Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/08D501142E9111F191ED658CDAE4EC9C.roa
File: 08D501142E9111F191ED658CDAE4EC9C.roa (raw, json)
Hash identifier: WYiPwZhEs/YDAJJHCbSPtF2H2R8YHj17Qk1LFUcvhEc=
Subject key identifier: D1:BA:50:84:F4:78:50:37:90:C7:CB:61:60:15:46:1A:F2:09:42:28
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A945
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/08D501142E9111F191ED658CDAE4EC9C.roa
Signing time: Thu 02 Apr 2026 12:39:48 +0000
ROA not before: Thu 02 Apr 2026 12:39:43 +0000
ROA not after: Sat 09 May 2026 12:39:43 +0000
asID: 44559
IP address blocks: 45.202.198.0/24 maxlen: 24
45.202.200.0/24 maxlen: 24
45.202.201.0/24 maxlen: 24
45.202.202.0/24 maxlen: 24
45.202.205.0/24 maxlen: 24
45.202.206.0/24 maxlen: 24
45.202.207.0/24 maxlen: 24
45.202.208.0/24 maxlen: 24
45.202.213.0/24 maxlen: 24
45.204.65.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:26:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108869 (0x1a945)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 2 12:39:43 2026 GMT
Not After : May 9 12:39:43 2026 GMT
Subject: CN=69ce6394-040e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e2:20:39:76:47:15:46:e7:94:29:d8:b6:77:
9b:6c:84:d3:9a:e6:45:ad:0a:c0:bc:70:6b:25:a1:
02:86:91:28:b2:4d:1c:4d:9c:69:4e:42:df:2f:8f:
9a:53:f7:57:b6:9f:08:11:6b:34:5a:d3:a1:5d:af:
ce:ff:6d:b1:93:80:1f:4a:b0:31:08:69:8a:66:2a:
27:5b:b7:a0:ae:ad:da:a3:6b:a6:b8:99:8c:a4:c4:
78:3d:3f:9b:37:7d:01:c5:33:3c:57:7c:d2:21:57:
88:cd:db:a8:94:b7:c6:08:ea:23:da:69:47:d5:dc:
42:2f:92:79:ec:a5:d0:d0:8a:79:f5:37:55:50:f0:
d7:e4:4d:e4:2a:70:df:7e:b0:6e:78:e5:40:d6:61:
d8:23:76:77:f2:79:ca:1f:f4:7c:b0:ae:59:aa:f5:
e0:ca:35:2f:45:7d:b2:2f:6d:f2:af:6f:e5:37:25:
11:4e:a7:52:15:48:0b:1b:e1:07:19:56:ad:a0:22:
aa:13:ac:b5:68:87:41:af:e6:2d:4c:55:f2:d1:6d:
b2:fc:ef:fa:26:7b:22:b9:c0:11:09:53:c3:87:4f:
e3:c4:c8:72:6b:e5:f5:74:a4:4f:b5:1d:04:9b:b8:
9e:28:c4:79:12:00:d2:b7:74:62:02:97:60:b5:cf:
02:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:BA:50:84:F4:78:50:37:90:C7:CB:61:60:15:46:1A:F2:09:42:28
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/08D501142E9111F191ED658CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.198.0/24
45.202.200.0-45.202.202.255
45.202.205.0-45.202.208.255
45.202.213.0/24
45.204.65.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:2a:d1:1d:10:6c:1e:6b:07:f9:47:31:f0:0e:f7:cd:b6:a9:
31:8e:4c:2e:84:3e:39:f2:b3:5e:10:3b:af:a5:eb:a3:1c:c7:
d7:c7:ce:a2:67:aa:71:ea:ac:19:9c:9b:50:13:86:db:d1:29:
9c:eb:0b:2f:65:a9:a6:6d:74:42:c2:3f:73:bd:c1:b7:80:66:
ad:cc:11:39:d2:23:06:19:9d:c3:b6:11:96:59:1a:85:7e:b5:
27:ad:50:10:fb:1e:a5:05:cc:d0:cc:40:f5:15:42:b8:a3:39:
40:1a:2e:ae:e2:b1:cc:ce:cf:cc:4b:21:e6:f9:7a:72:31:88:
5e:f5:59:b5:4d:27:4b:9e:51:3d:02:d8:6b:9e:7a:56:7f:45:
9a:48:63:4d:1e:97:5b:76:8b:97:05:78:a1:6d:21:c6:55:0d:
b0:43:ad:0c:7c:67:31:52:3d:dd:4e:bb:57:b9:78:6c:dc:f2:
e2:97:aa:86:a7:0b:20:be:0a:9f:43:5f:9b:17:1b:42:95:3c:
01:f9:41:ff:3d:2b:5a:79:4e:51:01:d5:2a:01:e3:29:ac:d2:
dd:27:b7:23:f3:9a:a2:f5:e2:ab:44:45:78:a5:23:c9:6e:a1:
b8:af:26:29:4d:0d:50:0a:f0:87:b7:1c:34:1c:4c:fc:eb:c3:
af:c4:34:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 04:00:28 2026 by rpki-client