Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8A0F2F14187711F1BA6ECBEBDAE4EC9C.roa
File: 8A0F2F14187711F1BA6ECBEBDAE4EC9C.roa (raw, json)
Hash identifier: lRbMuWQ/Bq6J4farBfy7oY6yb3YncELegF7k57AzULQ=
Subject key identifier: 63:B9:A6:BA:AE:F4:FB:96:B1:93:7B:4A:21:54:1B:74:AD:0B:3F:38
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A299
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8A0F2F14187711F1BA6ECBEBDAE4EC9C.roa
Signing time: Thu 05 Mar 2026 09:41:52 +0000
ROA not before: Thu 05 Mar 2026 09:41:48 +0000
ROA not after: Sun 12 Apr 2026 09:41:48 +0000
asID: 48266
IP address blocks: 45.207.218.0/23 maxlen: 24
45.207.220.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 09 Mar 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107161 (0x1a299)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 5 09:41:48 2026 GMT
Not After : Apr 12 09:41:48 2026 GMT
Subject: CN=69a94fe0-4820
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b7:6b:3c:e9:61:81:d5:b3:c2:a2:a9:d4:ca:
07:3b:33:fe:9a:e4:5a:79:c2:7d:02:a7:b4:fd:48:
ca:de:d7:84:c4:e6:9c:ad:71:4c:18:1f:fe:9b:22:
7d:f3:21:94:f3:e2:36:7b:76:59:20:2b:a9:9e:a2:
10:3f:dd:69:d3:da:8d:f8:ac:69:7b:a0:d9:7c:a7:
50:99:4e:73:5f:41:b1:98:35:f1:27:fe:da:9f:c6:
7a:dd:e5:ec:b2:4b:3b:6b:ba:5e:25:ea:8f:9a:90:
f3:b4:f4:96:f3:14:3d:30:8d:10:5a:f9:d1:a3:73:
3d:35:c7:92:e3:39:41:8f:73:8a:e7:aa:5c:b6:27:
36:b1:59:98:a1:e7:2e:32:61:9e:d5:61:cc:5b:40:
61:96:12:be:75:ec:c4:24:9a:92:c9:b8:d0:b7:10:
d4:96:d2:4b:83:1d:98:e9:bf:45:2a:fe:4a:2e:63:
a7:6a:1f:c6:56:d6:41:41:35:68:3a:9e:35:2d:d6:
32:48:db:70:77:72:ee:7f:0b:bd:6c:ec:6e:17:17:
ed:18:4f:7d:a5:cc:7b:dc:35:a5:43:aa:2e:d1:2c:
08:6b:55:e3:1e:9a:7d:e5:48:1e:f9:32:e4:b7:0b:
5a:5c:a2:47:92:19:0d:44:d1:09:08:0b:1b:46:d8:
57:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:B9:A6:BA:AE:F4:FB:96:B1:93:7B:4A:21:54:1B:74:AD:0B:3F:38
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8A0F2F14187711F1BA6ECBEBDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.207.218.0-45.207.223.255
Signature Algorithm: sha256WithRSAEncryption
4b:74:58:0c:b5:ff:8e:b1:55:45:cb:0f:f3:37:c8:a8:00:7b:
65:d4:d0:5d:de:43:2b:aa:9e:e1:06:b9:75:21:cb:17:a6:65:
ec:5e:d6:cc:0c:82:d8:30:d4:0f:af:63:75:27:9d:bf:16:ca:
20:1a:d4:f8:73:22:14:a9:13:c0:ee:af:9a:ca:35:e6:2a:96:
91:73:e9:f2:6f:b3:67:ae:c1:dc:8e:18:5b:c6:a5:49:5c:2f:
1b:8e:5a:93:88:bd:b1:6e:4c:e2:e6:c1:c1:14:a0:4d:25:48:
95:c8:ee:20:54:c1:0e:3f:55:ee:0a:e6:92:f3:c3:57:a1:07:
2d:55:ec:8a:d5:86:68:f8:51:e6:71:4f:dd:66:de:f7:e1:e4:
f2:3e:4b:38:21:52:48:17:93:c3:a3:74:6e:59:2f:11:f6:cf:
ae:89:94:23:e6:ed:62:8b:22:8b:d4:4e:6b:18:2d:a5:61:dc:
ab:98:5c:e9:6c:01:9d:78:df:40:b3:f2:0f:d2:06:0a:20:95:
b7:a7:02:84:12:43:af:77:cb:0c:2f:5d:5d:01:eb:e3:f9:eb:
b2:51:32:d9:98:19:81:4c:d1:25:68:76:f8:17:b8:ea:16:09:
1d:7d:4d:a9:b6:5e:ac:41:90:43:87:f6:25:0d:0d:e2:11:84:
c1:1a:38:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 7 19:49:30 2026 by rpki-client