:
f7:0f:24:0b:64:34:d6:af:f3:6d:6b:3a:6c:55:60:70:c1:54:
0a:8e:42:d1:a3:8e:2f:60:76:29:ab:c3:35:a6:ec:34:45:33:
67:e9:79:3e:27:02:2b:8b:14:4c:21:2b:cc:06:22:47:f3:c0:
eb:2f:85:5a:5d:b3:bb:e1:c6:42:bc:d5:37:02:dd:e5:a4:a3:
04:fc:df:95:9c:ac:8b:35:c5:3b:33:7f:f5:5f:14:23:de:45:
57:45:ce:51:cf:54:d6:ed:44:3a:06:ad:7e:2f:e3:3d:cf:a1:
02:6c:b3:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:19:55 2026 by rpki-client