Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/99E05E525D9311F198E4C4F6CE1D38B0.roa
File: 99E05E525D9311F198E4C4F6CE1D38B0.roa (raw, json)
Hash identifier: w+/BfU5f6gI8L5I6nnKcOR+oAFcHIbTZLESwornzZ6E=
Subject key identifier: 9F:F5:E6:9B:18:76:DE:93:AF:A7:C1:ED:92:FC:33:20:32:68:86:F4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01BB23
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/99E05E525D9311F198E4C4F6CE1D38B0.roa
Signing time: Mon 01 Jun 2026 08:26:35 +0000
ROA not before: Mon 01 Jun 2026 08:26:30 +0000
ROA not after: Wed 08 Jul 2026 08:26:30 +0000
asID: 201411
IP address blocks: 45.195.224.0/24 maxlen: 24
45.195.225.0/24 maxlen: 24
45.195.226.0/24 maxlen: 24
45.195.227.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113443 (0x1bb23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 1 08:26:30 2026 GMT
Not After : Jul 8 08:26:30 2026 GMT
Subject: CN=6a1d423b-5094
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:85:94:5b:66:12:cd:fd:b9:8d:7b:cc:23:0e:
c2:99:04:b2:57:7d:ba:63:fd:be:cc:df:cb:54:49:
84:c2:5b:05:21:9a:58:c6:6b:07:7f:e2:60:51:bd:
f0:69:b9:ca:5c:92:f9:6e:7f:46:3f:ba:a8:17:3c:
56:0e:c4:1f:d9:f9:1c:49:69:96:4a:b4:2b:ae:ec:
03:47:d0:1e:e3:d4:65:73:fe:71:59:41:84:df:5e:
0d:f1:d5:b6:bd:c0:60:86:50:3e:c1:1c:3a:81:34:
1c:6d:82:2e:60:47:1f:b9:f1:35:4f:17:d4:f7:af:
13:4e:e7:8c:fd:9a:6e:f2:0e:4d:c0:c7:a6:f1:45:
81:4c:e0:04:c0:a4:04:59:ea:a8:cd:da:64:3c:8d:
de:63:66:fa:d0:f9:60:90:cf:0f:c6:6c:a1:1b:28:
91:6a:8f:c8:a8:57:f4:56:77:fa:38:4d:ae:70:25:
2a:80:d7:de:fd:51:2d:2e:99:36:bd:fe:6a:16:32:
35:d5:1a:4e:ae:86:a2:a0:5c:48:9b:6f:0d:9f:48:
b5:a8:36:1f:dc:af:81:1b:ec:78:23:4a:13:e3:ba:
bb:d2:2f:40:90:ba:da:ab:07:59:2b:12:89:28:d3:
9b:5d:54:8a:91:1e:df:c1:fe:9e:98:5d:6b:50:5c:
9f:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:F5:E6:9B:18:76:DE:93:AF:A7:C1:ED:92:FC:33:20:32:68:86:F4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/99E05E525D9311F198E4C4F6CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.224.0/22
Signature Algorithm: sha256WithRSAEncryption
9c:1b:1b:24:81:c1:46:e9:1c:7f:4e:34:b1:87:68:2c:1a:a1:
0b:db:cb:ea:46:13:d2:3a:7d:b1:24:33:82:d2:be:42:fd:cf:
9c:5f:d9:8c:8e:2b:05:91:cb:4d:0a:5c:88:83:73:f8:c5:64:
b2:b3:ea:e0:bc:6f:e3:bd:ef:b5:1f:20:9d:62:65:4f:30:71:
f4:ba:40:bd:3c:16:a1:f2:39:37:6b:66:ed:5a:24:94:3b:b5:
a8:9e:a0:3f:85:d7:35:ab:33:95:17:a4:54:d1:61:0a:e1:72:
ee:9d:3c:db:d0:49:cc:2f:24:26:a7:86:6b:e9:19:40:c5:06:
91:60:28:73:8b:4a:f8:81:28:5c:6e:e3:12:f0:c2:8f:e1:0c:
c2:ec:19:ba:b0:21:25:4b:24:67:b6:6b:f0:f0:ef:ac:45:0e:
bd:ae:7b:06:1b:d9:b8:b8:b5:e0:96:ff:68:ad:09:b8:bd:0f:
da:e2:47:b7:23:6b:c0:49:c5:3c:6a:7a:bd:00:87:da:91:a4:
6a:72:9c:3f:0c:c6:87:cb:49:3a:db:1a:03:a4:68:f3:67:ed:
90:34:77:9d:bd:81:59:11:e6:98:90:9e:de:6b:ce:21:7f:c0:
8d:b5:9d:46:f0:38:47:8d:68:5e:1d:87:c7:25:5e:c6:0e:21:
ab:51:7a:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:07:27 2026 by rpki-client