Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/82EED73E19FD11F18353A6CEDAE4EC9C.roa
File: 82EED73E19FD11F18353A6CEDAE4EC9C.roa (raw, json)
Hash identifier: I0uyB2rspGKeWAtuB9cQGpdPBCDksK9CJupYCktrG/U=
Subject key identifier: C1:EE:73:A1:10:82:A0:78:38:14:20:24:15:C7:29:35:57:4F:36:8A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A326
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/82EED73E19FD11F18353A6CEDAE4EC9C.roa
Signing time: Sat 07 Mar 2026 08:13:24 +0000
ROA not before: Sat 07 Mar 2026 08:13:19 +0000
ROA not after: Sun 12 Apr 2026 08:13:19 +0000
asID: 27951
IP address blocks: 45.195.68.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 16 Mar 2026 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107302 (0x1a326)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 7 08:13:19 2026 GMT
Not After : Apr 12 08:13:19 2026 GMT
Subject: CN=69abde24-6e9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:28:87:c3:d1:17:58:a1:09:69:7b:8d:5e:ab:
5c:bd:d9:30:b7:90:c9:96:6f:d7:33:2e:86:17:5a:
37:cd:5b:bc:da:32:5f:e3:35:5c:70:c1:25:2b:df:
bb:1c:6f:2c:cf:9a:51:f2:87:c1:5f:27:c4:bd:68:
18:d4:54:d0:cb:96:3d:c6:5b:11:9d:32:0e:32:12:
90:35:46:15:19:c3:2b:ae:21:2d:8d:4b:65:03:97:
11:e6:69:d4:35:03:e0:54:b5:de:4c:3c:81:30:73:
59:eb:94:e2:2b:98:7f:f9:52:77:9e:ab:01:36:6c:
74:d0:bc:96:64:01:fd:87:40:3c:82:fa:07:2c:c6:
04:88:44:6a:7e:a2:07:5e:e5:39:3b:f7:53:8b:f3:
df:4c:26:da:6b:58:c4:55:56:59:b4:2a:b2:47:41:
83:30:bb:04:c1:02:51:63:ba:7e:73:c7:56:56:49:
f1:e7:84:f4:57:b1:ea:cd:3a:7f:ed:7d:1d:65:58:
93:9c:8f:c4:6e:88:80:2d:6a:7a:cc:16:32:35:d3:
47:33:49:e3:3e:c6:e8:8e:00:97:f5:ad:21:92:5a:
47:aa:dd:56:e0:fd:e3:91:d4:fa:91:df:da:1f:a1:
e0:80:1f:47:37:04:b6:14:6c:7a:0c:31:ac:79:a8:
25:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:EE:73:A1:10:82:A0:78:38:14:20:24:15:C7:29:35:57:4F:36:8A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/82EED73E19FD11F18353A6CEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.68.0/24
Signature Algorithm: sha256WithRSAEncryption
55:4f:99:08:01:49:26:cd:9d:eb:6e:12:18:26:28:ca:23:62:
ac:c6:c9:73:0e:9e:52:04:61:e2:ef:43:53:c7:5b:7f:e2:e3:
23:e1:d3:3e:44:40:a6:d8:0b:59:2c:28:36:f8:ca:85:e3:e2:
47:3f:a1:b1:c5:4a:92:ff:2f:2e:06:34:f6:69:51:62:6e:10:
c7:47:6e:4e:57:69:50:f4:29:c0:81:3b:ab:b8:80:2e:d1:b2:
8a:c8:db:bc:a9:c6:da:25:c7:98:1a:5d:db:81:f6:73:46:dc:
6a:65:e0:3d:c5:48:e0:93:04:37:11:2a:62:5a:7b:e4:4a:41:
da:f7:bf:84:bb:9c:4b:38:4c:66:90:1b:8c:e8:9e:ef:9a:ec:
12:1c:a8:60:c7:11:7f:a6:b2:31:de:9c:90:46:f6:ea:73:50:
90:cc:ea:e8:a2:7f:a4:65:49:13:ea:fa:fb:dc:c0:4a:ee:c8:
e8:b6:95:e8:30:f4:21:c1:b1:e5:9d:49:a0:ec:dd:4c:59:b4:
35:cc:fc:38:1e:92:df:48:45:f3:34:d4:f0:61:58:08:0a:6f:
f3:ff:8d:12:75:38:f2:50:50:aa:03:89:e1:78:a0:4f:e1:f6:
a4:5e:82:5c:60:cd:a5:52:3c:07:70:da:e1:96:23:95:52:ef:
1e:46:87:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 14 16:21:46 2026 by rpki-client