Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/49380350279311F18DF94687DAE4EC9C.roa
File: 49380350279311F18DF94687DAE4EC9C.roa (raw, json)
Hash identifier: mjWe6+sYIyHNRnP3hv+iENSi0zcFn2vpvz8g68KE/hs=
Subject key identifier: D8:AF:48:D4:EE:64:15:F3:63:71:C4:5A:66:FA:43:2A:01:1B:5A:61
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A714
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/49380350279311F18DF94687DAE4EC9C.roa
Signing time: Tue 24 Mar 2026 15:08:17 +0000
ROA not before: Tue 24 Mar 2026 15:08:12 +0000
ROA not after: Fri 01 May 2026 15:08:12 +0000
asID: 202656
IP address blocks: 45.195.208.0/24 maxlen: 24
45.195.209.0/24 maxlen: 24
45.199.135.0/24 maxlen: 24
45.199.136.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 27 Mar 2026 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108308 (0x1a714)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 24 15:08:12 2026 GMT
Not After : May 1 15:08:12 2026 GMT
Subject: CN=69c2a8e1-fd42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:b9:c0:00:08:f0:19:e1:50:ba:33:cd:f3:71:
a0:4d:a1:8e:08:be:2c:0a:66:e8:c5:93:5d:21:fb:
7b:8e:05:af:38:3d:a2:55:9d:07:b8:bd:da:13:5c:
1f:e0:bf:16:b5:85:5d:26:46:83:4d:10:9c:d8:14:
ac:a2:f2:64:d9:9d:dc:11:07:d8:40:51:af:b8:ba:
5c:dd:7b:f9:80:ca:f9:dc:a1:96:df:d2:b5:0e:bc:
9e:72:9b:a3:3e:0a:b9:a9:18:49:b5:ac:7a:96:c9:
bb:cd:29:8e:12:22:0e:9d:09:17:4d:02:23:bb:8a:
13:4f:33:97:77:7c:b4:dd:00:65:60:44:99:2b:b2:
69:81:69:ed:65:e6:4b:32:eb:a3:c2:79:ff:9b:8e:
7e:54:47:3d:06:86:6a:f1:af:87:d3:47:6a:38:e5:
cc:da:62:57:68:93:b4:90:2b:ea:83:4e:90:a2:2e:
36:32:79:d4:ec:76:ba:75:47:95:90:8b:14:88:f0:
25:a3:c8:ec:b0:0e:6c:63:a1:60:8c:64:2c:32:0c:
8b:51:f7:a8:47:62:6f:1a:db:b2:a4:96:85:8c:bf:
17:8f:f5:c0:de:9e:91:51:cf:db:22:cf:56:16:37:
22:b0:51:33:d2:eb:fb:1f:db:3b:89:35:67:64:1b:
fc:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:AF:48:D4:EE:64:15:F3:63:71:C4:5A:66:FA:43:2A:01:1B:5A:61
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/49380350279311F18DF94687DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.208.0/23
45.199.135.0-45.199.136.255
Signature Algorithm: sha256WithRSAEncryption
b0:02:75:76:2b:0b:8c:ad:bb:bd:1a:44:01:ee:c0:72:d3:1d:
d4:3a:20:db:fe:a8:4c:8d:6e:de:db:d3:c2:ad:fb:1d:ec:9a:
56:30:8e:4c:38:ff:56:16:3b:91:12:9a:42:8d:27:fa:be:c9:
39:0a:22:8e:0e:e9:72:db:f3:77:8e:c6:8a:2a:ee:49:cb:d1:
8f:b1:14:b7:78:2b:00:dc:f1:78:2d:8e:6b:af:66:05:61:db:
ca:77:b4:6c:57:7a:ef:20:a2:2d:40:39:4b:aa:65:40:3a:bb:
ae:c8:72:3e:8b:7f:28:a7:4d:e7:b4:81:97:72:19:13:bc:69:
e1:b6:27:30:22:99:13:a7:89:53:6f:dc:bd:30:b4:82:54:b7:
54:ae:38:d0:4d:78:23:ad:e6:3e:6e:8e:60:1c:80:0b:f7:45:
83:9e:e3:a9:b5:65:61:32:8d:82:df:8f:69:b9:07:4c:e0:2d:
e6:a7:b9:21:78:49:4e:c6:e9:10:54:0c:4e:f9:fb:29:b2:c4:
cf:da:94:a6:f1:89:aa:c4:97:44:af:a2:65:8f:ba:12:f7:1d:
d7:2c:94:ca:25:96:46:35:72:d5:a4:3b:f8:fc:a3:d3:9d:0a:
1a:af:27:1b:b5:4e:b9:f0:34:f3:a6:03:4c:7a:7c:35:cc:ea:
93:30:a6:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:15:30 2026 by rpki-client