Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/44CDA1663E5A11F1B9BAD1E0CE1D38B0.roa
File: 44CDA1663E5A11F1B9BAD1E0CE1D38B0.roa (raw, json)
Hash identifier: KltGe/llUda2fDydnnQguHbxoxrz+kNM3m02vVBIIEc=
Subject key identifier: A3:8D:A4:8C:3A:DB:6A:70:8B:B0:7E:AF:1C:FE:DE:F5:4C:4D:CA:32
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AE27
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/44CDA1663E5A11F1B9BAD1E0CE1D38B0.roa
Signing time: Wed 22 Apr 2026 14:48:05 +0000
ROA not before: Wed 22 Apr 2026 14:48:00 +0000
ROA not after: Fri 29 May 2026 14:48:00 +0000
asID: 214143
IP address blocks: 45.195.3.0/24 maxlen: 24
45.198.97.0/24 maxlen: 24
45.198.109.0/24 maxlen: 24
45.198.112.0/24 maxlen: 24
45.198.138.0/24 maxlen: 24
45.198.163.0/24 maxlen: 24
45.198.168.0/24 maxlen: 24
45.198.176.0/24 maxlen: 24
45.198.181.0/24 maxlen: 24
45.206.44.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 14 May 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110119 (0x1ae27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 22 14:48:00 2026 GMT
Not After : May 29 14:48:00 2026 GMT
Subject: CN=69e8dfa5-bbae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:8a:b0:03:e5:1b:ef:b9:90:a7:e5:bd:3b:b7:
f4:3f:ae:d6:62:da:9a:79:41:1c:9a:d3:d8:3f:b3:
de:5d:02:21:31:75:0a:c1:28:b4:91:e9:a2:5f:37:
25:2e:6c:ff:ee:9d:57:0a:36:4d:aa:1d:88:37:13:
af:a9:77:39:bd:ba:69:64:29:d7:3d:d9:b4:09:18:
20:28:5b:63:e4:16:8b:9f:86:ad:21:a3:25:70:53:
dc:86:56:62:89:ab:b0:d8:ca:1c:6a:bb:b9:8c:e0:
b0:77:41:1f:59:19:5f:ed:64:1a:83:f7:36:a7:99:
c9:30:56:f2:bc:ee:f3:23:3a:93:c4:9e:7a:7e:e1:
7c:d7:fa:10:6c:1b:91:16:82:71:28:54:7b:b3:d7:
cb:d6:67:7d:b6:2f:1b:8e:f2:02:b2:fb:b5:27:14:
20:29:8a:dc:c2:b3:d5:f5:17:89:cb:46:3a:85:2b:
3c:7f:20:e5:21:94:89:9d:0a:d3:99:b7:f0:a3:dc:
e3:23:c1:68:de:0c:d6:27:f8:78:e4:9c:95:41:27:
11:20:f0:ee:0b:d8:86:47:27:05:a4:9f:01:94:dd:
ba:33:1c:5f:99:73:0a:c2:a0:c1:f9:5e:93:46:6d:
89:5b:f9:71:24:1c:74:ca:ca:c8:0c:f3:72:dc:8f:
cf:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:8D:A4:8C:3A:DB:6A:70:8B:B0:7E:AF:1C:FE:DE:F5:4C:4D:CA:32
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/44CDA1663E5A11F1B9BAD1E0CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.3.0/24
45.198.97.0/24
45.198.109.0/24
45.198.112.0/24
45.198.138.0/24
45.198.163.0/24
45.198.168.0/24
45.198.176.0/24
45.198.181.0/24
45.206.44.0/23
Signature Algorithm: sha256WithRSAEncryption
0f:47:fc:13:8a:5e:44:63:33:12:6c:ba:aa:83:42:47:2d:3a:
14:54:71:a2:6d:3e:94:19:6e:d2:cf:03:f9:20:50:cf:d8:2f:
1b:df:fd:f8:ac:16:e9:ef:f0:db:7b:9b:df:79:05:81:5c:10:
9a:ae:30:f0:3f:fd:38:98:7e:8a:4c:39:68:ae:ef:6c:16:4a:
d9:1a:fc:88:2f:b5:95:f8:20:ba:ad:94:5e:0d:8f:1f:50:a2:
d5:23:2d:1d:5f:68:d8:2e:b9:e7:96:0b:0f:30:77:27:ce:7d:
63:b8:f1:ce:79:88:12:e9:3f:ca:cf:88:af:85:28:0c:dd:56:
10:f1:14:e5:60:dd:ee:94:ec:21:c0:81:09:40:c7:bf:05:68:
1f:a1:e0:c1:ab:37:42:7d:1d:ef:ee:f5:1b:6d:25:a6:0a:2a:
34:2b:74:82:0c:46:47:4e:07:a6:1a:c4:4f:62:94:56:c5:67:
ed:5f:01:f5:30:37:e0:ff:2c:29:f0:9d:95:76:26:9c:f1:59:
a7:4a:34:56:e4:32:2d:b2:6b:40:aa:b8:65:d7:0d:ca:f7:94:
a9:22:93:68:a5:4b:01:9c:b6:46:5d:26:09:32:73:50:a6:7b:
72:56:3f:9e:8a:95:f1:24:ad:3e:86:cb:76:5b:f9:dc:f4:6e:
cb:97:3e:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:44:45 2026 by rpki-client