Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0135216E072711F181B9D08ADAE4EC9C.roa
File: 0135216E072711F181B9D08ADAE4EC9C.roa (raw, json)
Hash identifier: 30qLCoouAtrG9ccRogkAAcciWrOGG4kj3Fs0WF2/2Ag=
Subject key identifier: 08:6C:01:26:33:03:20:5D:13:0A:A6:56:03:CB:FB:DE:37:EA:9D:04
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 019CF5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0135216E072711F181B9D08ADAE4EC9C.roa
Signing time: Wed 11 Feb 2026 08:52:33 +0000
ROA not before: Wed 11 Feb 2026 08:52:28 +0000
ROA not after: Fri 20 Mar 2026 08:52:28 +0000
asID: 214413
IP address blocks: 45.194.87.0/24 maxlen: 24
45.194.95.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 04 Mar 2026 00:26:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105717 (0x19cf5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 11 08:52:28 2026 GMT
Not After : Mar 20 08:52:28 2026 GMT
Subject: CN=698c4351-afa6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:cc:b5:9d:c1:ce:b8:9d:24:6a:11:92:59:2b:
33:a9:6f:95:99:69:0d:31:f1:1d:0f:39:c5:3f:bc:
c4:7e:46:e6:1c:28:d2:f8:7e:86:98:d6:5b:15:66:
a6:01:5c:b5:ca:1c:a4:44:c5:4c:42:af:b9:2c:d8:
4b:cd:38:5a:f7:2d:43:99:d2:f4:ab:01:f7:42:7d:
70:97:7b:38:3f:3c:23:95:1a:7b:48:74:70:14:89:
92:fe:37:e3:70:eb:9c:d5:b9:67:50:61:b6:45:e5:
a7:98:95:a3:01:9e:7b:d9:89:fe:17:10:7f:49:c4:
84:ba:d0:db:b8:53:4a:c6:ea:bb:47:1a:d9:ca:1d:
89:10:91:d3:2e:21:63:96:36:78:47:0e:99:e4:6b:
af:4a:b1:5e:50:fc:98:2b:dc:d7:b1:77:1f:47:15:
d0:af:ca:ae:b5:8c:62:88:2d:98:1a:59:cd:67:d1:
b7:12:40:9a:b8:82:ab:19:20:c7:e6:9b:3b:a5:b5:
a9:63:bb:2e:2d:ff:ba:84:4c:29:c4:a1:64:f2:3d:
e0:c1:da:c2:2a:d4:79:11:3c:04:f9:08:f6:9f:ab:
3d:e7:8d:0c:e9:a8:4a:c4:d8:ce:85:fb:e6:22:40:
f1:60:ea:97:cb:6b:92:b3:00:ee:73:aa:d2:91:2b:
0d:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:6C:01:26:33:03:20:5D:13:0A:A6:56:03:CB:FB:DE:37:EA:9D:04
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0135216E072711F181B9D08ADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.194.87.0/24
45.194.95.0/24
Signature Algorithm: sha256WithRSAEncryption
53:ad:cf:04:15:fb:32:bb:01:dd:02:1c:0f:f8:08:b8:21:51:
7e:5d:fa:56:30:f0:3a:e6:da:90:b8:2c:37:6e:dc:95:31:df:
9e:b7:9d:ae:66:96:70:50:77:ee:63:5c:de:ee:e0:be:22:0f:
e2:7a:db:98:9b:b3:53:4a:e4:e1:5a:b7:ac:c6:20:ab:66:f9:
89:6e:cd:71:d3:52:26:75:a3:ec:3f:db:24:ed:7c:ab:55:80:
1b:8f:9a:04:06:2d:e1:27:44:f5:f9:8e:7e:bc:7b:fc:33:3f:
11:ef:f0:73:be:a0:ff:e8:a0:d0:8e:6a:7a:dc:6a:6b:05:1e:
45:2c:ab:71:36:9c:9a:e1:7b:3d:c2:42:ae:2b:46:65:3d:b9:
3b:5c:87:3b:9e:d3:81:67:3e:8e:94:61:6f:4e:30:d9:56:8e:
f8:2e:d9:70:dd:a3:92:24:33:fb:5b:08:45:c0:12:3d:97:9c:
d2:ea:18:8a:94:17:f9:fd:32:9b:47:18:84:1b:f5:c6:bf:ff:
ed:1a:0d:bd:e0:db:52:65:5b:c5:3a:1a:2d:e9:5c:6d:2a:ad:
8d:32:2a:69:96:57:9c:75:6a:b7:aa:34:82:74:2a:84:d5:32:
46:43:9d:06:cf:fd:0d:ec:f5:4d:d4:90:99:04:a0:e6:84:48:
3a:af:b2:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 14:45:26 2026 by rpki-client