Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/903B472E195811F1838C4FD1DAE4EC9C.roa
File: 903B472E195811F1838C4FD1DAE4EC9C.roa (raw, json)
Hash identifier: feFetxZahzpfbDEy3a5lMi+jvYTXRJt1cScEvyeTZl8=
Subject key identifier: E8:F7:AE:6B:C3:0E:18:13:8D:4B:6C:D9:D6:68:CA:2A:B9:8A:17:C2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A2FD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/903B472E195811F1838C4FD1DAE4EC9C.roa
Signing time: Fri 06 Mar 2026 12:32:40 +0000
ROA not before: Fri 06 Mar 2026 12:32:35 +0000
ROA not after: Sun 12 Apr 2026 12:32:35 +0000
asID: 134548
IP address blocks: 45.207.22.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 27 Mar 2026 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107261 (0x1a2fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 6 12:32:35 2026 GMT
Not After : Apr 12 12:32:35 2026 GMT
Subject: CN=69aac968-898d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:d3:25:a9:48:36:e0:24:1b:b6:0e:79:be:65:
f7:c0:20:62:31:de:18:1c:8f:0d:ed:9e:32:d5:d2:
74:fa:88:fc:95:e0:46:8b:c8:80:34:af:1f:15:d5:
07:45:82:08:e5:02:c8:42:22:67:63:71:35:c4:26:
b9:db:dc:9a:88:8e:6c:5e:4b:30:5f:6e:cb:92:aa:
ee:be:23:3c:91:b1:99:d7:22:98:dc:0c:c7:57:5f:
6b:f2:58:c2:e4:8d:d9:c8:45:17:14:e7:d0:9a:d8:
17:2f:4f:09:9f:45:a2:8b:ba:c2:24:07:a6:7c:ec:
17:e7:61:07:97:53:ca:66:5c:4c:83:0e:bb:40:16:
0f:91:a4:ac:a4:d7:13:12:61:e0:1d:8a:9d:80:fe:
80:e3:8a:e8:a5:27:58:0a:7d:82:9c:62:fc:7e:a4:
10:35:71:bb:31:de:c9:ce:be:d3:34:f7:15:8d:ec:
5c:be:1d:f8:76:f2:2a:a3:07:09:18:18:41:6f:e9:
0a:fd:ef:06:f6:1d:9f:95:89:c8:88:9c:8d:b9:9e:
3a:ed:56:45:2d:9c:35:2a:d3:8e:a1:91:60:ee:7f:
47:2d:b1:08:5b:ea:d6:1c:a5:50:1d:7d:13:6e:a9:
b6:95:5a:50:fe:a6:93:a7:3b:da:a7:e0:fd:03:84:
2c:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:F7:AE:6B:C3:0E:18:13:8D:4B:6C:D9:D6:68:CA:2A:B9:8A:17:C2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/903B472E195811F1838C4FD1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.22.0/23
Signature Algorithm: sha256WithRSAEncryption
31:86:85:ad:b7:ff:ff:06:06:b7:43:6b:2e:f6:3c:6f:a8:42:
6d:04:80:f4:50:df:f2:99:ff:83:ad:13:30:e6:65:fa:55:ae:
69:1e:40:25:8b:ad:44:fa:47:d2:de:5a:83:21:f1:b2:f5:c4:
d5:75:f5:95:01:e4:a9:98:f0:10:ef:eb:80:3c:61:eb:61:1f:
81:77:4d:cb:5d:62:56:20:9c:05:db:ed:74:7e:f4:7b:9a:2d:
34:62:95:8e:15:1f:31:cd:ef:a2:c1:7b:28:cc:cd:63:38:6c:
0f:48:b1:38:f1:42:6c:f5:8d:c3:7f:6a:18:d0:d7:ab:42:05:
d3:b8:f9:ac:d2:ed:82:c2:02:31:fd:33:b1:c6:68:27:48:70:
4e:69:d8:ce:d2:90:b9:33:60:af:04:0b:52:db:2f:0d:98:01:
70:92:c3:52:74:ea:61:bc:76:90:cf:91:f4:2c:ef:da:fb:6d:
f7:96:80:82:71:ab:0d:ce:2c:24:91:1e:12:6f:10:28:f9:32:
57:10:08:7c:4c:8d:bf:c1:98:97:e4:d4:e4:be:76:dd:82:dc:
56:f3:cc:6f:a3:4d:f6:04:1a:b2:fc:ff:ba:93:1e:b4:2e:0b:
96:6f:91:cc:67:91:2c:d8:ac:a8:d5:85:9b:37:a1:28:5c:88:
01:4c:d7:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:10:23 2026 by rpki-client