Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D9B703200F0D11F18C1BEB9EDAE4EC9C.roa
File: D9B703200F0D11F18C1BEB9EDAE4EC9C.roa (raw, json)
Hash identifier: AvSlzUocyhElU2WrzW52paRwW/Qrm5n77JsxrTQPCkI=
Subject key identifier: AB:F1:71:93:0C:7F:9B:06:D0:01:0D:A0:44:3B:88:65:6B:02:B4:D2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 019F63
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D9B703200F0D11F18C1BEB9EDAE4EC9C.roa
Signing time: Sat 21 Feb 2026 10:12:39 +0000
ROA not before: Sat 21 Feb 2026 10:12:35 +0000
ROA not after: Sun 12 Apr 2026 10:12:35 +0000
asID: 272854
IP address blocks: 45.195.12.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106339 (0x19f63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 21 10:12:35 2026 GMT
Not After : Apr 12 10:12:35 2026 GMT
Subject: CN=69998517-382c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:6a:81:e6:bf:ac:5f:e1:c1:45:fe:fd:7f:e6:
af:8f:47:0c:2f:c2:ba:71:3d:04:aa:4d:63:53:03:
2e:ad:7a:3c:1f:3e:ad:50:80:18:7b:40:c5:9c:98:
3f:8c:37:1b:bf:f3:b0:38:13:97:5b:fe:66:db:23:
63:c5:10:a8:3d:2a:a1:69:d7:8b:22:78:d8:fc:6c:
e7:9b:ce:e9:40:a3:8c:ab:de:a8:d7:54:0c:39:0b:
bb:45:a0:87:ea:5a:95:91:2e:ac:f2:2a:0d:d4:71:
eb:ce:fc:c3:5d:14:50:8d:98:cc:3d:e4:67:56:17:
e8:22:18:c6:80:e6:6f:4c:0f:a1:4b:ef:0d:fb:95:
4b:cc:fd:c5:cb:e6:ae:d3:6e:57:23:34:5a:14:87:
ff:08:c6:fd:60:5b:aa:73:2a:97:28:5b:19:4c:79:
a6:2b:3d:72:90:be:6c:dd:a4:db:70:35:e9:3d:18:
8c:11:77:35:97:1f:db:cc:0f:90:81:1a:c1:e0:5f:
36:cc:a2:d1:30:54:bb:d1:d9:6d:6f:90:60:ab:05:
52:05:26:37:55:1c:ea:a6:55:59:90:41:b4:9b:5b:
9a:34:81:6d:8d:5d:9b:f5:28:68:c5:9f:f8:6f:ce:
76:6b:90:a9:21:fe:64:46:75:ce:82:ba:d2:21:90:
d0:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:F1:71:93:0C:7F:9B:06:D0:01:0D:A0:44:3B:88:65:6B:02:B4:D2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D9B703200F0D11F18C1BEB9EDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.12.0/23
Signature Algorithm: sha256WithRSAEncryption
b7:62:e5:d2:5d:8c:45:51:66:33:ea:5f:c5:28:20:c4:bf:38:
51:9b:11:3c:d8:e7:fd:5e:ea:d1:3f:c7:b6:92:b2:ec:dc:f3:
0d:ca:5b:21:55:ed:ce:67:78:b0:1a:03:86:3b:39:41:cd:a1:
3e:84:50:b1:a1:55:c3:5c:17:e8:52:c3:ac:e4:44:b1:43:10:
0a:f7:6e:52:2c:48:0e:8b:e1:36:98:1a:ae:35:55:1d:5c:09:
6c:45:b5:4f:85:e5:03:c6:90:33:ae:33:ef:b4:b3:8f:f8:5d:
5e:04:75:b0:cd:36:e0:ed:47:14:a1:66:6a:c0:25:c1:6f:81:
c1:b6:57:9a:50:42:45:3c:ba:db:2a:54:23:c6:cb:90:33:17:
e2:d2:a1:c0:bd:31:eb:09:57:e6:c7:84:fe:15:61:0d:6e:6f:
66:8a:2d:24:2d:dc:7c:08:3c:b2:27:04:a0:7a:97:c8:c6:75:
fb:c2:5c:31:ff:03:b9:ca:99:a7:b7:7d:d0:0d:f4:43:32:42:
68:52:53:91:17:24:39:ad:61:76:6b:b8:61:32:ed:c6:a0:00:
15:16:97:ab:82:ef:27:cd:3e:71:65:c9:91:c4:87:d4:a4:a1:
c5:e6:4a:2a:d5:fd:8e:39:3a:b7:be:f5:4d:02:3f:41:e9:f1:
25:ec:03:63
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAZ9jMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwMjIxMTAxMjM1WhcNMjYwNDEyMTAxMjM1WjAYMRYw
FAYDVQQDEw02OTk5ODUxNy0zODJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAs2qB5r+sX+HBRf79f+avj0cML8K6cT0Eqk1jUwMurXo8Hz6tUIAYe0DF
nJg/jDcbv/OwOBOXW/5m2yNjxRCoPSqhadeLInjY/Gznm87pQKOMq96o11QMOQu7
RaCH6lqVkS6s8ioN1HHrzvzDXRRQjZjMPeRnVhfoIhjGgOZvTA+hS+8N+5VLzP3F
y+au025XIzRaFIf/CMb9YFuqcyqXKFsZTHmmKz1ykL5s3aTbcDXpPRiMEXc1lx/b
zA+QgRrB4F82zKLRMFS70dltb5BgqwVSBSY3VRzqplVZkEG0m1uaNIFtjV2b9Sho
xZ/4b852a5CpIf5kRnXOgrrSIZDQ8wIDAQABo4ICojCCAp4wHQYDVR0OBBYEFKvx
cZMMf5sG0AENoEQ7iGVrArTSMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9EOUI3MDMyMDBGMEQxMUYxOEMxQkVCOUVEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLcMMMA0GCSqGSIb3DQEBCwUA
A4IBAQC3YuXSXYxFUWYz6l/FKCDEvzhRmxE82Of9XurRP8e2krLs3PMNylshVe3O
Z3iwGgOGOzlBzaE+hFCxoVXDXBfoUsOs5ESxQxAK925SLEgOi+E2mBquNVUdXAls
RbVPheUDxpAzrjPvtLOP+F1eBHWwzTbg7UcUoWZqwCXBb4HBtleaUEJFPLrbKlQj
xsuQMxfi0qHAvTHrCVfmx4T+FWENbm9mii0kLdx8CDyyJwSgepfIxnX7wlwx/wO5
ypmnt33QDfRDMkJoUlORFyQ5rWF2a7hhMu3GoAAVFpergu8nzT5xZcmRxIfUpKHF
5koq1f2OOTq3vvVNAj9B6fEl7ANj
-----END CERTIFICATE-----
Generated at Mon Mar 2 09:59:02 2026 by rpki-client