Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BD18E9F2552311F19F0DBC19CF1D38B0.roa
File: BD18E9F2552311F19F0DBC19CF1D38B0.roa (raw, json)
Hash identifier: y610P00enhnmwXgUViVrUBxEPxpBdpjqR99gFPIz7AI=
Subject key identifier: 87:5F:13:C9:1B:B6:04:C8:08:6D:6A:10:23:C0:F0:EA:46:FE:BB:E9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B732
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BD18E9F2552311F19F0DBC19CF1D38B0.roa
Signing time: Thu 21 May 2026 14:45:41 +0000
ROA not before: Thu 21 May 2026 14:45:36 +0000
ROA not after: Fri 10 Jul 2026 14:45:36 +0000
asID: 202036
IP address blocks: 45.192.112.0/24 maxlen: 24
45.192.115.0/24 maxlen: 24
45.201.16.0/24 maxlen: 24
45.201.17.0/24 maxlen: 24
45.201.18.0/24 maxlen: 24
45.201.19.0/24 maxlen: 24
45.201.20.0/24 maxlen: 24
45.201.21.0/24 maxlen: 24
45.201.22.0/24 maxlen: 24
45.201.23.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112434 (0x1b732)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 21 14:45:36 2026 GMT
Not After : Jul 10 14:45:36 2026 GMT
Subject: CN=6a0f1a95-5a66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:a0:26:e6:d4:bc:4f:05:ad:2b:e9:5f:6e:b1:
49:a4:33:2c:5f:a3:1b:ef:0b:4d:41:f5:c4:13:24:
45:3f:c9:2e:a0:a8:17:3a:0f:89:82:81:ba:41:a2:
71:d6:c7:a7:c7:9f:3b:4d:63:a1:bb:d6:59:b5:05:
2c:db:cb:32:59:1e:61:c3:e0:35:d3:8f:85:e5:08:
c8:30:44:36:21:f9:d0:84:f1:7e:c9:be:7c:cc:78:
e1:99:4f:b8:c2:21:87:43:83:95:09:69:25:e3:7d:
a1:0b:34:5c:0d:95:91:03:8b:51:1a:c2:24:ab:22:
4e:d1:c5:90:0e:23:bf:ab:73:ec:80:d3:b1:35:d4:
1c:ff:42:50:b9:87:4b:fd:22:2e:70:ac:fa:fc:ce:
4a:b6:65:57:67:83:30:f7:f6:b2:a7:b6:c3:d0:33:
ea:02:5b:fd:11:92:c9:e2:b7:d4:6f:a4:c0:25:ff:
c7:f4:7e:5f:4f:9c:8f:b5:75:9e:20:34:db:00:b0:
6e:77:85:c6:21:f1:df:67:54:54:0b:c7:5f:6d:8b:
66:1e:59:5a:47:21:b3:75:85:a3:6f:b4:0f:fd:eb:
2a:9d:d3:30:0b:3d:7f:52:73:c4:1e:34:81:10:e0:
ff:fc:4d:80:d1:c5:2b:76:ae:19:d1:e7:2e:96:c0:
32:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:5F:13:C9:1B:B6:04:C8:08:6D:6A:10:23:C0:F0:EA:46:FE:BB:E9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BD18E9F2552311F19F0DBC19CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.112.0/24
45.192.115.0/24
45.201.16.0/21
Signature Algorithm: sha256WithRSAEncryption
94:c7:4a:68:36:b0:57:70:2f:ec:85:c0:31:da:4b:eb:1c:dd:
20:e6:7a:93:94:98:cb:4f:ae:0a:0b:32:79:f2:f7:19:33:3d:
6a:6c:14:44:fd:af:44:56:6b:dc:0f:fc:c0:01:47:9a:70:3f:
85:05:a6:71:c7:b0:a4:dd:7a:70:76:bd:2a:c6:7d:3a:f3:95:
b9:99:38:1e:c4:5a:09:81:4d:40:81:41:b7:97:92:51:28:92:
0a:91:bd:63:5d:40:0f:a9:c7:b7:9a:68:a8:da:b1:ce:4b:d8:
2f:0a:cf:f1:a4:b7:6d:0b:45:21:ca:9b:4f:e5:4e:23:b7:87:
46:7c:30:67:7a:9c:27:78:4f:76:b6:c5:34:d8:7f:66:c0:e0:
a7:c5:79:9c:3f:17:28:6a:aa:25:03:a2:b3:90:74:bc:3d:08:
3d:29:1e:ae:57:f5:2b:0a:8d:fc:1c:55:89:fd:b6:60:8b:95:
58:df:67:9b:7e:a2:2a:7f:1c:9f:e9:78:0f:aa:47:d3:e6:14:
7b:ea:a1:d0:13:76:f3:ef:55:0d:21:51:d9:4f:fb:f8:5a:78:
67:7d:db:88:c3:d3:fb:1e:e3:25:b6:83:96:6c:fb:10:9f:49:
42:49:37:74:49:ea:8b:3a:42:e6:c0:b7:da:89:56:ea:96:e2:
10:d9:bc:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:14:32 2026 by rpki-client