Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4C3C2564187E11F18DA00797DAE4EC9C.roa
File: 4C3C2564187E11F18DA00797DAE4EC9C.roa (raw, json)
Hash identifier: 44O/mO32mkOz2QgpS1ZpMreiOFc/FtEtFlFRQGL9efU=
Subject key identifier: D7:AE:15:0D:78:B4:28:AA:AE:38:3C:F3:52:C7:DE:60:8B:F5:53:9A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A2A9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4C3C2564187E11F18DA00797DAE4EC9C.roa
Signing time: Thu 05 Mar 2026 10:30:15 +0000
ROA not before: Thu 05 Mar 2026 10:30:11 +0000
ROA not after: Wed 22 Apr 2026 10:30:11 +0000
asID: 40779
IP address blocks: 45.192.96.0/20 maxlen: 24
45.205.16.0/20 maxlen: 24
45.207.192.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 27 Mar 2026 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107177 (0x1a2a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 5 10:30:11 2026 GMT
Not After : Apr 22 10:30:11 2026 GMT
Subject: CN=69a95b37-9071
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:60:e0:03:32:bc:59:d5:d8:24:65:c4:41:00:
29:42:ec:71:e6:6b:7d:92:be:4f:77:60:10:f1:bc:
01:61:c6:4a:08:30:c5:1d:69:28:6e:f7:12:55:0a:
b7:86:cd:cc:e5:e3:f3:c3:6e:40:ab:df:57:a7:5f:
bd:9a:48:72:7e:1f:b3:d9:62:37:73:4b:5b:2f:da:
a2:08:34:04:29:86:4e:50:08:c6:f4:42:2d:c7:3a:
17:be:f3:46:65:14:ec:49:12:ad:54:d0:3c:db:4f:
ea:64:4d:b0:fe:8b:3f:36:6c:50:c0:65:2f:df:b0:
2e:84:f4:7c:03:f8:15:55:6e:b0:66:ca:0a:fe:fb:
44:56:33:06:06:be:ba:6f:92:21:bf:43:ff:87:53:
f6:58:28:54:9e:05:21:4c:4e:8a:d8:19:c2:a4:c2:
e9:ca:26:d3:9b:88:a2:26:1f:24:c1:ab:ca:87:2d:
20:1a:c9:f1:83:5e:a2:95:bf:1f:76:f3:cc:fd:0d:
e6:6a:93:0b:27:be:66:cf:27:1c:46:60:20:da:68:
fd:00:51:fb:2e:65:e6:33:be:51:9e:e9:1c:34:89:
c0:0b:f8:c4:5a:75:49:d1:c3:78:7a:7e:b3:5e:d5:
59:c5:7a:67:6d:3b:33:eb:e7:ee:2c:c4:81:ea:32:
de:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:AE:15:0D:78:B4:28:AA:AE:38:3C:F3:52:C7:DE:60:8B:F5:53:9A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4C3C2564187E11F18DA00797DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.96.0/20
45.205.16.0/20
45.207.192.0/19
Signature Algorithm: sha256WithRSAEncryption
76:be:80:6e:4c:15:b7:1e:92:4c:17:fd:77:94:02:b5:57:a1:
03:5c:c5:ec:c9:1d:8e:b9:68:55:7a:9e:69:fa:8d:8c:f2:fb:
51:e8:61:9d:8c:34:d1:8f:72:31:3e:11:b1:3a:65:ed:96:fd:
f8:c7:1a:1e:36:63:3c:ce:21:13:dc:ca:da:5e:94:89:17:ef:
7f:94:33:7a:b6:88:da:44:05:6f:0a:c9:4d:dd:e4:91:c5:d3:
83:e1:e2:ec:8b:8a:8b:0b:7e:f7:2d:df:a7:21:5d:5a:99:3c:
4b:b3:fc:ee:10:c2:dd:28:e1:b4:cd:6b:f2:bb:bc:9d:cd:bc:
c5:24:40:ca:1a:d7:cb:8b:e2:42:95:e2:27:a8:17:55:f6:18:
a9:07:25:d0:13:00:f4:b3:ad:e0:59:8b:95:75:9c:de:72:1c:
23:43:d1:45:8f:d6:c6:3e:f4:50:32:91:ce:fa:56:00:be:df:
23:07:49:3d:59:8e:46:b7:77:55:c8:aa:27:bf:b4:cd:12:71:
e2:42:62:86:e4:ec:d1:d1:d5:de:50:39:4b:c6:d9:f4:2f:79:
a3:d0:29:e5:8b:3c:2c:4b:ba:83:34:eb:f2:19:72:13:5b:4b:
b9:f8:21:52:6b:ac:d9:6c:27:72:ca:2d:f4:8f:88:08:fe:46:
bc:31:99:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:15:43 2026 by rpki-client