Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EBE71F7428F511F1BD59A9A0DAE4EC9C.roa
File: EBE71F7428F511F1BD59A9A0DAE4EC9C.roa (raw, json)
Hash identifier: /C7H611SwsdsWQSNgS0/jT7l4s+60aIEYF7XbUjY43s=
Subject key identifier: 28:63:50:8B:3B:92:59:A5:BC:FE:4C:87:76:54:18:82:70:76:6D:5F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A782
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EBE71F7428F511F1BD59A9A0DAE4EC9C.roa
Signing time: Thu 26 Mar 2026 09:26:52 +0000
ROA not before: Thu 26 Mar 2026 09:26:47 +0000
ROA not after: Thu 09 Apr 2026 09:26:47 +0000
asID: 9304
IP address blocks: 45.196.206.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 28 Mar 2026 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108418 (0x1a782)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 26 09:26:47 2026 GMT
Not After : Apr 9 09:26:47 2026 GMT
Subject: CN=69c4fbdc-3bf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:73:e4:a4:87:c1:63:85:09:45:7a:6e:f8:2f:
eb:c6:af:48:43:53:64:47:39:d3:d2:12:62:2b:18:
c6:a1:47:75:3f:a9:ae:e2:5a:1a:57:90:03:15:4f:
e8:ae:f4:be:2b:25:5f:3b:06:b4:98:27:9f:ca:f4:
9b:4c:4e:7d:6c:9e:dc:92:7f:23:b1:8b:3f:90:80:
44:48:80:8d:e6:39:83:98:fd:ac:63:94:81:8c:d8:
66:d2:cb:f3:ee:b4:df:e0:ac:6a:79:35:a6:89:05:
f1:19:02:df:0c:a5:16:99:40:5e:9f:dd:8b:98:74:
96:26:51:da:eb:01:d8:80:82:e5:ee:b0:72:f2:da:
c2:00:1d:70:a8:d5:d2:4a:9e:66:16:ce:7f:e9:b7:
10:1e:8c:8c:a4:f2:ef:79:80:91:c5:0f:a9:43:26:
24:b9:c8:7c:49:8e:0f:c6:c5:47:c6:ad:2e:3b:d5:
82:0d:f3:90:01:ab:4d:25:bf:b0:5f:e1:ee:fe:f4:
11:1c:6f:85:56:cf:c9:9a:11:44:62:f0:eb:7a:89:
57:20:a5:91:6f:05:3b:f5:3a:a3:54:58:e3:60:cf:
63:29:9e:d6:2a:9f:c9:3c:73:a9:4d:94:8b:49:03:
15:69:68:5a:1c:f1:93:60:77:76:f3:52:c8:0d:6f:
04:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:63:50:8B:3B:92:59:A5:BC:FE:4C:87:76:54:18:82:70:76:6D:5F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EBE71F7428F511F1BD59A9A0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.206.0/23
Signature Algorithm: sha256WithRSAEncryption
02:55:44:76:fe:3e:5a:af:68:cb:4d:ae:03:d6:8b:3e:d3:45:
fa:39:d2:15:8e:2d:13:93:85:c4:26:ac:5f:64:aa:0c:8e:03:
3f:b4:6c:3d:cc:bb:f1:0d:19:54:db:ec:a1:58:c0:33:24:b0:
1d:73:11:cc:3a:e5:69:76:ce:a8:35:58:8e:63:55:38:61:40:
09:83:21:63:a4:77:3c:21:59:a8:7c:73:f9:ce:92:eb:d8:e3:
35:eb:b6:50:34:4c:45:ee:49:51:e3:ea:cf:1e:ca:22:c2:fc:
c8:5a:d1:92:55:ef:5f:7d:13:4f:d9:ce:a1:1a:fe:ac:c9:0c:
d1:35:28:08:09:f7:63:ac:1a:4a:98:04:4a:7a:00:c6:8f:a6:
61:25:c8:d2:b0:19:0a:0f:92:c3:36:3e:88:73:a2:fb:8e:8e:
be:e6:05:68:a2:e8:6e:3f:cf:2c:c4:02:66:15:d4:42:fd:d3:
3d:f2:12:e1:4f:48:38:7f:20:18:32:95:57:b7:e0:8c:13:1b:
6f:77:f7:1d:ea:fd:13:21:d7:4a:92:91:22:b5:81:ab:25:06:
08:e8:a2:0c:cb:c8:61:25:2e:02:54:13:b4:45:e6:bd:35:8d:
b2:ae:18:5a:8a:b9:5f:a8:30:b0:1e:ac:fa:91:8a:29:d7:b7:
af:37:f9:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 23:39:58 2026 by rpki-client