Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/969E5978FA9811F0A6E021DEDAE4EC9C.roa
File: 969E5978FA9811F0A6E021DEDAE4EC9C.roa (raw, json)
Hash identifier: i+OFfs7gy5GXzL3dkNruQz5ucLtsseWqQmBzc4WHf8E=
Subject key identifier: 66:1C:F8:07:50:16:52:AF:40:D3:29:35:88:7F:84:4B:DD:BB:72:DB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 0199FA
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/969E5978FA9811F0A6E021DEDAE4EC9C.roa
Signing time: Mon 26 Jan 2026 09:22:52 +0000
ROA not before: Mon 26 Jan 2026 09:22:47 +0000
ROA not after: Sat 07 Mar 2026 09:22:47 +0000
asID: 44509
IP address blocks: 45.207.40.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104954 (0x199fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jan 26 09:22:47 2026 GMT
Not After : Mar 7 09:22:47 2026 GMT
Subject: CN=6977326c-077a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:b6:fd:2f:d0:51:5e:0b:2d:c4:12:3c:b0:bf:
ba:96:a1:18:84:be:e2:09:e9:b6:54:97:dd:5f:61:
00:23:98:bf:0d:30:d3:e1:58:30:30:6a:2a:79:a1:
3b:0c:04:e2:68:be:48:31:33:f3:bf:ce:8b:38:61:
b1:59:a4:e9:f9:08:fe:23:b8:22:3f:76:2b:f8:19:
e0:51:7c:46:00:f1:e7:1e:39:fc:b7:d1:1a:05:80:
f7:96:5a:c5:d9:2d:5d:2a:56:37:40:1e:cf:3a:24:
05:e6:7a:8a:1d:05:e3:1f:7c:72:60:c6:ef:dc:02:
4b:66:1e:32:fd:c2:18:5a:a8:25:98:4b:8d:19:0a:
f5:3a:a9:a2:fe:2d:20:bb:2b:ad:94:d3:0b:56:cb:
83:e4:7f:50:6e:b9:63:c5:1d:2d:16:63:c5:37:13:
4a:d5:3b:33:b3:ac:46:19:1e:df:ae:40:aa:f6:83:
45:1d:e1:ec:19:26:14:13:a4:cc:b5:31:d7:73:2b:
c8:4d:30:d5:94:f6:7f:f8:12:e2:b8:e5:37:27:2d:
8f:f9:59:31:aa:37:23:83:8b:a2:82:ea:f8:3c:b1:
62:b8:f0:54:53:55:b4:c7:fa:ff:1f:5f:3a:56:af:
e4:4b:75:93:62:44:00:99:a5:51:2d:b9:91:cc:67:
ac:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:1C:F8:07:50:16:52:AF:40:D3:29:35:88:7F:84:4B:DD:BB:72:DB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/969E5978FA9811F0A6E021DEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.40.0/24
Signature Algorithm: sha256WithRSAEncryption
48:da:b7:42:86:51:77:d6:4c:72:6c:4d:29:c5:10:60:23:a7:
bb:e8:12:44:bf:f8:73:57:92:93:de:0d:e1:2a:1f:e5:a2:58:
4e:e2:a7:d5:b3:2a:8c:d1:9a:6f:58:fc:51:ee:75:5f:53:c5:
81:e2:51:a0:44:87:1c:53:9f:9d:61:ef:e9:88:67:12:78:52:
8b:9f:cf:71:92:42:f8:f4:f2:d1:47:ea:1f:31:19:78:03:6a:
d0:f3:c7:df:06:28:c3:b0:a9:2d:98:9a:5a:55:99:67:eb:f4:
a1:5b:e8:ed:9d:77:5c:7a:80:1d:37:fc:54:54:c0:11:97:ca:
35:12:f8:51:1b:0f:9b:e7:3d:71:89:3c:14:76:fa:c8:9a:30:
36:1a:88:87:c2:35:e3:31:7f:77:c4:cb:8b:ec:44:35:58:6d:
4b:08:8d:63:ce:d2:45:86:3f:03:fb:23:66:71:5a:bc:3c:87:
80:cb:c8:21:b2:0c:77:7d:c6:70:c2:73:2e:e7:22:45:dd:10:
91:10:8d:05:dd:20:bb:55:b1:6a:7f:c6:d7:ab:6a:60:6f:2e:
1f:9c:36:a0:07:4f:84:1f:b7:88:7c:d1:f2:18:68:c6:09:52:
b2:c6:68:4c:d3:1d:8a:ab:33:00:23:75:8f:6b:e6:aa:01:2d:
4f:f3:a1:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 20:52:10 2026 by rpki-client