Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2DBC3168160511F188BDE2E0DAE4EC9C.roa
File: 2DBC3168160511F188BDE2E0DAE4EC9C.roa (raw, json)
Hash identifier: YPvGpVVPXDU2E5TOZgcUMRoPOjZ1sLrbHRl8Y4RUf/M=
Subject key identifier: 80:29:AC:8C:F5:72:22:39:42:F0:CD:A7:CD:EA:3F:C2:FA:BE:C4:D2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A1A5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2DBC3168160511F188BDE2E0DAE4EC9C.roa
Signing time: Mon 02 Mar 2026 06:58:12 +0000
ROA not before: Mon 02 Mar 2026 06:58:08 +0000
ROA not after: Wed 08 Apr 2026 06:58:08 +0000
asID: 215691
IP address blocks: 45.198.54.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 06 Mar 2026 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106917 (0x1a1a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 2 06:58:08 2026 GMT
Not After : Apr 8 06:58:08 2026 GMT
Subject: CN=69a53504-2924
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b8:b6:de:50:ca:fe:2a:db:a0:27:2b:4a:68:
85:5b:86:c1:d7:58:34:ed:59:ab:14:65:ce:6c:2f:
64:e4:2d:07:2b:06:f0:e4:f8:83:94:74:63:44:2b:
e4:a3:57:0f:39:89:95:02:84:80:e6:78:33:4b:3d:
58:e5:45:87:56:7d:df:da:f1:6f:29:da:16:38:88:
f4:84:f8:51:c9:e9:4a:26:00:23:8e:f1:76:50:30:
f6:c1:1a:a9:3e:ce:eb:2e:8e:7f:0c:01:f6:c5:68:
55:10:dc:69:ee:78:97:9b:b6:ee:cb:08:8d:92:5d:
29:ac:e9:b0:00:80:2a:bb:1e:72:04:ac:c8:e7:0e:
cf:d9:67:40:a5:ef:53:75:d3:01:7e:40:c2:4e:66:
ec:17:96:34:3a:fd:5d:5f:a7:4b:2c:64:2d:9f:8c:
23:88:d4:3c:8c:fa:13:aa:90:d6:bd:7c:93:04:0a:
d7:88:40:9a:bd:bd:26:45:85:3e:b6:97:6e:df:93:
7d:d2:53:ef:53:49:75:d6:70:59:a5:c2:8d:43:04:
da:ed:26:53:7e:7a:7c:b0:90:5b:87:a0:bd:7a:6d:
a0:fd:68:48:8a:2b:71:10:d3:21:b6:7c:dc:9f:26:
ed:de:1d:53:7c:d5:1b:fe:72:38:a5:12:70:67:c6:
2f:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:29:AC:8C:F5:72:22:39:42:F0:CD:A7:CD:EA:3F:C2:FA:BE:C4:D2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/2DBC3168160511F188BDE2E0DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.198.54.0/24
Signature Algorithm: sha256WithRSAEncryption
05:ae:1f:83:85:20:e6:1a:15:7d:f4:80:53:37:1f:1f:8c:6c:
10:04:f0:02:7f:f5:4f:ab:42:bd:e8:1c:19:7b:14:17:17:32:
e4:73:77:10:d0:18:ae:30:8c:84:37:97:d2:fd:ad:33:f4:c0:
a4:2f:ac:03:58:79:6c:31:ef:98:c7:2f:4b:4d:7b:21:3d:03:
f2:b7:93:a6:58:93:89:04:ea:43:be:99:d9:45:b3:87:e1:9a:
e2:03:68:63:d2:df:9a:69:83:b4:44:88:e9:fb:cd:a5:ad:9e:
43:78:24:2d:6f:24:b6:bc:0c:20:f9:57:08:76:66:f3:04:ee:
f4:80:89:9d:d3:f6:5f:27:06:f5:f0:ad:da:23:cd:c1:d6:9c:
6c:b1:9f:1c:99:e8:26:fd:f3:b2:d3:0f:f6:4a:42:b8:7a:36:
94:46:8e:9b:78:41:88:5d:8d:ca:8b:99:7f:68:b0:d6:ab:94:
d9:f4:00:6a:cd:25:60:77:df:c7:72:14:a9:de:18:1f:bb:af:
12:88:09:25:66:e4:1c:7e:02:fc:92:42:d6:85:63:53:8c:a9:
11:49:47:0b:a7:2d:c1:b7:6a:7f:7b:78:5a:29:8a:7b:f3:d5:
48:f0:89:95:2e:f0:bb:59:a5:75:28:54:7c:5c:f0:da:06:f2:
4a:3d:41:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 4 11:16:25 2026 by rpki-client