Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/003A26B0197E11F1805EA9B5DAE4EC9C.roa
File: 003A26B0197E11F1805EA9B5DAE4EC9C.roa (raw, json)
Hash identifier: Qp7UrR899dK3BAZ86Kk5Zg7jjBbHmsl9LR5tzG1V8wA=
Subject key identifier: AA:2E:11:74:BE:1D:0D:52:DF:2E:0E:F8:82:04:00:D0:CF:91:8D:5D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A317
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/003A26B0197E11F1805EA9B5DAE4EC9C.roa
Signing time: Fri 06 Mar 2026 17:00:39 +0000
ROA not before: Fri 06 Mar 2026 17:00:34 +0000
ROA not after: Sat 21 Mar 2026 17:00:34 +0000
asID: 151407
IP address blocks: 45.207.152.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 14 Mar 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107287 (0x1a317)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 6 17:00:34 2026 GMT
Not After : Mar 21 17:00:34 2026 GMT
Subject: CN=69ab0837-2d03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:90:7b:bf:b8:02:9b:bc:c9:ca:9c:e1:e2:1b:
05:88:4b:25:39:a2:ca:d2:31:b1:ef:b8:57:8a:5a:
76:8e:58:18:2c:cd:ce:46:72:78:42:7e:26:ce:0b:
5b:7b:fb:58:5a:6e:b5:be:10:a3:a8:fa:6f:27:7f:
dd:09:16:70:ed:77:88:e2:4c:e8:8b:7e:45:7e:29:
17:73:47:dd:7d:a5:61:f7:2b:df:f7:d3:10:c1:44:
6d:a3:2b:3e:e0:61:de:0a:20:c6:8b:d8:10:51:04:
e4:7e:3e:65:a7:69:0a:a9:75:5d:2d:82:ba:2d:7f:
5f:df:42:68:7f:54:72:b6:7a:f3:05:4a:94:58:45:
db:f8:2b:3b:06:ef:cd:37:40:0c:4d:38:03:1d:fb:
d7:a9:73:71:be:09:2d:3d:4b:49:e7:5d:6b:3e:b6:
5b:86:f1:5d:c5:ec:b5:ae:1e:26:d9:0c:be:84:a1:
da:1c:58:f2:83:aa:a3:f5:ee:68:40:25:41:51:56:
43:27:5b:98:4c:d5:d8:db:e2:6a:98:5a:90:d4:f5:
a9:20:45:54:ac:9d:59:39:57:4c:3d:a3:0b:7a:13:
c1:a1:66:b4:84:06:d9:a7:a8:c3:98:47:24:8a:0c:
65:6d:3c:ba:f9:41:f5:88:f3:ae:cd:28:af:70:cf:
bf:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:2E:11:74:BE:1D:0D:52:DF:2E:0E:F8:82:04:00:D0:CF:91:8D:5D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/003A26B0197E11F1805EA9B5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.152.0/23
Signature Algorithm: sha256WithRSAEncryption
ab:38:5b:f1:ce:f4:8a:76:23:b2:6a:fc:f2:96:07:f7:eb:4a:
46:d2:93:00:03:d0:60:35:14:9b:03:4b:34:55:ae:42:67:f8:
c8:76:b3:4c:88:73:14:96:a4:10:9d:de:37:79:82:75:a6:f1:
ab:d4:4d:c6:00:bb:d6:e5:b7:8e:c2:ea:ea:60:0b:ef:7a:2c:
db:0c:bb:99:c0:61:8d:6a:f9:f3:4a:3c:f2:35:7f:e8:3a:c0:
6d:22:8f:7f:b2:9d:65:ca:ac:a1:c1:d6:7a:fc:93:fa:c8:a0:
4e:01:68:70:3c:05:1c:16:74:f9:25:bd:7e:02:8f:e8:08:8e:
93:2a:f9:94:ad:ff:4a:51:c7:95:53:4f:96:75:72:22:d6:70:
50:a3:a3:11:f5:7a:3c:7c:a2:ab:42:13:6f:de:1e:72:6b:1a:
fe:af:66:2f:b6:a8:30:e7:ba:78:e7:dd:6b:c1:b1:fc:87:91:
21:b7:c2:7e:84:54:09:8c:d8:b5:ca:84:78:c5:e0:0b:eb:7c:
da:3a:6c:f6:b5:69:02:ef:89:c6:c3:39:03:d1:39:bb:69:6b:
db:d9:39:41:01:54:21:ff:ab:4f:4e:4d:31:6f:27:d2:df:53:
4f:8d:77:35:2d:e1:ba:aa:23:7f:c1:af:de:e8:3f:40:75:68:
af:35:8c:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 00:16:46 2026 by rpki-client