Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/68D6758E1C8A11F1872442A9DAE4EC9C.roa
File: 68D6758E1C8A11F1872442A9DAE4EC9C.roa (raw, json)
Hash identifier: qN7qA/lCU5lBi8zgTOASCd0RRbZCEt+rnJFJfM9RmAY=
Subject key identifier: A9:3E:01:91:55:7E:D7:F5:E0:CC:BE:17:17:82:99:70:E4:1E:C6:79
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A3DA
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/68D6758E1C8A11F1872442A9DAE4EC9C.roa
Signing time: Tue 10 Mar 2026 14:07:02 +0000
ROA not before: Tue 10 Mar 2026 14:06:56 +0000
ROA not after: Fri 17 Apr 2026 14:06:56 +0000
asID: 139613
IP address blocks: 45.194.85.0/24 maxlen: 24
45.195.60.0/24 maxlen: 24
45.195.62.0/24 maxlen: 24
45.195.192.0/24 maxlen: 24
45.195.196.0/24 maxlen: 24
45.195.197.0/24 maxlen: 24
45.197.1.0/24 maxlen: 24
45.197.2.0/24 maxlen: 24
45.197.4.0/24 maxlen: 24
45.197.5.0/24 maxlen: 24
45.199.191.0/24 maxlen: 24
45.202.8.0/24 maxlen: 24
45.202.9.0/24 maxlen: 24
45.202.10.0/24 maxlen: 24
45.202.11.0/24 maxlen: 24
45.202.63.0/24 maxlen: 24
45.204.1.0/24 maxlen: 24
45.204.64.0/24 maxlen: 24
45.204.71.0/24 maxlen: 24
45.207.163.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 27 Mar 2026 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107482 (0x1a3da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 10 14:06:56 2026 GMT
Not After : Apr 17 14:06:56 2026 GMT
Subject: CN=69b02585-1ddd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:32:6f:f9:5d:85:18:6b:aa:43:ae:6c:02:76:
a3:9d:cf:c5:45:42:e9:83:d0:48:d0:d0:d9:63:14:
5c:15:60:49:78:4d:05:75:d5:14:2e:e0:75:00:f3:
77:5f:b9:19:72:4e:8c:04:2c:e9:50:c2:97:40:b1:
3a:21:74:a5:cb:67:24:1b:da:53:e5:fa:08:27:03:
e5:3b:91:f2:4b:15:4e:a7:d1:a6:45:39:13:ae:4e:
4f:0a:e7:46:05:b6:22:b2:ee:45:50:d5:ed:fb:a0:
1b:2c:53:6c:95:6d:49:3d:b4:00:b4:82:bc:31:8a:
2f:44:a8:04:bd:5d:d4:9f:b8:3e:51:e4:12:2b:57:
65:81:b3:0b:3f:92:75:ae:11:14:eb:3e:6b:29:6a:
4f:46:76:b0:1f:ed:72:12:02:db:fd:8e:70:b2:eb:
38:36:03:7f:34:00:4b:d9:c8:fb:56:26:05:1f:88:
6a:08:93:6f:94:e0:1b:09:d5:20:4b:a8:cf:72:97:
43:e4:82:c4:45:e2:67:e8:1b:82:a3:5d:dc:c2:68:
35:50:07:bd:7a:3f:04:58:21:86:09:dd:31:08:75:
a6:29:62:f3:f8:3d:4a:e0:9a:a7:4d:9b:4e:a4:ff:
cc:f8:6e:3b:75:57:8e:d7:f9:94:a7:5e:9a:9a:e5:
f5:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:3E:01:91:55:7E:D7:F5:E0:CC:BE:17:17:82:99:70:E4:1E:C6:79
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/68D6758E1C8A11F1872442A9DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.85.0/24
45.195.60.0/24
45.195.62.0/24
45.195.192.0/24
45.195.196.0/23
45.197.1.0-45.197.2.255
45.197.4.0/23
45.199.191.0/24
45.202.8.0/22
45.202.63.0/24
45.204.1.0/24
45.204.64.0/24
45.204.71.0/24
45.207.163.0/24
Signature Algorithm: sha256WithRSAEncryption
64:3b:ae:73:06:f0:c6:d9:48:84:bf:66:e8:c2:55:22:bb:ac:
67:ff:62:98:e7:bc:bb:7e:d3:fa:ad:ef:f4:81:55:67:7e:08:
4d:ff:11:fc:29:c4:1c:89:b1:97:92:48:75:ec:93:cb:e4:88:
54:64:0f:fb:08:ff:9d:17:c3:49:06:5c:3c:42:08:5e:5f:f0:
35:b2:f3:b7:3c:a6:cb:6f:33:2b:89:49:01:87:74:69:84:1f:
29:98:d8:b1:4e:04:cb:4e:9b:db:1b:04:1c:7e:3c:e2:95:64:
08:0a:39:80:81:39:83:7d:87:87:d3:a0:79:28:eb:54:ff:df:
c7:50:92:ee:5d:b7:06:c4:ee:67:6f:d4:e3:82:91:b2:4e:a9:
3b:db:71:5e:21:52:ef:17:bf:3e:2b:ac:d7:81:cd:d9:55:88:
35:a2:28:d9:f5:e1:d4:28:6a:62:fb:7d:cf:70:6e:2a:6c:59:
a4:9c:89:a7:d9:1d:9a:71:c5:2d:7c:77:85:c7:87:c5:8a:3c:
d1:f3:93:49:a3:48:22:bc:89:fd:44:76:45:bf:1b:f1:46:ae:
9a:21:9e:4d:07:fa:65:f4:a1:6e:2e:24:e3:af:05:e9:51:02:
bd:80:9c:94:f7:6f:56:46:06:bb:23:47:7f:46:26:85:6f:e0:
ea:06:e1:4d
-----BEGIN CERTIFICATE-----
MIIF1zCCBL+gAwIBAgIDAaPaMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwMzEwMTQwNjU2WhcNMjYwNDE3MTQwNjU2WjAYMRYw
FAYDVQQDEw02OWIwMjU4NS0xZGRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAqzJv+V2FGGuqQ65sAnajnc/FRULpg9BI0NDZYxRcFWBJeE0FddUULuB1
APN3X7kZck6MBCzpUMKXQLE6IXSly2ckG9pT5foIJwPlO5HySxVOp9GmRTkTrk5P
CudGBbYisu5FUNXt+6AbLFNslW1JPbQAtIK8MYovRKgEvV3Un7g+UeQSK1dlgbML
P5J1rhEU6z5rKWpPRnawH+1yEgLb/Y5wsus4NgN/NABL2cj7ViYFH4hqCJNvlOAb
CdUgS6jPcpdD5ILEReJn6BuCo13cwmg1UAe9ej8EWCGGCd0xCHWmKWLz+D1K4Jqn
TZtOpP/M+G47dVeO1/mUp16amuX1uwIDAQABo4IC+DCCAvQwHQYDVR0OBBYEFKk+
AZFVftf14My+FxeCmXDkHsZ5MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC82OEQ2NzU4RTFDOEExMUYxODcyNDQyQTlEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MHUGCCsGAQUFBwEHAQH/BGYwZDBiBAIAATBcAwQALcJVAwQALcM8AwQALcM+AwQA
LcPAAwQBLcPEMAwDBAAtxQEDBAAtxQIDBAEtxQQDBAAtx78DBAItyggDBAAtyj8D
BAAtzAEDBAAtzEADBAAtzEcDBAAtz6MwDQYJKoZIhvcNAQELBQADggEBAGQ7rnMG
8MbZSIS/ZujCVSK7rGf/YpjnvLt+0/qt7/SBVWd+CE3/EfwpxByJsZeSSHXsk8vk
iFRkD/sI/50Xw0kGXDxCCF5f8DWy87c8pstvMyuJSQGHdGmEHymY2LFOBMtOm9sb
BBx+POKVZAgKOYCBOYN9h4fToHko61T/38dQku5dtwbE7mdv1OOCkbJOqTvbcV4h
Uu8Xvz4rrNeBzdlViDWiKNn14dQoamL7fc9wbipsWaSciafZHZpxxS18d4XHh8WK
PNHzk0mjSCK8if1EdkW/G/FGrpohnk0H+mX0oW4uJOOvBelRAr2AnJT3b1ZGBrsj
R39GJoVv4OoG4U0=
-----END CERTIFICATE-----
Generated at Thu Mar 26 00:15:45 2026 by rpki-client