Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1E53DE8E25D111F1BEC084CADAE4EC9C.roa
File: 1E53DE8E25D111F1BEC084CADAE4EC9C.roa (raw, json)
Hash identifier: B9gDDH7HvudVZlnwd71Fv6wHS/Ip2RMp4f4pygkv4Dg=
Subject key identifier: 16:88:E7:91:89:3B:9D:CB:B1:F2:D3:8C:78:89:E5:CC:D1:F3:B9:C3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A6A8
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1E53DE8E25D111F1BEC084CADAE4EC9C.roa
Signing time: Sun 22 Mar 2026 09:25:52 +0000
ROA not before: Sun 22 Mar 2026 09:25:47 +0000
ROA not after: Mon 22 Mar 2027 09:25:47 +0000
asID: 328608
IP address blocks: 45.205.82.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 27 Mar 2026 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108200 (0x1a6a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 22 09:25:47 2026 GMT
Not After : Mar 22 09:25:47 2027 GMT
Subject: CN=69bfb5a0-6416
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:74:01:90:ac:ea:48:48:0f:95:b9:96:a7:0a:
cb:73:2f:e4:8b:be:f1:d8:26:eb:9c:02:52:0b:80:
0e:ed:ae:c3:a6:e1:bd:0d:22:fe:5d:08:ca:d9:7d:
b5:03:c1:a1:16:89:a6:ff:52:86:08:4f:0e:84:f0:
10:11:cc:8a:53:96:d7:50:76:2e:ff:03:90:e5:a3:
9e:b2:ae:26:21:85:f6:da:9b:a6:c5:c8:97:86:05:
4f:d6:1a:12:2e:ce:7d:7d:72:1e:e2:44:bb:db:bb:
65:63:8d:e8:f8:82:8c:b6:19:49:f3:97:d2:03:d9:
c0:23:14:d6:49:f5:97:f9:ec:18:25:98:a7:9f:49:
60:1d:ca:5d:8d:34:27:55:43:1b:df:f9:7a:0e:84:
51:39:a8:c7:47:b6:20:ce:29:60:39:84:7e:ba:b4:
ba:88:47:b7:6a:c6:f8:35:1e:ad:e8:8f:31:4f:43:
2c:70:64:c5:c1:c4:14:fd:ce:a7:40:9f:3f:7b:ca:
de:51:27:d3:74:7d:c8:31:14:01:8b:a6:27:d3:21:
78:c6:7b:a2:9d:16:73:f9:08:06:7e:f2:31:c0:72:
f4:98:d8:5a:ed:47:94:63:ae:07:67:78:68:9c:48:
7c:8f:46:1d:d4:df:e9:e1:cb:05:69:8b:fe:df:77:
35:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:88:E7:91:89:3B:9D:CB:B1:F2:D3:8C:78:89:E5:CC:D1:F3:B9:C3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1E53DE8E25D111F1BEC084CADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.205.82.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:01:f4:cb:c6:6f:a7:84:0b:40:a8:33:36:07:83:33:fb:e1:
6c:19:fc:6f:2b:ed:b3:86:10:93:e3:dd:e8:5d:3e:12:d8:af:
7e:99:53:07:8e:8e:84:4a:b0:f1:c6:a3:f2:27:f6:a2:ee:0a:
b2:d6:18:ca:93:9d:fd:ea:55:9f:92:32:f7:83:75:ab:2f:d8:
49:a5:dd:18:e8:27:8d:80:46:eb:99:06:1d:3f:67:51:76:5e:
27:56:e9:4d:5d:9a:51:81:41:11:9b:ac:6f:10:94:8b:da:11:
78:63:75:ca:42:16:4e:0b:5c:fb:4d:e8:8c:1a:54:d5:79:e9:
7b:a0:9f:62:91:16:50:98:75:db:5d:45:c5:da:75:57:99:d1:
08:91:08:cc:6c:ab:40:a2:89:66:8c:f6:66:33:a2:39:25:d2:
d8:e0:ce:42:64:50:8d:5b:c0:7e:ed:0a:17:0b:6e:9f:b8:42:
97:3b:5c:f1:a2:c3:3e:99:80:5f:b2:18:ce:00:b3:d0:ab:26:
74:b6:bd:43:71:a7:e3:25:94:5f:6e:e1:ca:1b:ea:5c:26:f6:
a1:3b:91:cc:b9:6c:42:37:a9:92:a7:8e:0a:93:6d:e9:d4:d6:
17:91:53:a4:da:c2:ec:c2:f2:03:e3:1e:7b:ea:77:e4:0a:99:
d3:57:c1:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:15:44 2026 by rpki-client