Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E9EFA384187F11F1A75C729FDAE4EC9C.roa
File: E9EFA384187F11F1A75C729FDAE4EC9C.roa (raw, json)
Hash identifier: r+0hK9c62zQHqJJnKVi4atwPLy45ZSutHz4hTjbAJbQ=
Subject key identifier: B9:0A:E2:B4:93:1A:6C:FB:F5:64:D4:7E:96:D0:8B:28:13:EF:99:8B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A2AD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E9EFA384187F11F1A75C729FDAE4EC9C.roa
Signing time: Thu 05 Mar 2026 10:41:49 +0000
ROA not before: Thu 05 Mar 2026 10:41:45 +0000
ROA not after: Wed 22 Apr 2026 10:41:45 +0000
asID: 142032
IP address blocks: 45.205.24.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 23 Mar 2026 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107181 (0x1a2ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 5 10:41:45 2026 GMT
Not After : Apr 22 10:41:45 2026 GMT
Subject: CN=69a95ded-c6ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:59:9f:f1:15:ef:b0:50:a2:e4:6b:78:93:e5:
7d:1f:45:3b:41:33:70:d6:37:3e:f9:0e:9b:7f:17:
ce:c3:e2:5d:b7:59:3f:df:33:85:84:fc:62:e9:08:
6c:80:8c:bd:b2:0b:21:e6:27:09:de:44:7b:5f:cc:
fa:f0:0b:f7:da:36:9f:af:64:56:8b:c6:f8:2a:e5:
61:fa:28:4f:9f:3f:73:ff:1b:10:c0:a6:8f:1e:3b:
8c:e0:45:9f:49:2f:2f:2e:6e:f5:c0:90:b2:38:f9:
23:ca:56:3d:d7:ce:91:4d:c4:72:99:62:30:87:1d:
a4:ab:1f:78:e8:cd:21:a6:ab:54:88:54:dd:e5:4c:
ce:02:f7:d2:04:91:84:26:a7:db:71:6a:16:9e:5d:
40:ca:82:e8:0e:93:98:1b:34:94:f4:cb:3b:1a:19:
01:8a:8f:44:e9:bb:e2:f2:5a:38:85:45:49:ce:40:
81:91:f1:ad:2d:55:5b:7f:d2:a4:74:0f:68:53:fd:
ce:11:7b:59:8c:b0:ec:26:c2:16:7f:36:92:af:1d:
8c:31:86:b5:5a:b0:81:59:23:7b:30:32:26:c1:56:
76:71:53:90:cc:64:74:6b:ec:be:83:b9:ea:9f:ef:
0a:6d:0e:a7:44:af:b1:5b:57:4c:01:6a:ab:4a:7a:
32:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:0A:E2:B4:93:1A:6C:FB:F5:64:D4:7E:96:D0:8B:28:13:EF:99:8B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E9EFA384187F11F1A75C729FDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.205.24.0/21
Signature Algorithm: sha256WithRSAEncryption
33:47:38:af:ec:98:bc:7d:55:3e:07:7c:e3:43:78:86:c9:95:
7a:9c:22:9f:5e:00:26:6b:89:47:18:19:5e:4c:48:3e:43:aa:
36:f2:c5:1a:d7:f3:83:e1:66:f1:5b:28:02:c6:33:ee:62:2a:
33:64:6e:dd:b4:b1:45:39:73:ec:27:59:b8:48:3f:d9:84:dd:
f1:62:86:e0:f0:63:41:c3:20:4f:80:d2:c6:94:d4:0b:ca:51:
36:7b:6d:3d:13:b7:5f:1d:72:df:1a:e2:2a:64:1a:8a:a2:a2:
79:e7:57:58:20:92:85:31:e1:58:5c:07:b1:20:63:5d:70:e3:
0d:8b:9d:f3:bb:ac:62:05:5a:35:07:99:82:83:d2:8a:04:eb:
1f:56:5b:82:af:f5:04:70:9b:18:f1:42:38:39:5d:72:d9:72:
1c:a2:25:31:d3:8d:35:d9:39:af:51:59:7e:b8:6d:6e:8c:f2:
08:07:03:75:fd:e3:73:45:c4:0f:2c:5f:0c:88:7f:da:f4:fe:
54:d8:ca:c3:68:b4:f1:5b:90:c3:2c:fc:1e:df:1a:b7:5d:50:
d3:b7:6f:4c:61:20:0e:a8:44:db:fd:1b:9b:9d:96:72:67:df:
d0:ca:37:00:92:0b:15:90:fc:1d:41:be:56:5c:3b:d4:4f:b4:
80:e0:7a:cf
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAaKtMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwMzA1MTA0MTQ1WhcNMjYwNDIyMTA0MTQ1WjAYMRYw
FAYDVQQDEw02OWE5NWRlZC1jNmFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAu1mf8RXvsFCi5Gt4k+V9H0U7QTNw1jc++Q6bfxfOw+Jdt1k/3zOFhPxi
6QhsgIy9sgsh5icJ3kR7X8z68Av32jafr2RWi8b4KuVh+ihPnz9z/xsQwKaPHjuM
4EWfSS8vLm71wJCyOPkjylY9186RTcRymWIwhx2kqx946M0hpqtUiFTd5UzOAvfS
BJGEJqfbcWoWnl1AyoLoDpOYGzSU9Ms7GhkBio9E6bvi8lo4hUVJzkCBkfGtLVVb
f9KkdA9oU/3OEXtZjLDsJsIWfzaSrx2MMYa1WrCBWSN7MDImwVZ2cVOQzGR0a+y+
g7nqn+8KbQ6nRK+xW1dMAWqrSnoyXwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFLkK
4rSTGmz79WTUfpbQiygT75mLMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9FOUVGQTM4NDE4N0YxMUYxQTc1QzcyOUZEQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDLc0YMA0GCSqGSIb3DQEBCwUA
A4IBAQAzRziv7Ji8fVU+B3zjQ3iGyZV6nCKfXgAma4lHGBleTEg+Q6o28sUa1/OD
4WbxWygCxjPuYiozZG7dtLFFOXPsJ1m4SD/ZhN3xYobg8GNBwyBPgNLGlNQLylE2
e209E7dfHXLfGuIqZBqKoqJ551dYIJKFMeFYXAexIGNdcOMNi53zu6xiBVo1B5mC
g9KKBOsfVluCr/UEcJsY8UI4OV1y2XIcoiUx04012TmvUVl+uG1ujPIIBwN1/eNz
RcQPLF8MiH/a9P5U2MrDaLTxW5DDLPwe3xq3XVDTt29MYSAOqETb/RubnZZyZ9/Q
yjcAkgsVkPwdQb5WXDvUT7SA4HrP
-----END CERTIFICATE-----
Generated at Sat Mar 21 12:02:16 2026 by rpki-client