Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/85AD66B6131811F19CB577E6DAE4EC9C.roa
File: 85AD66B6131811F19CB577E6DAE4EC9C.roa (raw, json)
Hash identifier: BhG2jk0W1g5RW0zcx3MnXsVgXz0Q8vFTQZx3/tf+M+A=
Subject key identifier: 8B:C3:C5:9E:19:2E:5F:05:03:5F:FD:D6:F5:6C:86:B3:03:28:3E:18
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A0CD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/85AD66B6131811F19CB577E6DAE4EC9C.roa
Signing time: Thu 26 Feb 2026 13:39:07 +0000
ROA not before: Thu 26 Feb 2026 13:39:02 +0000
ROA not after: Thu 09 Apr 2026 13:39:02 +0000
asID: 174
IP address blocks: 45.195.244.0/23 maxlen: 24
45.197.6.0/23 maxlen: 24
45.202.111.0/24 maxlen: 24
45.202.112.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106701 (0x1a0cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 26 13:39:02 2026 GMT
Not After : Apr 9 13:39:02 2026 GMT
Subject: CN=69a04cfb-edaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:99:bf:20:bb:05:53:cf:a0:38:d2:aa:5d:37:
3b:eb:47:bf:14:d3:3c:fb:81:a4:d6:40:ba:11:36:
c2:65:13:be:24:32:6d:59:a1:08:a9:de:0f:eb:3f:
70:cb:1f:64:94:6f:8f:8a:13:cf:14:98:30:00:5b:
d9:da:93:b0:5a:c8:5f:4f:5f:8c:d5:1e:8d:8c:31:
7a:2c:34:69:bb:3f:d3:84:21:54:db:c0:ae:0d:13:
af:20:bb:91:2e:d5:82:26:ff:1d:aa:d6:fd:e3:36:
4d:00:77:0e:e0:02:fa:d8:c3:53:ab:08:13:6a:0c:
43:77:a7:3c:dc:41:76:7d:f4:7f:4d:bb:36:85:04:
75:21:31:d1:27:3f:29:d2:2f:d2:c0:f9:31:ab:97:
fe:e3:37:54:25:3d:9a:6a:79:d1:8d:d0:51:70:44:
e4:b8:30:55:f9:80:ce:1a:74:66:a7:9c:47:88:d4:
60:98:d6:43:e6:c1:5e:6d:b4:e2:49:09:c5:7e:a4:
8a:38:74:ad:b6:4a:de:3f:d7:94:37:4e:30:8f:0f:
b3:f6:eb:72:1e:cb:78:1f:f4:23:5c:a5:c1:4a:bb:
32:9a:d3:fe:81:73:97:d9:0a:64:bd:b7:21:a1:c2:
ff:60:b3:b5:bd:87:e4:b4:91:69:8e:34:3e:05:43:
f9:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:C3:C5:9E:19:2E:5F:05:03:5F:FD:D6:F5:6C:86:B3:03:28:3E:18
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/85AD66B6131811F19CB577E6DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.244.0/23
45.197.6.0/23
45.202.111.0-45.202.112.255
Signature Algorithm: sha256WithRSAEncryption
9a:68:a9:0a:bd:4e:7d:9d:16:3b:2c:79:10:99:a6:81:47:97:
bd:d7:54:29:46:3f:22:8c:cf:a8:c0:82:0c:63:9b:9e:f5:9b:
da:07:9d:56:69:87:6d:08:ce:0a:4c:55:cd:dc:3a:81:fb:17:
5d:42:10:eb:a7:5c:f0:4f:7d:e3:b8:43:96:f2:8a:d8:18:6f:
19:09:a1:58:c1:bc:97:ce:d3:24:6f:6c:78:9d:3d:ac:a4:36:
07:a5:b2:39:07:81:c8:f5:88:2b:46:8f:c9:f7:c8:3c:88:d3:
ff:b2:f1:03:64:ca:e7:ae:07:2f:21:a9:5b:9a:81:75:4b:d5:
93:25:6a:84:ff:c1:d4:ca:a8:c7:ea:6c:bf:f9:d0:d7:b2:ce:
42:86:d0:59:54:97:b2:5e:58:8f:ab:7e:78:49:a0:72:d7:a1:
bd:1f:bc:83:b1:c5:ce:d2:e0:d4:aa:16:43:a2:79:05:eb:73:
83:c2:3b:82:ee:13:12:04:69:14:34:c1:28:a4:57:fa:50:75:
c7:09:6b:ed:ba:ea:32:cf:13:97:1a:99:79:08:cb:3e:4d:00:
f3:5a:0c:f0:f1:61:7e:9a:24:f3:a2:f8:3d:5b:1f:c8:01:e5:
32:25:22:91:d3:bf:aa:d8:29:02:9c:0f:b7:de:7a:61:1b:a4:
df:95:46:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 20:08:43 2026 by rpki-client