Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1E0B26FC237F11F1A4CB5EC7DAE4EC9C.roa
File: 1E0B26FC237F11F1A4CB5EC7DAE4EC9C.roa (raw, json)
Hash identifier: +Ngki2THOPnkVxLvpKgJ+EyplO9DjVGI+6n9mJpda24=
Subject key identifier: 36:EA:F6:D8:A4:DB:BA:DB:45:8E:99:97:2A:A1:28:99:18:95:91:02
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A5FA
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1E0B26FC237F11F1A4CB5EC7DAE4EC9C.roa
Signing time: Thu 19 Mar 2026 10:33:50 +0000
ROA not before: Thu 19 Mar 2026 10:33:44 +0000
ROA not after: Sun 26 Apr 2026 10:33:44 +0000
asID: 140869
IP address blocks: 45.203.213.0/24 maxlen: 24
45.203.214.0/24 maxlen: 24
45.203.215.0/24 maxlen: 24
45.203.216.0/24 maxlen: 24
45.203.217.0/24 maxlen: 24
45.203.218.0/24 maxlen: 24
45.203.219.0/24 maxlen: 24
45.203.220.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 26 Mar 2026 00:26:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108026 (0x1a5fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 19 10:33:44 2026 GMT
Not After : Apr 26 10:33:44 2026 GMT
Subject: CN=69bbd10e-b767
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:33:cc:7a:a0:d7:c3:92:0d:0b:0e:e2:ce:97:
08:2c:72:69:3c:4e:27:77:13:b7:d5:22:dd:8e:b4:
bb:ed:7b:69:b2:00:0e:34:00:fd:1b:0f:cd:12:c6:
47:11:43:4f:3f:89:a0:1f:be:99:a5:6b:71:9c:bb:
c6:a1:34:ba:98:1e:27:e9:6b:62:5c:25:4a:b2:84:
f8:c6:cd:9e:fc:e7:f5:10:9e:e1:9c:c1:cd:97:77:
36:44:e2:74:87:21:92:3c:3d:cb:32:86:0d:ed:2b:
c5:c7:1a:da:80:0a:89:34:5e:a6:ae:37:c0:36:87:
c1:69:c6:bd:02:5f:76:d1:9a:49:2f:57:69:b8:61:
d4:0a:2b:17:f1:86:2b:2a:97:3c:6d:97:2f:db:93:
e2:b5:70:bf:ef:e5:91:f1:ba:9c:f5:bf:3a:ec:52:
d3:80:0f:41:42:34:0f:a1:f2:1c:85:61:58:95:ba:
97:ba:c3:51:4c:87:1a:2a:33:d6:26:e5:72:14:61:
da:8c:e5:4f:31:4b:e7:63:1a:6f:37:6d:5a:66:93:
60:45:06:b8:8f:de:9f:be:ed:de:76:04:89:61:19:
68:d6:34:93:2e:87:ce:77:42:b5:22:05:da:f0:66:
3b:dd:a4:aa:3e:da:b8:e4:f3:ec:9f:53:e2:c7:ac:
c5:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:EA:F6:D8:A4:DB:BA:DB:45:8E:99:97:2A:A1:28:99:18:95:91:02
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1E0B26FC237F11F1A4CB5EC7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.203.213.0-45.203.220.255
Signature Algorithm: sha256WithRSAEncryption
55:39:c9:28:56:45:1b:c5:76:55:20:77:b7:82:e3:13:35:64:
17:7f:4c:96:5d:df:c2:9c:24:9f:3e:a7:d1:de:26:85:d8:5f:
d0:5a:90:37:f5:c3:38:72:2d:ea:de:eb:c5:7e:7a:82:f4:d3:
83:8e:4c:d8:56:0e:da:11:20:b9:c2:a0:d4:8c:26:9f:7f:7c:
55:ff:db:cb:6e:90:1e:47:ba:3c:d1:39:f3:00:de:f7:cc:ee:
05:71:30:2a:cf:6d:8f:6c:73:9c:05:3c:8d:ab:0d:e7:c4:03:
c7:2c:63:35:1f:d8:cb:81:14:6c:18:3a:53:68:6a:6d:44:20:
57:aa:1f:c3:8b:46:c7:04:4b:2c:bc:c1:a3:ab:c7:41:f3:54:
cc:fe:7b:a8:37:ff:e9:ee:77:fe:05:cf:6e:a5:de:8d:5c:26:
da:ce:9b:da:29:32:d5:3f:b8:f6:83:df:1d:bb:ec:3d:bd:6c:
67:30:fe:c9:40:ba:84:62:cc:d3:9b:c7:9f:5b:94:a2:a3:ca:
9d:8a:ea:5c:75:fd:39:e5:35:2c:06:88:20:c3:6d:43:be:cb:
44:8a:76:c6:36:6a:96:93:a6:ce:80:1a:74:0a:82:53:e1:7c:
61:c2:8c:5f:d0:7b:eb:0e:77:c0:b6:65:1e:c7:4f:bf:c0:a3:
7b:35:a5:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 18:54:20 2026 by rpki-client