Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/658E4A964A7511F198AB7D11CF1D38B0.roa
File: 658E4A964A7511F198AB7D11CF1D38B0.roa (raw, json)
Hash identifier: ti/DzZ7hppblGtNrg2NwVLnAFzXfKHYX+ozJYY80yTw=
Subject key identifier: 8D:21:07:5A:62:4B:E8:8B:8D:37:D3:28:A7:28:D8:9C:C5:8B:2E:A9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B294
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/658E4A964A7511F198AB7D11CF1D38B0.roa
Signing time: Fri 08 May 2026 00:32:30 +0000
ROA not before: Fri 08 May 2026 00:00:25 +0000
ROA not after: Sun 21 Jun 2026 00:00:25 +0000
asID: 214143
IP address blocks: 45.195.158.0/24 maxlen: 24
45.196.136.0/24 maxlen: 24
45.196.137.0/24 maxlen: 24
45.203.60.0/24 maxlen: 24
45.203.61.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111252 (0x1b294)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 8 00:00:25 2026 GMT
Not After : Jun 21 00:00:25 2026 GMT
Subject: CN=69fd2f1e-1e17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:c9:10:b7:f1:0e:6a:b5:bb:ec:8a:3e:8c:ea:
1d:b3:d7:28:f4:d2:99:c1:ca:e8:b0:9e:70:40:79:
3f:a1:65:b6:93:63:6b:7e:a8:05:d6:2f:d0:25:c6:
a8:24:d5:5a:f0:f1:a6:8f:e6:4c:02:ec:97:8f:ad:
fd:ee:5a:80:d0:df:cb:81:80:1e:79:3b:e5:4a:8e:
09:d1:1f:13:5a:f1:45:55:c0:32:75:2d:6d:0d:f6:
67:c5:a4:03:a8:1f:6f:f7:96:70:8b:43:0a:bc:8f:
81:1f:b8:7f:e8:b1:f9:41:cc:9f:8b:44:7e:c3:e2:
e9:83:1e:e8:d9:2e:dc:3d:1b:cc:11:45:6e:8d:4d:
e7:88:7f:41:83:fb:2e:fd:09:e2:2f:4e:2d:78:c2:
6c:f8:1b:28:6d:76:13:d0:79:04:d1:b2:63:5d:3b:
ab:1e:6a:ad:4e:1c:82:5f:bd:a2:ae:ac:35:aa:6a:
bb:22:e0:b8:14:e9:12:e5:5c:90:e0:e6:89:d2:a6:
39:91:5f:5a:ae:49:5d:0e:49:fb:80:f0:9a:57:1d:
48:f6:70:5d:0b:8a:30:45:52:aa:5b:c8:6f:0b:0f:
43:8c:84:50:45:64:31:e7:11:35:f7:1f:a5:8a:8c:
27:bf:42:a8:3e:48:49:22:bf:42:dd:c3:c8:bb:3a:
7b:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:21:07:5A:62:4B:E8:8B:8D:37:D3:28:A7:28:D8:9C:C5:8B:2E:A9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/658E4A964A7511F198AB7D11CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.158.0/24
45.196.136.0/23
45.203.60.0/23
Signature Algorithm: sha256WithRSAEncryption
00:f6:fd:69:68:b3:36:24:53:43:59:6c:82:dc:57:90:e6:cb:
c2:b0:2c:8f:e0:66:a0:56:23:81:4d:d7:97:1b:d3:86:c0:aa:
75:dc:6b:42:a8:73:32:18:2a:9a:fa:12:3e:f7:ed:65:ad:de:
9b:17:f1:69:07:3a:c5:b2:cb:bf:c8:be:56:4d:ab:51:63:c4:
20:c2:9c:67:01:8c:0c:ca:bd:c1:2f:7a:bc:1d:05:a4:a4:ac:
13:e0:b7:4b:41:37:8e:ac:7f:14:ed:bd:e9:a7:18:fe:87:9f:
11:e6:19:ff:f2:ef:f3:64:ad:36:0a:7b:10:86:97:a0:4b:6b:
72:1c:24:aa:ba:42:d3:db:ef:db:26:74:d7:f6:c7:f8:e0:a2:
12:5b:e8:a7:c3:d4:57:d2:12:86:fe:07:9e:ef:8b:32:52:69:
11:0d:f1:d8:9d:1f:8d:33:99:97:14:da:4c:df:66:cb:61:a2:
0b:2d:7a:44:3c:49:b2:85:46:cd:37:f8:ef:7a:f4:70:be:86:
b8:f9:2e:05:8d:3f:f4:f8:5f:90:cc:78:30:0c:fb:a8:ca:8a:
89:0d:51:b9:6b:2b:3f:0f:b9:09:71:87:be:75:5e:9b:ff:98:
12:ee:83:1a:26:44:66:0c:8f:33:c9:39:76:37:96:f5:13:dd:
10:b2:43:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 14:24:39 2026 by rpki-client