Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D41F9D9804AC11F1AF095CD2DAE4EC9C.roa
File: D41F9D9804AC11F1AF095CD2DAE4EC9C.roa (raw, json)
Hash identifier: va64YW8ke9ElK8ZjHpDicQ90ZKAfncljpkdDsnKnBiU=
Subject key identifier: 5D:33:53:A5:10:64:6B:F0:08:72:00:6E:A6:F9:A7:A8:5D:7E:05:30
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 019C42
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D41F9D9804AC11F1AF095CD2DAE4EC9C.roa
Signing time: Sun 08 Feb 2026 05:12:57 +0000
ROA not before: Sun 08 Feb 2026 05:12:52 +0000
ROA not after: Sun 14 Feb 2027 05:12:52 +0000
asID: 20473
IP address blocks: 45.197.158.0/23 maxlen: 24
45.197.158.0/24 maxlen: 24
45.197.159.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105538 (0x19c42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 8 05:12:52 2026 GMT
Not After : Feb 14 05:12:52 2027 GMT
Subject: CN=69881b59-5e56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:ab:2a:5f:3d:4f:6a:c4:14:59:c5:06:ca:5c:
e5:5e:3a:e2:56:be:d9:5d:70:fb:b9:28:e1:84:e0:
c7:49:a8:b9:dc:ed:c8:47:00:45:89:59:07:73:30:
cd:ee:ba:99:ae:1e:bf:4b:2c:e8:5e:82:5b:7a:03:
64:fd:ae:0d:9f:a6:74:95:e7:20:12:24:f0:e1:d5:
f5:74:15:3c:e8:ee:c2:7e:4e:1e:cc:97:e0:95:62:
34:8d:5e:51:7d:3f:77:52:d1:2e:e5:80:89:2a:34:
78:0c:ce:a9:99:58:47:f1:6d:02:31:e1:4f:88:d2:
93:de:92:d4:ba:26:e8:3a:dd:36:31:02:fe:93:ab:
22:82:5b:e0:81:33:36:d9:f1:6e:d3:39:e4:b9:ff:
18:22:18:1f:2d:c7:f9:fd:f4:00:7f:16:3e:25:01:
84:f0:7b:fd:dd:f1:0b:82:43:11:37:8d:62:1b:90:
83:ea:67:30:16:1b:ca:ea:2c:7a:c7:09:1e:fe:53:
3d:3f:d4:39:bc:a7:1b:e5:d7:05:c9:ec:59:1c:27:
2e:39:47:f3:9f:42:05:d2:bb:18:15:50:2c:7c:dd:
96:85:88:60:c0:70:f5:ce:01:99:ba:80:fb:dd:40:
11:c1:82:64:0c:0a:6c:a9:8f:1d:69:7e:85:9e:c4:
ec:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:33:53:A5:10:64:6B:F0:08:72:00:6E:A6:F9:A7:A8:5D:7E:05:30
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D41F9D9804AC11F1AF095CD2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.158.0/23
Signature Algorithm: sha256WithRSAEncryption
ad:99:d1:a1:1b:dc:88:22:a1:71:23:31:0d:51:ae:1c:70:c9:
da:cc:12:ed:e4:16:3b:15:41:66:a0:5d:de:e9:0b:ef:7b:84:
fa:02:7b:72:40:89:39:60:11:e6:8b:79:df:81:bd:f5:b5:90:
b5:24:75:e9:28:9e:68:26:99:fd:7d:28:8c:1a:ac:1b:c7:27:
e8:19:09:aa:a4:95:1e:3c:b5:1c:87:19:32:2a:a7:be:15:df:
73:ac:09:62:34:81:05:92:b9:c0:ce:b6:9e:2f:1d:cd:c4:b1:
f1:7e:09:a9:cd:02:f4:81:72:2d:fe:79:a7:d3:5d:6c:5a:4e:
47:47:cd:35:2b:38:c7:ac:89:d3:65:c5:cf:af:25:a3:2f:27:
89:8a:6a:9e:2c:3d:fd:20:99:a3:a0:25:fb:48:ac:c9:dc:d6:
65:c7:4f:b7:d2:2a:48:4a:1a:51:d9:73:04:81:25:17:78:10:
65:23:c9:82:13:c7:1c:1e:7c:3d:2a:f0:45:ca:2e:18:25:e4:
3c:56:c1:34:6a:73:e9:77:ba:bd:b6:e3:99:1b:17:83:02:77:
26:8a:d2:0e:b4:8b:2e:66:c2:83:ad:4a:e3:59:12:60:3d:89:
aa:4a:e9:6c:95:e1:a3:71:2b:01:3f:48:e4:36:b8:d1:6d:7d:
5e:6b:2d:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 00:05:18 2026 by rpki-client