Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FFDB5FE4131611F18E5A78DCDAE4EC9C.roa
File: FFDB5FE4131611F18E5A78DCDAE4EC9C.roa (raw, json)
Hash identifier: 2Zzpmh6+d5b+e6iQDh5ujbs4nb6yhACHzl1c8dPyfr4=
Subject key identifier: 41:02:62:37:46:02:D7:CD:8F:80:2F:B3:F7:F1:A2:7D:B0:18:CA:8A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A0C9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FFDB5FE4131611F18E5A78DCDAE4EC9C.roa
Signing time: Thu 26 Feb 2026 13:28:13 +0000
ROA not before: Thu 26 Feb 2026 13:28:08 +0000
ROA not after: Thu 09 Apr 2026 13:28:08 +0000
asID: 395793
IP address blocks: 45.194.1.0/24 maxlen: 24
45.194.4.0/24 maxlen: 24
45.194.5.0/24 maxlen: 24
45.195.63.0/24 maxlen: 24
45.196.194.0/23 maxlen: 24
45.196.225.0/24 maxlen: 24
45.196.226.0/24 maxlen: 24
45.196.227.0/24 maxlen: 24
45.198.230.0/24 maxlen: 24
45.198.231.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106697 (0x1a0c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 26 13:28:08 2026 GMT
Not After : Apr 9 13:28:08 2026 GMT
Subject: CN=69a04a6d-4a57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:e1:97:b9:fb:27:96:b4:2a:8d:53:ff:5a:0d:
45:1e:4d:ec:c4:9d:e8:e5:46:63:77:e1:69:35:09:
a0:9f:19:ad:c9:2a:50:f3:09:bd:9c:8a:f8:81:e8:
13:42:5a:27:1a:65:e5:ef:9d:8b:51:08:f8:4c:6e:
0b:eb:0c:61:32:91:cd:fb:6a:86:8d:52:bd:9b:24:
ac:9d:ab:36:a9:f1:25:2b:d2:e3:fe:63:c0:f9:22:
73:90:e5:3a:d7:bd:66:08:4e:26:38:19:bc:1a:b1:
22:9d:12:cf:be:62:8b:51:82:ac:ed:72:4f:6b:dd:
7a:4d:91:25:e6:82:cd:a0:3e:8d:62:20:41:6f:10:
a1:94:94:dc:16:5a:d9:e4:be:18:45:82:30:ae:70:
72:ee:d2:62:fe:f0:27:a6:4c:ba:c7:95:45:5f:7c:
73:8f:5e:40:9c:5e:bb:8a:93:23:dc:ab:b0:47:66:
08:1a:d2:15:c4:d0:1b:6a:aa:db:4a:c2:5c:81:5a:
97:f4:db:e5:13:25:66:7e:b8:ad:92:8f:cc:65:4d:
cf:a1:2f:13:2d:d3:41:7e:12:2b:d5:46:87:86:64:
ec:ec:14:92:5e:e4:c3:f7:69:54:1e:b0:2a:4a:25:
23:c1:fb:59:f2:ec:03:9b:25:31:0a:c3:1d:5b:37:
b3:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:02:62:37:46:02:D7:CD:8F:80:2F:B3:F7:F1:A2:7D:B0:18:CA:8A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/FFDB5FE4131611F18E5A78DCDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.1.0/24
45.194.4.0/23
45.195.63.0/24
45.196.194.0/23
45.196.225.0-45.196.227.255
45.198.230.0/23
Signature Algorithm: sha256WithRSAEncryption
0f:ad:21:de:86:e7:0f:01:97:74:2d:71:cd:9a:00:e0:c4:86:
33:97:56:59:f0:28:c2:33:98:69:90:5c:5f:8a:bd:27:f3:8b:
62:aa:cf:f2:2e:2e:32:c8:77:3d:66:c3:c3:97:12:25:fe:bb:
89:fb:88:da:80:66:33:6f:8e:30:27:9e:e2:d1:74:16:26:01:
ea:bc:98:ea:2a:22:0c:ff:28:79:69:5f:bf:a2:9a:4e:20:7c:
fd:78:f7:c8:90:db:02:7b:bb:a7:82:82:52:27:ca:d8:1b:f7:
49:b6:16:75:51:76:ce:0f:4a:ba:4a:17:3f:da:a8:2c:a5:47:
42:99:37:81:72:92:d4:a2:c6:0e:f8:92:15:c9:90:9a:20:a1:
6c:3a:f5:55:7f:d8:df:33:90:da:1c:9d:96:06:69:fd:d4:87:
4f:39:35:85:0f:b1:8e:9d:93:7b:27:90:d5:57:f5:29:c5:e2:
05:32:3a:d4:97:01:8d:62:72:3e:77:94:d7:9e:70:7b:14:4b:
b0:42:9a:ae:0c:37:43:30:03:cb:a5:f6:3d:67:cb:d6:35:13:
bb:8e:ab:f0:e2:ce:6c:3c:03:68:c5:d1:f2:84:78:c0:17:db:
40:42:c0:8b:5f:91:b9:98:30:45:91:46:b0:5a:1c:22:ae:83:
8e:f7:ae:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 20:06:51 2026 by rpki-client