Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B431884131B11F1B749927ADAE4EC9C.roa
File: 8B431884131B11F1B749927ADAE4EC9C.roa (raw, json)
Hash identifier: 1WIASQP/4+CNF2KZJ38A2bZOPDPeiLtpZTNOQHvre+I=
Subject key identifier: 65:35:23:0D:74:35:CE:57:B8:30:C7:A2:8D:67:54:D2:6F:C7:FA:3D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A0CF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B431884131B11F1B749927ADAE4EC9C.roa
Signing time: Thu 26 Feb 2026 14:00:45 +0000
ROA not before: Thu 26 Feb 2026 14:00:39 +0000
ROA not after: Sat 04 Apr 2026 14:00:39 +0000
asID: 204741
IP address blocks: 45.194.65.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106703 (0x1a0cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 26 14:00:39 2026 GMT
Not After : Apr 4 14:00:39 2026 GMT
Subject: CN=69a0520d-d17e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:55:a8:de:34:cd:95:c5:b2:46:c2:80:bb:d4:
25:43:4d:a5:92:f1:a0:64:58:37:cf:ec:f9:a9:99:
ad:8b:45:a7:9e:7a:22:52:50:1b:cf:88:a1:e9:3d:
c1:7b:d7:a7:27:38:97:dc:dd:b2:5f:32:3b:fc:3b:
34:58:ec:0f:38:50:c8:e6:8e:37:7a:e3:23:1b:37:
03:fb:43:02:13:d9:3e:d8:26:70:96:99:5e:1e:67:
ac:fb:02:eb:74:a9:fc:c4:14:9f:dd:f0:c4:a0:8b:
d9:38:88:ee:9b:09:3a:de:5d:46:e2:97:31:79:cf:
8e:d2:ac:78:70:3c:2c:56:5c:36:09:7e:b1:5a:04:
2b:3f:97:cc:8e:61:67:22:cb:81:c6:65:dc:1e:85:
cb:37:6e:04:ef:85:f7:8a:bd:45:1b:b0:0b:2b:ef:
f9:62:51:10:58:53:31:76:a2:92:9f:da:92:0d:00:
00:a7:bd:ce:c5:5a:f7:c6:06:3d:4a:f7:b2:a6:d6:
74:4a:33:1a:f9:b9:a2:f8:8c:17:cd:ee:32:0f:42:
0e:43:52:cd:17:33:a2:28:74:04:c8:4a:06:58:8d:
10:ce:33:bc:d4:dc:b0:97:ca:f1:0e:e2:51:3b:4c:
15:35:8e:33:4b:44:10:6e:d6:86:de:fd:e9:17:c2:
3e:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:35:23:0D:74:35:CE:57:B8:30:C7:A2:8D:67:54:D2:6F:C7:FA:3D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8B431884131B11F1B749927ADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.65.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:c0:32:35:bc:c8:98:51:ad:a7:b9:53:bf:09:a8:53:ba:8a:
8c:fe:4f:db:d1:07:a8:31:5f:f9:88:7b:52:a9:c0:e7:67:d5:
47:06:a0:93:ff:30:e4:de:9d:ca:4c:93:e5:db:54:60:b2:41:
ef:49:62:35:fa:db:83:70:85:6c:4f:03:4a:c2:bd:1d:1a:b7:
01:64:ca:80:57:a1:e2:a4:9f:f1:9a:b0:0d:de:34:97:42:6e:
49:4e:35:f3:2d:a1:e7:4f:28:17:a9:32:ae:9a:aa:a7:6d:1f:
a7:10:a1:39:ae:b4:b2:3a:6d:cf:01:85:0d:58:40:26:8e:e1:
eb:72:6c:01:9e:3c:4f:ca:d9:d0:80:e7:7a:38:99:f1:47:36:
ee:69:23:8a:a3:03:15:08:99:e6:5f:e1:17:5f:22:ba:58:28:
6e:d9:ee:04:b2:51:8a:7e:d4:f8:a7:09:dc:45:d4:c8:b3:af:
23:c1:13:c7:d2:98:1e:37:59:ce:2a:0d:8e:70:3a:6c:a0:a1:
fb:67:8e:cb:27:4c:e8:48:2d:58:08:f7:cc:e5:e5:a5:98:c4:
33:95:f6:44:59:78:f0:ef:27:b5:4b:5b:6a:33:6d:de:20:22:
cd:fd:b4:56:3e:c2:ad:24:7a:ce:b7:81:56:ad:17:9f:c9:31:
78:08:ae:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:18:18 2026 by rpki-client