Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/41788112187511F1852F66DFDAE4EC9C.roa
File: 41788112187511F1852F66DFDAE4EC9C.roa (raw, json)
Hash identifier: WSK1/3El+fCr6WaB0hQCIcmNok8dJQ6m3q8I1VA5oAY=
Subject key identifier: 27:87:FB:73:A7:5E:00:58:2D:6A:0C:58:BA:85:16:D5:F5:4C:81:B8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A293
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/41788112187511F1852F66DFDAE4EC9C.roa
Signing time: Thu 05 Mar 2026 09:25:31 +0000
ROA not before: Thu 05 Mar 2026 09:25:27 +0000
ROA not after: Sun 12 Apr 2026 09:25:27 +0000
asID: 51847
IP address blocks: 45.207.216.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 27 Mar 2026 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107155 (0x1a293)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 5 09:25:27 2026 GMT
Not After : Apr 12 09:25:27 2026 GMT
Subject: CN=69a94c0b-997a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:0a:59:3a:6a:f4:dc:eb:47:d5:be:50:b3:43:
bd:d6:93:76:79:83:c3:8f:59:eb:5e:ba:45:31:79:
1a:9f:e4:6f:ad:b1:11:09:85:5f:51:5e:14:99:0a:
78:01:b6:94:1e:b6:d4:b0:ad:c2:89:12:75:38:da:
7c:b4:71:60:c3:92:19:cc:83:2f:b0:8b:46:9f:7b:
c6:f7:4e:fc:93:f3:21:16:63:70:7d:87:6b:dc:fc:
6c:94:02:18:96:34:6a:28:69:99:df:08:d6:26:30:
9b:dc:d6:c4:18:55:66:80:c6:96:e0:65:b1:6b:44:
81:a9:5e:fd:b1:53:71:d6:ef:9b:2f:12:2a:18:a4:
48:5f:0d:d6:62:6c:b3:ca:7f:8c:ec:c9:bf:72:af:
34:18:68:f8:71:c8:19:89:b9:11:54:6f:99:c5:86:
cd:9b:51:e4:97:1c:74:01:e3:62:b6:20:2d:f4:d5:
d3:65:63:59:f1:93:b1:55:5e:da:7d:dc:43:e2:d0:
e9:b1:e0:e0:60:c3:33:83:7b:19:69:08:2b:9a:cc:
aa:48:05:8f:b6:3c:49:b4:18:41:a7:63:09:87:d1:
d6:33:68:af:99:3b:c0:92:46:51:98:2f:0f:8b:08:
25:cd:2e:76:8c:b9:51:46:a9:dc:79:43:26:02:cd:
c8:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:87:FB:73:A7:5E:00:58:2D:6A:0C:58:BA:85:16:D5:F5:4C:81:B8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/41788112187511F1852F66DFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.216.0/23
Signature Algorithm: sha256WithRSAEncryption
56:bd:46:44:81:49:8a:d3:04:9a:99:cc:88:e4:c2:ba:9c:dc:
ce:13:8d:b2:3b:27:10:de:fc:8a:e6:4b:02:95:1a:e3:69:da:
96:7e:6a:7f:db:39:9f:de:91:81:c7:da:ed:4e:54:83:c4:14:
33:e6:3f:ed:fc:24:0b:28:a8:a6:17:55:92:6b:43:63:dc:57:
a9:74:13:bc:8b:2a:cc:37:fd:a3:76:ca:e3:e6:3b:84:fe:94:
fb:b5:df:0f:5c:1b:f6:77:13:a7:e8:19:82:e6:8b:a9:6e:44:
6c:2e:7e:92:d5:ec:f8:70:ca:e9:fd:be:53:6f:05:31:e4:c7:
f0:22:9c:56:3d:f0:5d:38:16:5a:4c:f5:6a:7d:ae:ca:57:86:
a1:c9:51:00:4f:73:23:f2:de:1b:49:db:1d:2d:be:00:0c:d9:
0e:e3:05:d3:39:16:93:92:5b:48:c8:80:0e:02:e2:0e:b5:df:
5f:d1:45:aa:aa:94:50:42:cc:66:86:37:8c:92:93:7c:db:18:
b0:65:bb:26:d8:6b:b8:be:38:96:76:dd:a4:36:68:35:2f:71:
a1:8f:08:ad:08:54:a0:8a:30:74:a7:f8:ba:af:f2:73:ae:f6:
3b:2c:7d:39:18:10:59:15:2a:f7:cc:9a:b6:4a:37:cd:41:19:
36:2c:0d:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:10:58 2026 by rpki-client