Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AEB496261C6C11F183123E80DAE4EC9C.roa
File: AEB496261C6C11F183123E80DAE4EC9C.roa (raw, json)
Hash identifier: yyYRQU9ryLv9/4pQ2ad34VSfnanCuU5/3xleaKOTLDU=
Subject key identifier: 9D:76:AB:E4:1C:65:DF:07:37:AF:F0:73:8A:F2:1C:C3:88:44:3A:D8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A3BC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AEB496261C6C11F183123E80DAE4EC9C.roa
Signing time: Tue 10 Mar 2026 10:34:14 +0000
ROA not before: Tue 10 Mar 2026 10:34:09 +0000
ROA not after: Fri 10 Apr 2026 10:34:09 +0000
asID: 38136
IP address blocks: 45.196.98.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 27 Mar 2026 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107452 (0x1a3bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 10 10:34:09 2026 GMT
Not After : Apr 10 10:34:09 2026 GMT
Subject: CN=69aff3a6-cc47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:33:f2:7c:0e:08:e5:b1:6d:fd:c6:0b:0c:06:
a9:37:ef:4d:41:6d:34:12:80:8b:2b:3c:a6:d2:64:
9c:d6:0a:04:e8:23:c1:6e:e4:8a:9c:f3:a3:c7:d5:
90:ca:db:89:d8:b9:9e:65:09:84:26:17:b9:a4:a2:
6b:bc:96:0d:19:9c:74:b4:d6:0d:7b:30:7d:49:0d:
0c:21:08:29:c7:fa:95:fb:dd:e5:e4:02:5b:3d:d1:
ab:24:c2:34:32:4e:a1:8f:fe:ce:3b:9c:e8:75:bd:
f7:ae:3a:ad:63:51:f6:a5:54:e2:c0:70:a9:32:e6:
75:00:a0:bd:58:6b:eb:50:6d:a4:c3:a1:95:15:1d:
19:a4:02:52:06:7c:4f:b1:aa:67:b3:4d:4f:bf:56:
7f:09:11:37:91:d2:30:53:3d:61:0a:da:88:02:f5:
08:2f:1f:0c:06:f2:a1:b1:29:b3:fe:da:4f:5d:98:
9c:1c:cc:48:55:ed:04:26:75:89:48:ef:eb:e0:d1:
8f:0a:aa:45:78:5b:36:85:2d:44:7f:f5:08:78:f4:
e0:fb:ea:ee:00:a9:02:54:04:4a:20:85:81:30:46:
15:0a:c3:bc:e4:ea:8f:41:cc:10:43:b5:d4:c5:42:
1d:1e:97:4e:49:5c:57:eb:93:c1:1e:fc:f6:48:f9:
a2:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:76:AB:E4:1C:65:DF:07:37:AF:F0:73:8A:F2:1C:C3:88:44:3A:D8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/AEB496261C6C11F183123E80DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.98.0/23
Signature Algorithm: sha256WithRSAEncryption
20:97:ef:a1:75:a0:db:73:c8:93:a6:76:17:36:ed:77:28:80:
b4:b0:91:5f:c5:86:c3:3a:99:28:04:2b:3e:78:90:ae:87:fc:
ab:b6:c3:55:3d:41:80:1c:17:2d:d5:01:1b:bf:a1:fe:55:fd:
73:a2:52:6c:57:90:7a:5c:da:66:ea:bb:a8:7b:e4:42:fd:3d:
40:d3:f8:89:46:65:53:63:0f:d8:24:f1:bf:fc:16:3c:14:97:
1b:78:88:ff:8b:8e:83:f0:6b:67:7c:7c:3b:0f:11:41:40:61:
3c:46:93:7b:84:89:6c:81:b7:d1:85:d3:d2:55:d5:e2:38:7e:
39:50:84:6f:b0:b6:3b:a3:dd:2a:09:b5:4b:18:5b:9c:5f:b1:
1b:49:1f:54:fc:17:b2:ad:d5:db:ec:fc:b9:a9:09:44:bf:1a:
34:29:66:d8:01:c4:08:ae:f9:b0:56:1b:00:92:81:79:5a:15:
6f:93:20:20:d4:09:d4:3c:d2:9f:a2:6d:70:ee:70:b8:86:04:
52:28:7c:4f:3b:b3:07:69:6f:ca:f9:fa:7d:14:6c:85:f0:5d:
b0:d3:fb:fe:e1:d4:cc:fc:a0:78:8f:76:6c:f5:e4:70:db:39:
3a:c0:77:11:13:88:87:ab:bc:c6:01:73:43:f2:0d:82:97:5b:
46:02:16:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:15:26 2026 by rpki-client