Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/466C943A187811F1AA23F4EFDAE4EC9C.roa
File: 466C943A187811F1AA23F4EFDAE4EC9C.roa (raw, json)
Hash identifier: KIedq26f3jzcQcbRg+fFnMoaIEMHvdq2AyiG3mvV1ks=
Subject key identifier: 73:97:58:8C:06:2C:CF:EF:43:6E:4F:55:0E:71:DE:26:8E:E9:29:A9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A29B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/466C943A187811F1AA23F4EFDAE4EC9C.roa
Signing time: Thu 05 Mar 2026 09:47:08 +0000
ROA not before: Thu 05 Mar 2026 09:47:04 +0000
ROA not after: Wed 22 Apr 2026 09:47:04 +0000
asID: 395886
IP address blocks: 45.205.16.0/20 maxlen: 24
45.207.192.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 25 Mar 2026 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107163 (0x1a29b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 5 09:47:04 2026 GMT
Not After : Apr 22 09:47:04 2026 GMT
Subject: CN=69a9511c-a3c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:10:03:8a:cb:23:ff:e6:44:4b:60:20:f8:0f:
05:9d:f0:1e:95:34:76:9b:d2:38:90:ce:f8:d6:21:
46:c6:24:72:ee:94:5e:c5:69:b6:5f:d2:93:63:76:
de:bc:bf:88:9f:37:28:16:92:92:5c:85:d1:66:df:
c5:62:cd:9e:7b:9c:b4:a4:ce:5f:ec:6b:ad:aa:10:
2a:6c:dd:61:be:ab:e8:00:1d:01:c8:39:ef:a0:1e:
a6:b7:12:c5:61:e2:25:6c:13:8a:46:48:93:7b:c3:
88:99:b5:4d:6c:51:45:00:fc:56:07:32:72:5d:3d:
87:57:45:7a:40:10:4f:c0:41:e3:ed:4e:71:80:3c:
ff:09:1e:2b:89:b9:2b:d7:5a:ad:64:62:92:8d:ac:
ce:e8:e1:95:b9:e7:c3:9f:ac:ce:51:95:a7:1d:d6:
77:4f:b1:0e:c3:34:e1:1b:0b:36:29:d9:4f:d3:e2:
3b:95:56:8f:b3:26:4b:53:1e:4b:b4:29:c7:e6:b6:
ed:55:6c:2c:c0:fe:b0:d6:52:f9:2d:7a:de:58:8f:
a7:ac:dc:65:61:79:0c:bd:88:90:3d:1b:f8:23:b9:
2c:13:d0:ca:96:2d:a3:4f:1e:61:66:f8:7d:35:6a:
f3:95:06:52:3e:9c:b1:b1:2e:11:fd:9d:99:ec:16:
66:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:97:58:8C:06:2C:CF:EF:43:6E:4F:55:0E:71:DE:26:8E:E9:29:A9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/466C943A187811F1AA23F4EFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.205.16.0/20
45.207.192.0/19
Signature Algorithm: sha256WithRSAEncryption
36:99:f1:dd:1e:44:75:96:ef:b3:e6:01:d2:64:2f:85:2d:df:
b5:53:88:b9:04:ab:a4:da:a5:3a:46:c5:80:64:10:f7:12:68:
18:f2:29:3a:41:ad:46:fc:c9:42:ec:ea:73:32:5f:e6:b0:98:
b9:d2:93:de:72:c0:bf:e5:97:94:55:f4:db:7a:c9:0b:e4:76:
32:6f:43:63:1f:29:5b:c8:80:74:32:d5:3a:b7:79:51:f3:07:
20:8b:14:73:a3:e2:52:fc:dc:64:14:d6:fa:9e:13:79:b2:04:
0f:99:91:9c:2b:32:ed:22:c0:04:d1:c5:de:1d:1a:b0:90:f8:
62:42:cc:7c:af:69:ef:8e:fa:c2:aa:25:60:30:a9:b6:94:c8:
81:09:0d:e1:a6:e3:13:ff:8a:8a:85:b5:3d:91:8b:e5:68:67:
c0:6c:99:55:fd:5b:68:d9:0a:f7:8e:85:b7:ee:24:6c:9a:1a:
6e:4a:38:72:23:78:76:f3:5b:b4:24:49:b0:27:d4:8d:33:fe:
c3:3c:5f:3c:f0:5d:c7:ed:b0:cd:8b:67:34:77:0c:98:62:d5:
4d:34:53:81:93:54:4e:21:6c:d0:ea:7b:e7:dc:5b:cf:73:cb:
90:86:fa:fc:7e:78:d8:d6:b1:7a:01:46:9e:26:6d:b0:3e:0c:
55:0b:1c:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 23 20:17:45 2026 by rpki-client