Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/96B10D90590F11F180DF6EFFCE1D38B0.roa
File: 96B10D90590F11F180DF6EFFCE1D38B0.roa (raw, json)
Hash identifier: gJN9JiszNBLuNwr4vMKonLjzmmKuNPtXHJl1ztcpt5w=
Subject key identifier: B9:94:39:64:71:B7:1F:12:37:E6:A0:4A:41:03:CB:5D:C7:00:42:B2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01BA1A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/96B10D90590F11F180DF6EFFCE1D38B0.roa
Signing time: Tue 26 May 2026 14:31:31 +0000
ROA not before: Tue 26 May 2026 14:31:27 +0000
ROA not after: Thu 04 Jun 2026 14:31:27 +0000
asID: 23764
IP address blocks: 45.195.4.0/24 maxlen: 24
45.195.5.0/24 maxlen: 24
45.195.7.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113178 (0x1ba1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 26 14:31:27 2026 GMT
Not After : Jun 4 14:31:27 2026 GMT
Subject: CN=6a15aec3-a0c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:ac:11:8a:32:ad:ee:11:c5:db:70:63:1b:c8:
c1:99:04:9d:b9:bd:cf:a2:56:42:6b:53:84:01:2a:
f5:81:58:7e:69:ee:57:03:2d:63:24:eb:c8:77:fb:
84:52:bb:24:6c:1e:fe:fe:fb:f9:d5:b1:af:db:6a:
a1:85:0a:d8:d2:5e:1d:3d:ae:d1:6b:a2:36:54:a8:
81:aa:ee:ff:b9:70:da:83:e9:c3:f2:80:91:63:a1:
12:ba:30:27:e5:cb:94:4e:3f:ae:83:5e:f6:78:95:
d8:f8:c3:be:de:a5:6f:e5:c9:9f:26:8c:3a:e7:0b:
25:9c:21:d0:dc:cd:2e:42:d7:03:35:90:f7:e7:ab:
b7:07:48:c2:9f:3b:af:be:07:e7:e3:d4:72:a2:7b:
71:e1:f1:81:a2:cc:ba:66:7a:80:f2:3d:b0:35:cd:
f8:ce:82:f3:24:98:de:8c:b1:8d:66:12:79:42:d2:
a0:95:bf:86:20:a7:28:03:74:1c:56:7f:0d:f8:b6:
a8:80:bd:b2:3d:47:f4:75:ea:b7:d7:92:56:ce:15:
d6:f4:49:1b:dc:f3:71:79:bc:eb:ad:d7:99:e8:8c:
bb:15:e6:cd:9f:ad:8c:4f:df:f0:03:cd:ca:56:df:
6c:cb:f4:6b:35:ba:65:56:c3:49:8e:f5:d2:f3:80:
50:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:94:39:64:71:B7:1F:12:37:E6:A0:4A:41:03:CB:5D:C7:00:42:B2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/96B10D90590F11F180DF6EFFCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.4.0/23
45.195.7.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:19:f9:f8:bb:c9:79:2a:f0:3a:77:98:56:ee:14:36:56:f3:
81:74:80:2c:e8:80:c0:fb:5d:fc:2d:4d:ac:53:ac:ed:5a:af:
7a:22:1e:34:bc:ee:0b:80:42:4b:76:d0:50:e3:c4:84:af:3b:
f8:e4:ad:fe:9e:db:b1:0b:5a:27:b5:77:bb:91:95:a3:19:c1:
fb:29:cf:ac:bc:0d:d3:a3:23:74:80:fa:c0:93:f4:8b:c7:55:
57:53:b8:73:79:f5:88:87:a3:10:34:ce:07:cc:4e:6a:46:4a:
05:ac:e7:ae:2e:4d:54:91:10:51:e5:0b:dd:c4:2b:60:2a:d2:
e4:a3:40:48:a4:3a:9d:6d:d3:52:70:d9:a3:5d:19:08:a3:2c:
2b:0c:c7:5d:f5:82:49:94:6d:74:65:f8:8a:ef:c2:c7:a0:06:
a4:cf:f8:03:cf:2e:4d:f1:f6:f3:17:15:bd:7a:7c:5e:f8:f6:
12:0b:12:ed:8b:73:90:5c:e2:75:52:98:5d:da:2b:cb:3b:3e:
ad:bd:46:05:fe:49:18:29:9e:2a:5a:96:20:34:0a:58:c1:dd:
53:69:27:ee:49:32:0a:11:33:60:d7:73:46:46:4d:20:d3:9e:
e7:45:2e:ac:06:3d:29:a8:dd:38:fc:67:2d:7c:8c:29:de:6f:
19:2d:96:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:07:03 2026 by rpki-client