Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9A68D120026B11F198DF6D78DAE4EC9C.roa
File: 9A68D120026B11F198DF6D78DAE4EC9C.roa (raw, json)
Hash identifier: ViouKEXMnOK9hccOObciw4qwpyX3xfwvY6wcyWYmSi8=
Subject key identifier: A7:71:FC:D9:2E:94:14:6E:C9:21:EA:73:69:9D:6D:36:D0:71:D0:F0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 019BE6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9A68D120026B11F198DF6D78DAE4EC9C.roa
Signing time: Thu 05 Feb 2026 08:21:00 +0000
ROA not before: Thu 05 Feb 2026 08:20:55 +0000
ROA not after: Mon 23 Mar 2026 08:20:55 +0000
asID: 214025
IP address blocks: 45.202.108.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105446 (0x19be6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 5 08:20:55 2026 GMT
Not After : Mar 23 08:20:55 2026 GMT
Subject: CN=698452ec-6daa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:a1:b2:c9:22:c9:41:f0:0f:24:67:2d:2b:f4:
75:ce:f2:69:3e:1d:2e:4f:90:34:4c:a8:c0:02:e3:
76:1c:be:7b:4b:7f:11:d7:ee:78:92:5f:0d:25:da:
ba:a7:37:86:d9:a0:d5:f7:0c:e6:1b:db:85:e8:cc:
2f:db:bc:5e:c5:f8:c3:5b:cf:91:b2:67:4e:ca:b7:
40:13:fb:10:7c:28:16:20:d2:d6:d5:95:77:8c:53:
8d:fb:08:74:80:47:a7:d5:9a:a5:60:6d:9c:ae:ba:
d2:01:b0:20:e2:de:11:3a:70:96:a0:75:67:8f:ba:
9a:43:46:79:25:7e:66:7e:6a:8b:f5:f3:6e:ca:f2:
49:33:8d:b8:06:64:a1:24:b9:fc:ce:f5:e6:9b:5f:
53:f5:2f:dc:7b:8e:34:f9:28:5e:2e:e3:ec:7b:19:
06:f0:c3:f9:e9:49:04:5d:ad:38:b8:8e:f9:a4:7c:
74:0a:10:73:1d:c4:04:f5:af:2b:c2:00:8f:7c:5e:
4f:68:f1:82:e7:0f:77:e9:fa:e2:88:81:b1:ab:d5:
ac:e4:b8:1e:1d:b2:b5:4c:17:73:2d:49:77:53:be:
7c:0a:7c:7a:77:80:37:84:3f:13:76:30:8f:c3:85:
84:9b:7d:02:4d:db:0e:87:7f:ee:87:2c:e3:81:13:
8c:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:71:FC:D9:2E:94:14:6E:C9:21:EA:73:69:9D:6D:36:D0:71:D0:F0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9A68D120026B11F198DF6D78DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.108.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:d2:b5:af:91:1b:b0:53:67:60:1c:a1:12:6d:8d:ce:d6:9e:
7e:99:ed:e4:cc:5a:63:95:45:4b:f3:bb:e3:51:d6:fc:73:f9:
28:ae:f4:5f:56:3c:98:a7:b1:a8:44:94:db:99:7b:17:ad:1d:
f6:0a:3d:55:8d:ca:16:db:65:67:88:66:95:d9:76:cd:2e:62:
9f:c2:ce:95:9b:9d:34:7f:0f:ef:52:8b:f2:2d:c5:44:9c:6f:
17:f0:68:be:87:51:7b:73:a5:47:84:8a:5e:a0:9f:c3:08:9d:
ba:d0:5b:1b:a6:ac:3d:78:3b:30:71:66:3c:cc:9b:c2:6e:77:
88:81:f4:5c:dc:39:2d:0e:e6:7d:f0:9f:f3:80:8c:3b:dc:55:
31:bf:83:cf:ee:28:8e:ee:8f:d9:56:91:95:b1:0a:92:af:00:
4c:91:92:a9:63:6d:7c:48:e3:29:7e:10:c0:ca:4d:7a:59:8d:
2e:24:1e:c3:02:ae:f5:a0:6b:ae:95:60:77:ba:d3:70:31:40:
84:ed:c6:4c:d6:d6:0a:4a:47:7c:00:48:e2:fe:0f:9e:f2:5a:
b3:98:19:40:9c:79:23:a3:0b:cc:12:5f:28:6f:c8:3b:c2:8d:
2d:1c:8f:65:8e:75:8f:0b:56:1d:24:51:ca:69:4e:bc:a5:0a:
8c:6c:3f:b1
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAZvmMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwMjA1MDgyMDU1WhcNMjYwMzIzMDgyMDU1WjAYMRYw
FAYDVQQDEw02OTg0NTJlYy02ZGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0qGyySLJQfAPJGctK/R1zvJpPh0uT5A0TKjAAuN2HL57S38R1+54kl8N
Jdq6pzeG2aDV9wzmG9uF6Mwv27xexfjDW8+RsmdOyrdAE/sQfCgWINLW1ZV3jFON
+wh0gEen1ZqlYG2crrrSAbAg4t4ROnCWoHVnj7qaQ0Z5JX5mfmqL9fNuyvJJM424
BmShJLn8zvXmm19T9S/ce440+SheLuPsexkG8MP56UkEXa04uI75pHx0ChBzHcQE
9a8rwgCPfF5PaPGC5w936friiIGxq9Ws5LgeHbK1TBdzLUl3U758Cnx6d4A3hD8T
djCPw4WEm30CTdsOh3/uhyzjgROMpwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFKdx
/NkulBRuySHqc2mdbTbQcdDwMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC85QTY4RDEyMDAyNkIxMUYxOThERjZENzhEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALcpsMA0GCSqGSIb3DQEBCwUA
A4IBAQBt0rWvkRuwU2dgHKESbY3O1p5+me3kzFpjlUVL87vjUdb8c/korvRfVjyY
p7GoRJTbmXsXrR32Cj1VjcoW22VniGaV2XbNLmKfws6Vm500fw/vUovyLcVEnG8X
8Gi+h1F7c6VHhIpeoJ/DCJ260Fsbpqw9eDswcWY8zJvCbneIgfRc3DktDuZ98J/z
gIw73FUxv4PP7iiO7o/ZVpGVsQqSrwBMkZKpY218SOMpfhDAyk16WY0uJB7DAq71
oGuulWB3utNwMUCE7cZM1tYKSkd8AEji/g+e8lqzmBlAnHkjowvMEl8ob8g7wo0t
HI9ljnWPC1YdJFHKaU68pQqMbD+x
-----END CERTIFICATE-----
Generated at Sun Mar 1 18:19:42 2026 by rpki-client