Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/97ED7D443FD611F1A9DAB3FACE1D38B0.roa
File: 97ED7D443FD611F1A9DAB3FACE1D38B0.roa (raw, json)
Hash identifier: rRsAwiSaZKtt4lftZn0MPUUg8YABYGzPYJEb8XyYJaQ=
Subject key identifier: A6:10:53:A3:ED:BE:C2:3C:7D:92:1B:89:79:92:41:7B:66:C8:0F:B5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AEF4
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/97ED7D443FD611F1A9DAB3FACE1D38B0.roa
Signing time: Fri 24 Apr 2026 12:10:33 +0000
ROA not before: Fri 24 Apr 2026 12:10:28 +0000
ROA not after: Sun 31 May 2026 12:10:28 +0000
asID: 44559
IP address blocks: 45.196.140.0/24 maxlen: 24
45.196.141.0/24 maxlen: 24
45.196.142.0/24 maxlen: 24
45.196.143.0/24 maxlen: 24
45.196.152.0/24 maxlen: 24
45.196.198.0/24 maxlen: 24
45.196.199.0/24 maxlen: 24
45.202.119.0/24 maxlen: 24
45.202.125.0/24 maxlen: 24
45.202.127.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110324 (0x1aef4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 24 12:10:28 2026 GMT
Not After : May 31 12:10:28 2026 GMT
Subject: CN=69eb5db9-1038
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:40:2f:f2:c3:4c:ce:07:78:ea:b1:4a:98:dd:
9b:06:2a:f7:73:2d:3f:67:c4:8b:7d:69:94:40:61:
1a:2a:45:3d:1e:11:29:d4:1a:12:40:73:45:4a:6e:
d9:42:9e:47:af:23:73:bf:40:59:bd:5e:ef:ae:53:
57:97:06:2b:15:83:83:98:2a:62:ae:43:f9:58:96:
b8:13:82:82:b0:2a:4b:63:ce:71:9c:ad:c1:52:a5:
83:95:89:96:4d:ad:23:95:96:6b:78:47:21:56:ea:
4e:b3:dd:1d:1f:87:d6:2e:7b:7a:49:8b:06:ab:e4:
6f:9a:56:89:46:eb:9f:49:ec:34:92:ca:54:4b:19:
04:6b:b4:72:6f:46:16:97:f4:a4:92:5f:f7:34:60:
d9:37:30:a7:03:7f:ba:ba:a5:ca:4a:90:ef:35:ee:
a3:3f:cf:65:ff:8c:52:ac:79:a7:9f:ba:3d:7a:de:
4a:9e:fc:7f:78:db:67:61:8f:ee:e8:51:2e:5f:90:
6e:98:17:7f:14:44:80:ff:2e:75:72:ed:c5:41:1f:
cd:98:82:0c:d8:22:8c:d3:03:49:b3:b4:95:aa:dc:
e4:78:94:b3:33:b6:6a:46:c9:2e:54:94:83:a6:ac:
d0:2a:ef:3f:af:2a:16:27:08:19:e2:10:5c:d0:1b:
c0:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:10:53:A3:ED:BE:C2:3C:7D:92:1B:89:79:92:41:7B:66:C8:0F:B5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/97ED7D443FD611F1A9DAB3FACE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.140.0/22
45.196.152.0/24
45.196.198.0/23
45.202.119.0/24
45.202.125.0/24
45.202.127.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:b4:33:6f:96:fc:ac:2b:5b:20:be:5c:7c:f2:b6:65:81:54:
4f:21:9f:0f:69:7b:fe:c5:ca:e2:9f:17:dd:e0:8c:86:35:8f:
04:0a:0f:19:8a:6c:e1:5d:71:a5:47:fc:24:42:c2:ba:52:a2:
af:d6:0d:5c:90:08:0a:e9:1a:82:4c:3e:d3:e0:c9:b5:27:1e:
4a:bd:0e:14:d2:d7:40:60:68:57:fc:2e:82:8f:22:b9:f8:46:
e1:d0:1f:fa:73:f5:03:3c:38:30:ba:fe:2b:c2:3f:22:c7:5c:
50:ca:e6:08:60:84:18:88:c2:90:6d:1c:9f:0f:bc:6f:f4:82:
6d:b9:7f:5c:ca:19:80:f9:ce:ba:fd:94:72:87:58:fa:b6:f0:
ec:46:71:73:f1:f9:66:2d:0d:53:af:36:11:45:07:55:e2:34:
6c:50:18:da:c0:e4:40:c4:e0:99:95:38:76:9e:20:60:07:55:
cb:14:53:6d:29:6a:2d:7b:09:2d:52:65:c2:1e:e3:08:cf:38:
94:8b:b4:7a:6c:f7:ee:4e:cb:98:c7:e9:21:64:e5:5d:2c:97:
10:83:30:dd:23:5d:10:8e:49:14:86:89:44:3f:fd:da:00:6e:
41:4d:d0:84:fb:87:ac:80:69:cd:e9:8d:34:3c:c8:2e:1e:17:
98:d3:e6:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 04:20:03 2026 by rpki-client