Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0BB820EC340811F19308AAD3CE1D38B0.roa
File: 0BB820EC340811F19308AAD3CE1D38B0.roa (raw, json)
Hash identifier: Qv6rV8DZqzpLQYWRlJ2FZdbTRejkSEkdPbrajghBHtA=
Subject key identifier: 93:F5:5C:CD:F3:B6:BC:2A:E0:B0:93:78:E7:FE:3E:4A:05:F9:AE:20
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AB4C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0BB820EC340811F19308AAD3CE1D38B0.roa
Signing time: Thu 09 Apr 2026 11:34:19 +0000
ROA not before: Thu 09 Apr 2026 11:34:14 +0000
ROA not after: Sun 10 May 2026 11:34:14 +0000
asID: 63099
IP address blocks: 45.192.14.0/24 maxlen: 24
45.196.226.0/24 maxlen: 24
45.198.226.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 14:05:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109388 (0x1ab4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 9 11:34:14 2026 GMT
Not After : May 10 11:34:14 2026 GMT
Subject: CN=69d78ebb-db04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:16:fc:8f:6c:a0:78:91:f8:50:d2:42:92:18:
d3:5f:6b:99:5b:c3:b7:96:28:93:29:ae:28:c7:4a:
aa:21:e8:a4:9c:de:9f:ca:77:9d:74:f9:ba:ba:4d:
85:1c:f9:0e:a0:37:ce:b5:7c:91:9c:40:e4:41:16:
fa:3e:74:14:ba:8c:72:70:0f:85:42:05:23:5a:3a:
72:23:19:cc:02:0c:20:74:f5:bb:83:15:1b:a4:91:
e9:39:b4:97:a8:31:bf:22:d2:f7:04:2e:fd:2a:58:
e9:3c:02:2b:77:8f:44:a9:d7:f1:ab:d1:c2:52:96:
34:62:1b:82:eb:15:51:b0:0a:94:53:b3:eb:d5:82:
36:99:bc:79:e9:37:f8:0b:3a:05:56:96:76:d2:7c:
8b:c9:d1:45:41:b6:6a:c7:1d:33:ee:8f:b2:64:68:
8e:2a:f2:fc:85:71:42:3b:e0:09:e2:4e:51:ce:af:
02:66:96:bb:59:dd:66:21:89:c8:ae:07:72:4a:c6:
ef:48:0c:1e:e1:8a:b6:7c:9f:ea:c5:9e:03:56:3a:
8f:2f:86:4d:cd:2e:34:f2:e4:a7:09:06:de:a5:87:
41:da:42:8d:20:a5:66:d5:b5:d3:fb:bd:e0:7a:e8:
eb:54:7b:e9:06:08:44:8a:99:c8:5d:b1:15:7b:a7:
6d:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:F5:5C:CD:F3:B6:BC:2A:E0:B0:93:78:E7:FE:3E:4A:05:F9:AE:20
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/0BB820EC340811F19308AAD3CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.14.0/24
45.196.226.0/24
45.198.226.0/24
Signature Algorithm: sha256WithRSAEncryption
49:58:05:b5:c7:e1:67:15:3d:1c:de:53:ea:94:28:4d:74:63:
c6:9a:9c:e6:f5:3b:df:ce:fb:38:be:2f:0b:fa:04:fd:ca:93:
62:e6:55:fc:53:71:55:7d:34:34:51:45:20:07:b8:89:fa:50:
57:ce:4e:c7:8f:4c:81:00:9b:0b:ef:5d:af:36:ed:92:ae:68:
6d:80:8d:37:a7:35:4d:5c:bb:e2:90:f1:2b:4b:2a:3b:8f:29:
35:10:12:f7:3a:41:9e:c3:3d:f1:de:23:8f:2d:dc:7d:e3:30:
aa:8c:7f:25:54:e8:ba:51:c0:14:76:db:bc:7e:65:9b:96:41:
84:02:78:b5:1f:2f:10:97:41:81:94:fd:96:58:08:7a:4f:6a:
80:d9:b5:6f:ed:78:79:28:d7:ec:7a:16:64:ea:7e:6b:fd:53:
f6:e2:20:51:58:fb:0b:79:7e:40:51:74:05:fc:40:48:5e:86:
92:d8:7c:ef:d2:6c:5e:0c:75:7e:f9:c4:90:95:5b:90:98:4a:
20:e4:1c:18:f6:b4:57:6c:09:0f:3b:2d:cd:88:89:c0:82:9c:
cd:6b:30:2f:7b:50:dd:26:ae:2a:6e:13:f8:2a:36:73:3e:28:
20:89:13:ad:fa:38:22:8a:98:a0:73:fb:0e:0d:71:d0:1e:2a:
ae:91:d5:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 21:01:38 2026 by rpki-client