Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CE5D53EC0CA311F19514F3C1DAE4EC9C.roa
File: CE5D53EC0CA311F19514F3C1DAE4EC9C.roa (raw, json)
Hash identifier: OR93Gp4rktrKTsq9pV5F9ST//yCwe8l9OlrAgkRdkhI=
Subject key identifier: D4:BB:30:81:C0:41:11:D2:C3:DE:06:F1:54:28:D0:4C:55:BB:1F:C1
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 019E99
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CE5D53EC0CA311F19514F3C1DAE4EC9C.roa
Signing time: Wed 18 Feb 2026 08:28:34 +0000
ROA not before: Wed 18 Feb 2026 08:28:20 +0000
ROA not after: Sat 28 Mar 2026 08:28:20 +0000
asID: 274069
IP address blocks: 45.194.67.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106137 (0x19e99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 18 08:28:20 2026 GMT
Not After : Mar 28 08:28:20 2026 GMT
Subject: CN=69957832-b105
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:f9:d8:12:ad:67:c1:8d:95:cc:49:68:c3:22:
f8:eb:5e:dd:1b:ae:d7:75:a2:88:0e:d9:97:5b:95:
06:e6:b1:a7:3a:d9:e8:40:90:8e:f6:d0:aa:3c:e6:
6f:35:f9:58:35:c0:85:ca:f6:da:08:8d:d4:14:7e:
a7:97:92:52:2e:aa:89:d0:d4:76:db:25:7a:6f:02:
5d:b0:12:1d:fe:7c:4b:8f:24:33:32:2d:03:eb:80:
8b:f4:50:3e:b5:3c:40:37:c0:8b:b5:61:b2:ca:89:
8e:8c:4b:4c:21:22:9a:9f:2a:31:5e:0e:eb:46:13:
bb:51:22:6a:af:50:ac:15:cf:8c:ed:92:34:0f:3f:
f6:d9:77:5e:79:61:90:d7:35:11:c2:39:2e:f8:11:
f3:a7:4f:35:70:8c:08:f8:b3:fd:8e:b5:4e:4e:e7:
cb:4e:b1:75:1f:48:63:b4:28:6d:17:e3:9c:a9:95:
d2:90:d9:cd:6d:46:6e:56:5d:3f:c1:d2:01:23:16:
04:37:6b:04:f7:6b:ec:75:fc:ca:8c:c8:5e:bc:02:
23:f7:e9:16:85:2f:6b:ee:a2:a6:ac:b6:5c:3c:04:
0d:92:c5:ae:69:f3:13:40:4e:58:43:bb:9b:a7:7f:
3f:fd:c3:f6:05:dc:c1:ea:ba:7c:96:5a:21:68:e7:
21:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:BB:30:81:C0:41:11:D2:C3:DE:06:F1:54:28:D0:4C:55:BB:1F:C1
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CE5D53EC0CA311F19514F3C1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.67.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:b1:76:25:52:4c:a0:16:cc:d6:07:78:7d:db:49:21:01:87:
da:59:8c:94:4b:a5:7a:b1:b1:da:43:58:f5:85:34:e1:8b:8a:
46:52:d0:ad:26:15:e5:eb:2b:b5:7d:c6:af:47:01:a2:1a:09:
c3:0a:c8:1e:7d:b8:e8:34:f7:a1:a7:2d:18:e3:56:fb:26:81:
70:9a:a9:b2:1e:ec:cb:9b:3c:c0:db:4d:d5:6a:49:71:b1:1b:
a4:92:34:2a:73:8d:91:aa:e0:aa:70:b6:07:a5:f9:60:08:fd:
c8:f5:a8:2c:f1:06:c4:85:48:6d:ec:0f:51:8e:d2:05:66:bb:
98:c8:03:36:71:7a:ad:ed:01:ee:bb:ab:3b:a7:06:3e:17:f4:
64:22:0b:9c:77:76:3d:eb:ca:f4:a4:8d:1e:5f:83:e1:ca:c8:
80:6d:23:59:ff:f0:30:4f:85:de:00:e8:64:f5:7a:0f:b9:a1:
08:98:ca:06:4d:cd:c2:6b:b2:3c:f2:8a:25:21:06:ad:17:c1:
ea:e5:cf:1f:87:a8:8c:7a:2b:32:dd:8a:fd:cb:cc:7e:d3:cc:
c5:77:eb:a0:92:bd:2f:38:e7:44:02:cd:67:03:f7:88:76:df:
0f:86:5f:92:95:8f:cd:34:b2:38:41:39:46:6d:8e:26:b1:63:
55:b9:21:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 08:14:39 2026 by rpki-client