Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/638F97FE1E1011F194BADF91DAE4EC9C.roa
File: 638F97FE1E1011F194BADF91DAE4EC9C.roa (raw, json)
Hash identifier: Q//P0lWCFIfoZWirQQ3/19/VhMXYH/wuAbSK2wFbltk=
Subject key identifier: 5F:29:3D:72:6A:08:7F:00:56:20:B0:85:F0:46:E5:00:91:BA:4A:FD
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A496
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/638F97FE1E1011F194BADF91DAE4EC9C.roa
Signing time: Thu 12 Mar 2026 12:38:36 +0000
ROA not before: Thu 12 Mar 2026 12:38:32 +0000
ROA not after: Sun 19 Apr 2026 12:38:32 +0000
asID: 6079
IP address blocks: 45.192.64.0/19 maxlen: 24
45.202.32.0/21 maxlen: 24
45.202.40.0/23 maxlen: 24
45.202.42.0/23 maxlen: 24
45.202.44.0/23 maxlen: 24
45.202.124.0/24 maxlen: 24
45.204.78.0/24 maxlen: 24
45.205.80.0/23 maxlen: 24
45.205.86.0/23 maxlen: 24
45.205.96.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 27 Mar 2026 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107670 (0x1a496)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 12 12:38:32 2026 GMT
Not After : Apr 19 12:38:32 2026 GMT
Subject: CN=69b2b3cc-86d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:6c:36:66:fe:ef:1a:fa:c9:ae:46:e0:ae:47:
cd:e7:69:f1:f9:7d:b3:7a:83:1f:81:df:5e:9c:95:
d3:c3:a8:81:29:0c:39:db:95:54:26:b5:52:03:0f:
2b:df:d1:d1:7c:03:f9:77:27:a2:df:92:bb:47:67:
bb:b9:cb:ed:97:d7:87:66:68:08:b6:ac:1d:0f:b3:
dd:64:16:c4:71:6c:e8:40:27:b7:33:f7:75:ab:8f:
cf:c9:09:0d:34:2b:8a:4e:64:87:0a:92:9e:10:92:
b0:01:34:25:a4:cd:27:78:b5:60:cd:f1:2d:5b:0f:
72:a6:a7:f1:58:fa:df:5b:db:9a:ad:1b:f4:b4:c7:
5a:fe:a8:87:60:9c:db:c7:4d:ce:ea:18:83:aa:93:
4d:99:d9:98:12:98:39:a7:6e:13:3c:47:30:ac:62:
1b:1e:74:2b:44:80:41:b7:e6:5a:8e:36:61:7c:d0:
0b:d5:b6:0f:9a:09:27:2d:92:46:80:bb:77:25:ef:
b6:7d:ca:ff:8a:33:a1:11:aa:26:0b:9c:ab:d2:71:
10:a1:f3:3a:55:e0:c3:e5:e4:91:ed:37:48:14:e0:
de:5a:e8:b3:a1:bb:02:f0:41:f4:6a:ec:90:92:5c:
b8:95:ba:b5:74:01:4c:60:54:8e:a3:a5:bc:c7:da:
f9:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:29:3D:72:6A:08:7F:00:56:20:B0:85:F0:46:E5:00:91:BA:4A:FD
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/638F97FE1E1011F194BADF91DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.64.0/19
45.202.32.0-45.202.45.255
45.202.124.0/24
45.204.78.0/24
45.205.80.0/23
45.205.86.0/23
45.205.96.0/23
Signature Algorithm: sha256WithRSAEncryption
98:a0:cf:4d:8c:11:88:d6:d1:96:e3:f7:e3:59:ca:5b:d1:95:
a1:d3:5a:5b:40:1a:73:ca:e6:bf:57:f3:54:f5:2f:53:c9:2c:
87:5e:9b:84:8f:01:49:ef:53:62:e4:bb:f0:95:db:e8:3f:ad:
31:bc:4e:2c:e4:1a:e6:c0:36:dd:28:f0:08:be:cd:21:1c:92:
bf:c5:7f:27:af:58:62:fc:87:ee:a0:8f:24:78:ae:4c:d9:49:
c0:17:f2:16:ad:0e:86:79:3d:48:9f:4f:07:ab:58:84:19:4e:
60:f2:03:0a:e5:ae:1c:e9:35:78:90:26:79:33:1d:9e:f0:37:
4c:27:6f:22:ca:dd:0c:b1:26:45:19:40:1d:81:10:2b:34:1f:
ca:67:5c:a4:28:1d:71:42:3a:0d:4a:a5:1f:c3:a7:ed:91:0e:
5e:ad:b4:f9:4b:21:a4:2e:39:b9:03:0c:2a:62:39:22:30:41:
db:f1:a8:36:b8:c4:c2:98:36:6a:d6:1d:fd:48:95:d3:fe:0f:
4d:30:2a:e7:dd:56:a6:bb:c8:b5:37:e6:33:ec:ed:81:fe:18:
e1:a2:fc:02:cf:21:b7:18:ee:ee:cc:94:60:ce:9d:07:e9:ec:
f0:c5:34:1f:f4:16:13:8e:06:f8:49:e3:a1:3e:a9:7d:f9:60:
65:95:c2:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:11:01 2026 by rpki-client