Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DB3A2EE417CC11F1AE7F97CEDAE4EC9C.roa
File: DB3A2EE417CC11F1AE7F97CEDAE4EC9C.roa (raw, json)
Hash identifier: w0rM1nIEPXJ29mNpVOu52Y5Uf9vY2cHPGAze/QjG9Ao=
Subject key identifier: 28:A5:11:4F:84:61:F6:69:CF:08:81:DE:46:5C:44:1D:73:D5:0F:D9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A254
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DB3A2EE417CC11F1AE7F97CEDAE4EC9C.roa
Signing time: Wed 04 Mar 2026 13:20:04 +0000
ROA not before: Wed 04 Mar 2026 13:20:00 +0000
ROA not after: Sat 11 Apr 2026 13:20:00 +0000
asID: 201814
IP address blocks: 45.194.66.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 12 Mar 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107092 (0x1a254)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 4 13:20:00 2026 GMT
Not After : Apr 11 13:20:00 2026 GMT
Subject: CN=69a83184-a1d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:bb:c2:e0:3e:b1:71:54:24:54:66:3a:88:51:
be:33:17:1b:e3:00:b7:07:03:65:6f:06:b1:bb:fd:
f2:28:8a:59:65:7a:bd:c8:67:db:8c:9a:dc:9d:35:
a8:db:3e:ce:c5:93:6f:78:e1:63:1e:7e:c3:2f:18:
fc:66:63:31:34:ec:46:82:84:40:9e:70:4d:59:2c:
f9:c1:48:df:e5:4f:4f:fe:1f:da:29:d7:65:8e:1b:
59:7e:58:43:42:60:16:90:8d:49:19:de:2c:97:92:
77:87:03:2b:35:a4:40:37:6c:b6:7f:e1:ba:b8:0d:
99:12:45:9f:3a:18:c1:16:76:ed:d4:6d:87:c0:4e:
3b:e7:9f:30:e4:67:ef:d0:3c:01:cc:ae:ea:22:38:
c9:7b:7d:d4:5d:6a:64:08:0a:5e:d1:6b:6e:80:e4:
62:08:26:b4:f8:5f:de:ab:80:f7:c4:00:22:c8:bc:
79:6b:8e:a1:2a:a2:d1:c1:83:98:94:f3:0d:79:dc:
ac:28:c6:d9:c7:af:c0:8f:6a:98:99:e1:95:38:28:
7d:58:bd:27:6e:b8:aa:14:90:44:bb:ed:c1:f7:5f:
83:7e:08:5a:34:0f:d2:c0:d6:ae:a7:03:ec:36:d1:
83:ef:93:5d:63:e2:bb:72:a0:95:65:95:fa:d9:a8:
aa:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:A5:11:4F:84:61:F6:69:CF:08:81:DE:46:5C:44:1D:73:D5:0F:D9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DB3A2EE417CC11F1AE7F97CEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.66.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:b5:60:99:3d:95:0f:f3:bd:bf:95:55:6e:22:8f:91:84:3d:
53:66:55:69:22:ab:e6:48:87:e5:68:44:1f:2e:51:8f:f0:28:
ec:6b:7d:e2:33:84:67:cd:4e:5d:6d:e2:67:38:39:27:e4:0c:
b2:ce:84:36:42:12:71:44:b0:6a:ed:62:65:49:7a:4b:f0:f0:
59:bb:a7:09:d7:a9:3b:05:20:42:ea:b0:56:ca:1e:dc:5d:c0:
0f:0e:6c:42:12:75:2a:3b:1a:52:0e:8f:be:67:8f:3c:02:67:
98:82:77:d3:a8:f4:27:f1:bb:b0:0f:0c:14:16:bb:c5:83:51:
17:e0:4c:ad:42:81:c8:ef:b7:bb:d1:bc:67:83:54:49:dc:1c:
f9:7f:b3:bb:90:4d:b1:10:20:d8:a5:c0:d0:a7:e0:b6:f0:16:
9a:7c:13:2c:d3:6e:98:c2:e3:fe:88:e6:46:8e:ae:0c:32:68:
1f:5f:21:65:6a:a4:d0:d7:f1:47:f3:99:6a:2c:f0:c4:6e:0e:
b5:46:15:d9:21:49:15:00:00:84:08:9f:65:04:41:cf:09:f1:
4c:c5:1a:88:61:47:f2:1f:02:51:18:a6:57:48:ed:2c:57:7b:
19:26:2e:ef:54:a2:50:94:2d:ae:2f:04:d0:3b:d2:7c:b7:50:
a9:c0:2f:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 10 11:55:01 2026 by rpki-client