Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/957A486C2F2D11F1839D42A5DAE4EC9C.roa
File: 957A486C2F2D11F1839D42A5DAE4EC9C.roa (raw, json)
Hash identifier: N2WoUHb+Qqv4hJkEtU4pvJYhz3KusdEcWhLJjrzSMi0=
Subject key identifier: 78:2D:0E:3F:BD:7F:ED:0D:A1:4B:D1:75:76:ED:75:25:38:14:C8:6E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A98E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/957A486C2F2D11F1839D42A5DAE4EC9C.roa
Signing time: Fri 03 Apr 2026 07:20:26 +0000
ROA not before: Fri 03 Apr 2026 07:20:21 +0000
ROA not after: Sun 10 May 2026 07:20:21 +0000
asID: 14315
IP address blocks: 45.196.70.0/23 maxlen: 24
45.196.88.0/23 maxlen: 24
45.196.110.0/23 maxlen: 24
45.196.114.0/23 maxlen: 24
45.204.74.0/24 maxlen: 24
45.204.79.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 14:05:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108942 (0x1a98e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 3 07:20:21 2026 GMT
Not After : May 10 07:20:21 2026 GMT
Subject: CN=69cf6a39-9d8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:3a:e6:6b:9c:6a:0e:ed:28:b4:d0:cc:58:d0:
71:8a:f4:86:34:87:50:15:49:4d:0d:78:1d:18:e8:
3c:ec:68:94:81:36:80:b9:18:7d:90:b1:32:8c:5a:
f2:fd:2c:4a:ac:73:7a:7b:99:42:02:67:fc:35:7b:
fd:c7:9b:9d:34:d6:28:c9:03:e5:32:61:92:30:5b:
cd:59:ea:d8:ed:f5:b0:aa:85:82:e7:37:e1:85:89:
79:12:d1:62:44:3f:26:4f:fb:42:5e:0b:6f:db:65:
d9:b2:ab:a7:b7:f7:b1:69:e3:bf:b6:4c:8a:1a:ba:
39:27:84:74:3e:cc:b5:1c:0c:cc:c2:c8:54:67:2b:
b5:43:af:fb:85:3d:b2:d4:00:66:18:b9:ed:ca:e6:
ba:1a:e4:48:93:eb:c8:9b:87:60:69:f9:5c:62:ec:
d4:28:e6:b6:33:86:d9:34:50:f0:55:b4:4f:11:a9:
49:d5:37:f2:7f:75:2c:42:4f:55:d4:9f:c9:76:c8:
f8:87:7f:5b:a7:90:c3:d5:b8:7d:1a:ed:d8:f3:d8:
02:23:f1:78:6c:74:33:ce:66:e8:48:65:36:43:79:
15:3f:8f:6d:ce:98:99:51:de:75:ba:ef:4d:db:9b:
66:b2:6d:f2:68:55:15:0a:d7:a4:db:27:9b:fb:e0:
27:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:2D:0E:3F:BD:7F:ED:0D:A1:4B:D1:75:76:ED:75:25:38:14:C8:6E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/957A486C2F2D11F1839D42A5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.70.0/23
45.196.88.0/23
45.196.110.0/23
45.196.114.0/23
45.204.74.0/24
45.204.79.0/24
Signature Algorithm: sha256WithRSAEncryption
66:72:76:c7:6b:34:d4:c0:16:a6:99:16:37:27:7f:3e:e7:e3:
05:2f:06:62:80:3d:dc:b3:d3:3d:02:45:87:ff:c0:7f:af:ea:
d8:fe:ec:9c:70:98:bb:b4:01:43:19:d9:bf:b2:a7:dd:ff:73:
a1:8c:51:55:e0:c6:66:46:fc:46:9b:20:55:02:d4:fc:f1:b5:
cb:1c:fa:86:06:89:e9:8a:96:5c:d4:44:35:44:ed:70:90:da:
ee:4d:e8:54:2d:0f:8a:d4:84:41:f3:ca:38:63:79:1e:bc:e6:
ea:dc:62:37:7f:e8:5f:83:c9:10:2b:2d:4e:b5:69:f6:1a:87:
e0:33:31:72:32:0f:d4:db:fb:c8:e1:a0:85:7a:b6:7b:2a:c8:
9a:bb:10:57:a8:0b:4a:85:10:4c:b1:bc:2e:a2:99:c6:b5:1a:
65:a4:39:de:30:79:f3:9f:83:47:af:58:28:b9:04:93:a8:30:
da:9e:bb:18:8f:f6:f7:01:d5:11:c4:e4:5b:e1:ec:c8:46:dd:
ae:90:4a:ea:7a:fa:38:d7:4d:4f:0e:d6:ed:93:f4:eb:e3:38:
6b:d3:d3:a6:1c:38:2b:f5:c6:a5:76:f4:58:08:53:bc:cd:95:
74:b9:c1:22:9f:dc:0c:38:29:a7:e0:45:07:e8:3e:7d:9a:06:
7f:a9:4d:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 23:54:54 2026 by rpki-client