Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EF3EB15658F111F18483D5D1CE1D38B0.roa
File: EF3EB15658F111F18483D5D1CE1D38B0.roa (raw, json)
Hash identifier: x1Yy0DAt3KplUdsF4x5JmAQV/X2r9drpOtaGYADHPhg=
Subject key identifier: BB:28:29:A1:71:DA:4C:48:68:07:9D:75:3E:19:8C:6A:13:29:16:F2
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B9E9
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EF3EB15658F111F18483D5D1CE1D38B0.roa
Signing time: Tue 26 May 2026 10:59:15 +0000
ROA not before: Tue 26 May 2026 10:59:10 +0000
ROA not after: Thu 02 Jul 2026 10:59:10 +0000
asID: 984
IP address blocks: 45.196.101.0/24 maxlen: 24
45.196.102.0/24 maxlen: 24
45.196.103.0/24 maxlen: 24
45.196.105.0/24 maxlen: 24
45.196.108.0/24 maxlen: 24
45.196.113.0/24 maxlen: 24
45.196.120.0/24 maxlen: 24
45.202.103.0/24 maxlen: 24
45.202.104.0/24 maxlen: 24
45.203.137.0/24 maxlen: 24
45.203.138.0/24 maxlen: 24
45.203.248.0/24 maxlen: 24
45.203.249.0/24 maxlen: 24
45.203.251.0/24 maxlen: 24
45.206.53.0/24 maxlen: 24
45.206.56.0/24 maxlen: 24
45.206.59.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113129 (0x1b9e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 26 10:59:10 2026 GMT
Not After : Jul 2 10:59:10 2026 GMT
Subject: CN=6a157d03-c875
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:f0:36:dc:f9:85:f0:87:b2:89:c2:d3:5f:3a:
84:03:e8:34:58:e4:43:7e:67:31:37:ba:31:b3:c9:
44:21:70:5b:14:7b:04:ea:f7:d3:5e:2e:ac:46:ab:
ac:eb:9a:1e:eb:cf:5a:7d:74:a7:4c:37:94:4b:b1:
64:cc:c1:a5:5e:82:1a:c2:db:fb:fc:3a:c4:9f:0c:
4d:09:67:b5:be:ca:8e:b8:fa:c7:e9:8c:26:1f:71:
3d:99:05:c0:e2:34:86:2e:b2:6a:97:ff:55:00:f7:
0f:09:a5:81:a0:60:37:2a:a8:00:e0:dc:f6:67:1e:
3a:55:ac:b9:22:8b:29:50:c8:cd:1e:05:26:e4:7f:
d4:ce:ea:7b:3f:8b:c4:15:e5:9a:d1:18:7f:37:de:
d0:8b:e4:30:15:49:93:ec:4f:24:43:18:61:b8:ac:
32:7c:2d:94:d9:04:fb:e0:f1:cb:b6:cb:1a:08:1b:
0f:b5:d8:1e:ba:ef:97:8b:22:8b:4d:2e:a7:f4:c6:
ec:21:3b:39:f1:2e:4f:bb:99:60:40:93:06:3f:cc:
92:86:31:5e:e4:af:a2:d3:97:b3:b7:d0:59:87:38:
20:ee:8c:b5:ec:a1:dd:74:6e:22:95:5e:dd:4b:38:
45:57:aa:91:fb:0f:95:94:63:e0:aa:79:1e:a0:c7:
b8:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:28:29:A1:71:DA:4C:48:68:07:9D:75:3E:19:8C:6A:13:29:16:F2
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EF3EB15658F111F18483D5D1CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.101.0-45.196.103.255
45.196.105.0/24
45.196.108.0/24
45.196.113.0/24
45.196.120.0/24
45.202.103.0-45.202.104.255
45.203.137.0-45.203.138.255
45.203.248.0/23
45.203.251.0/24
45.206.53.0/24
45.206.56.0/24
45.206.59.0/24
Signature Algorithm: sha256WithRSAEncryption
65:29:4e:d4:b3:1b:aa:89:da:7a:4f:4b:bd:c2:54:dd:9f:1e:
f8:72:87:fb:93:3d:cf:ed:22:8a:c6:44:ab:b8:a6:a0:4a:7f:
a9:2a:e6:b4:8c:3a:d9:ce:64:91:ff:dd:9a:26:07:34:ef:e9:
3f:5d:1b:38:a2:49:55:49:52:13:87:4a:ac:6b:7c:98:cc:25:
53:ee:b4:af:89:49:23:a4:af:ed:10:60:ec:ca:c3:94:76:c9:
6f:ab:73:96:b0:e9:64:47:19:b8:f4:dd:3e:49:ab:2a:74:fe:
f2:05:d9:ee:80:7f:2c:e7:f0:09:08:73:19:31:ba:bb:25:e7:
50:2d:78:46:7b:dc:69:86:64:a4:25:a0:bd:5c:d6:97:f6:36:
9b:f7:6e:b9:61:61:8c:85:d0:9e:c5:3f:f0:13:aa:fd:53:bc:
f2:50:a6:f1:dd:39:28:eb:57:ad:1c:18:20:2f:82:3b:c0:95:
60:5f:38:e7:1d:cc:f5:3b:f8:2a:20:3c:1b:ae:e0:75:75:29:
5a:22:ba:39:8a:52:79:57:a2:41:8d:e3:fb:98:4a:18:e2:41:
0d:ba:02:b9:5c:f0:85:8e:a8:a2:74:ce:4f:5f:5e:41:63:03:
80:e9:08:08:1b:92:c9:f9:54:75:60:c8:f7:35:07:2f:d7:f9:
da:b4:55:78
-----BEGIN CERTIFICATE-----
MIIF2zCCBMOgAwIBAgIDAbnpMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwNTI2MTA1OTEwWhcNMjYwNzAyMTA1OTEwWjAYMRYw
FAYDVQQDEw02YTE1N2QwMy1jODc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA8/A23PmF8IeyicLTXzqEA+g0WORDfmcxN7oxs8lEIXBbFHsE6vfTXi6s
Rqus65oe689afXSnTDeUS7FkzMGlXoIawtv7/DrEnwxNCWe1vsqOuPrH6YwmH3E9
mQXA4jSGLrJql/9VAPcPCaWBoGA3KqgA4Nz2Zx46Vay5IospUMjNHgUm5H/Uzup7
P4vEFeWa0Rh/N97Qi+QwFUmT7E8kQxhhuKwyfC2U2QT74PHLtssaCBsPtdgeuu+X
iyKLTS6n9MbsITs58S5Pu5lgQJMGP8yShjFe5K+i05ezt9BZhzgg7oy17KHddG4i
lV7dSzhFV6qR+w+VlGPgqnkeoMe49wIDAQABo4IC/DCCAvgwHQYDVR0OBBYEFLso
KaFx2kxIaAeddT4ZjGoTKRbyMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9FRjNFQjE1NjU4RjExMUYxODQ4M0Q1RDFDRTFEMzhCMC5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MHkGCCsGAQUFBwEHAQH/BGowaDBmBAIAATBgMAwDBAAtxGUDBAMtxGADBAAtxGkD
BAAtxGwDBAAtxHEDBAAtxHgwDAMEAC3KZwMEAC3KaDAMAwQALcuJAwQALcuKAwQB
Lcv4AwQALcv7AwQALc41AwQALc44AwQALc47MA0GCSqGSIb3DQEBCwUAA4IBAQBl
KU7Usxuqidp6T0u9wlTdnx74cof7kz3P7SKKxkSruKagSn+pKua0jDrZzmSR/92a
Jgc07+k/XRs4oklVSVITh0qsa3yYzCVT7rSviUkjpK/tEGDsysOUdslvq3OWsOlk
Rxm49N0+SasqdP7yBdnugH8s5/AJCHMZMbq7JedQLXhGe9xphmSkJaC9XNaX9jab
9265YWGMhdCexT/wE6r9U7zyUKbx3Tko61etHBggL4I7wJVgXzjnHcz1O/gqIDwb
ruB1dSlaIro5ilJ5V6JBjeP7mEoY4kENugK5XPCFjqiidM5PX15BYwOA6QgIG5LJ
+VR1YMj3NQcv1/natFV4
-----END CERTIFICATE-----
Generated at Tue Jun 2 21:07:08 2026 by rpki-client