Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/095EE7C413BD11F1BB93FFDEDAE4EC9C.roa
File: 095EE7C413BD11F1BB93FFDEDAE4EC9C.roa (raw, json)
Hash identifier: 43MLMLvSCZZcrSO38OI3tUzt6dHbapzIh+UdwTyliqY=
Subject key identifier: D2:A2:60:5A:99:F1:3B:CB:B8:BA:E4:40:F2:12:A6:EA:A9:33:65:54
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A118
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/095EE7C413BD11F1BB93FFDEDAE4EC9C.roa
Signing time: Fri 27 Feb 2026 09:16:45 +0000
ROA not before: Fri 27 Feb 2026 09:16:41 +0000
ROA not after: Sun 29 Mar 2026 09:16:41 +0000
asID: 214143
IP address blocks: 45.195.3.0/24 maxlen: 24
45.198.97.0/24 maxlen: 24
45.198.109.0/24 maxlen: 24
45.198.112.0/24 maxlen: 24
45.198.138.0/24 maxlen: 24
45.198.163.0/24 maxlen: 24
45.198.168.0/24 maxlen: 24
45.198.176.0/24 maxlen: 24
45.198.181.0/24 maxlen: 24
45.206.44.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106776 (0x1a118)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 27 09:16:41 2026 GMT
Not After : Mar 29 09:16:41 2026 GMT
Subject: CN=69a160fd-301a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:ba:1a:b3:ca:8f:cc:86:db:11:a3:52:ce:ab:
2a:f6:e0:e5:49:6f:56:c5:df:84:ca:92:d5:d1:bd:
a3:b0:1d:ea:f7:e4:11:87:0c:ab:2e:aa:9e:62:7e:
0f:f9:af:73:e3:66:08:c5:9b:b6:32:62:5f:75:c7:
c3:a3:70:78:af:6e:2a:3d:2e:ce:fa:1e:ad:78:f5:
d1:16:aa:fc:57:b5:d0:9e:e1:63:20:ea:aa:50:b0:
75:1c:70:03:cf:bb:0f:e7:b8:a8:76:87:e8:60:9a:
99:59:e3:eb:f3:2a:b1:eb:e9:94:69:c0:fb:6b:4a:
a4:70:bb:54:ac:fb:b6:2b:1c:44:61:9f:c4:db:eb:
2c:a7:22:28:e6:22:c4:ae:36:d1:3e:ff:47:de:bd:
2a:45:98:ce:a9:9d:a5:14:3f:d0:98:fb:05:da:61:
31:d8:37:8a:32:3a:dc:46:c5:8a:85:fa:41:5e:aa:
39:c4:0f:c9:b6:44:5e:02:41:23:12:9e:a0:cb:45:
3c:55:5c:10:90:00:64:72:c7:22:57:d4:5c:28:c0:
cd:b2:92:43:ff:74:21:83:22:61:33:67:02:70:2c:
77:aa:a8:9a:ba:8a:e5:3d:ba:e1:32:f2:ee:d0:ae:
b1:f3:3b:80:24:37:85:62:d8:13:07:2d:4e:2a:1b:
cb:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:A2:60:5A:99:F1:3B:CB:B8:BA:E4:40:F2:12:A6:EA:A9:33:65:54
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/095EE7C413BD11F1BB93FFDEDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.3.0/24
45.198.97.0/24
45.198.109.0/24
45.198.112.0/24
45.198.138.0/24
45.198.163.0/24
45.198.168.0/24
45.198.176.0/24
45.198.181.0/24
45.206.44.0/23
Signature Algorithm: sha256WithRSAEncryption
2b:a8:9a:3a:43:f3:a0:19:6f:2d:ea:6d:3d:1e:b4:63:54:6f:
25:2e:85:a2:0b:2a:21:43:53:bb:2c:b6:f7:70:f7:1b:5b:36:
87:96:fd:e6:b6:ee:89:80:be:42:ec:1c:b0:87:1f:a5:05:c1:
24:b9:b5:05:d3:3b:04:1d:35:41:65:31:b9:cd:4c:c2:0f:94:
2f:37:d7:3e:3f:40:e5:3b:cf:48:f4:03:be:63:bd:3f:c8:60:
bf:52:11:62:43:b0:1f:01:dc:99:86:bc:f9:ff:51:72:2a:2a:
d4:2a:34:b8:f7:81:ff:d1:1d:14:26:0b:7a:a3:6b:fa:51:30:
f5:f4:83:35:bf:e1:53:21:78:c4:a4:1a:82:f3:1c:68:74:9b:
35:8e:27:ab:ef:42:4d:1f:2b:f1:89:bf:dd:b5:d0:25:4b:8a:
d1:ea:c1:5b:01:39:14:75:1e:e2:79:1a:e8:8c:f3:0f:6e:f3:
36:f3:99:f8:fd:7d:b6:45:03:92:51:33:f1:b7:8c:89:b6:db:
c4:6b:1f:39:a6:53:0e:de:73:dd:1b:98:be:17:d9:9b:6f:9a:
6f:dd:89:f4:bb:50:a7:18:e2:bf:8b:bc:1f:40:47:7c:13:11:
57:8f:c3:08:78:99:6f:5f:fd:45:02:3b:e5:94:b1:48:ac:21:
c2:a0:c3:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:56:25 2026 by rpki-client