Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0AC81F761FA311F19ECC95C2DAE4EC9C.roa
File: 0AC81F761FA311F19ECC95C2DAE4EC9C.roa (raw, json)
Hash identifier: 86BgS97UWAkiNYH3jZ+mVDogIV5t84fkn+dxx4vXh5A=
Subject key identifier: 56:52:2C:4B:D3:CD:CA:9E:8D:39:16:0F:E0:84:E4:A8:5D:9B:DF:79
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A52A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0AC81F761FA311F19ECC95C2DAE4EC9C.roa
Signing time: Sat 14 Mar 2026 12:40:55 +0000
ROA not before: Sat 14 Mar 2026 12:40:50 +0000
ROA not after: Mon 27 Apr 2026 12:40:50 +0000
asID: 20326
IP address blocks: 45.206.62.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 01 Apr 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107818 (0x1a52a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 14 12:40:50 2026 GMT
Not After : Apr 27 12:40:50 2026 GMT
Subject: CN=69b55756-1042
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f1:d9:2f:58:ae:ab:64:0c:b2:e6:ec:71:a5:
6d:3a:4a:e3:f6:18:47:b9:e8:db:8f:f2:63:fa:e2:
99:bc:e9:ca:f6:b7:eb:87:f4:9d:71:9e:59:80:b0:
fd:f9:3b:07:4c:36:ed:0e:49:fa:fd:1a:77:81:58:
42:aa:9f:d6:d6:15:e3:1c:34:b1:e1:c5:55:10:46:
ce:0a:f3:ad:48:76:c2:33:7f:b0:0c:0d:58:47:92:
82:32:a6:44:42:d2:95:58:7c:f6:be:21:a5:33:5f:
b9:79:70:ae:e0:4d:88:54:ec:4d:31:f0:71:aa:3b:
74:ba:77:10:84:dc:ea:22:27:c0:82:60:b9:12:c8:
c0:17:f3:51:e5:c4:5c:dd:06:71:b8:fb:01:68:04:
fc:b6:fe:a3:c8:49:5f:4b:ab:ac:d9:27:17:a5:6e:
72:f1:8c:f1:45:56:66:08:fb:b4:f6:86:dd:7f:3b:
9b:95:50:da:24:75:fb:73:3c:a6:88:b9:80:29:a3:
f8:ba:a5:78:68:ff:97:0a:78:e0:91:22:f5:8f:cc:
b9:48:d5:11:9f:99:67:4a:91:b9:9b:f6:f9:5a:97:
ab:4a:5e:d7:b1:f9:df:45:82:0d:66:45:bf:e2:6e:
fe:3d:03:47:5e:fe:01:61:e7:48:0f:13:7c:40:58:
ca:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:52:2C:4B:D3:CD:CA:9E:8D:39:16:0F:E0:84:E4:A8:5D:9B:DF:79
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0AC81F761FA311F19ECC95C2DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.206.62.0/23
Signature Algorithm: sha256WithRSAEncryption
85:44:18:19:6f:7f:3a:9e:24:02:bf:5c:a3:6a:09:11:38:96:
35:2b:15:d9:63:83:c8:6d:5e:c9:eb:79:aa:2f:07:1d:69:14:
5a:39:ca:73:15:9f:74:5d:79:75:4a:68:46:fa:dc:1b:aa:af:
bb:b4:0a:64:59:7c:1b:11:74:b3:6d:2c:10:62:95:98:c2:58:
2e:af:60:06:f0:29:9d:c8:88:e4:5c:a5:cc:72:a7:71:2d:2f:
35:6d:1c:1a:ef:aa:0e:fb:23:b0:f9:6d:82:09:29:b5:a5:5e:
ec:73:70:58:5f:4c:9f:d4:7e:ea:4d:48:a5:b9:98:02:44:c9:
b6:be:e6:13:e0:d0:21:11:db:4e:a9:33:55:53:07:3f:6f:fa:
51:7e:f1:9b:cf:ab:c9:0b:95:2b:41:13:c7:d2:2b:81:38:a1:
f6:bc:ba:09:99:55:06:b2:3c:97:b5:a0:ec:5a:18:1c:d1:11:
b0:bb:b5:79:87:61:db:4a:7b:df:e3:33:4b:08:71:71:23:00:
95:de:a7:eb:96:2f:bf:93:6a:38:71:68:ec:4d:62:61:f2:1c:
0d:c9:1f:69:88:69:98:db:fb:8d:e4:ff:97:7c:09:cf:20:98:
8a:50:ed:05:c4:d6:8d:2e:b1:05:65:5b:99:4b:73:71:65:99:
9c:70:b2:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 30 08:36:58 2026 by rpki-client