Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/25436EA8059C11F1A7C3368FDAE4EC9C.roa
File: 25436EA8059C11F1A7C3368FDAE4EC9C.roa (raw, json)
Hash identifier: l8jzh3ezTUfk//kb2s3jhBz3FbkkrfLQzYuJvV/hk+8=
Subject key identifier: 2B:12:6B:38:B0:3D:6A:A9:25:96:7E:00:A3:45:17:C3:D0:2C:27:2F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 019C72
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/25436EA8059C11F1A7C3368FDAE4EC9C.roa
Signing time: Mon 09 Feb 2026 09:46:03 +0000
ROA not before: Mon 09 Feb 2026 09:45:58 +0000
ROA not after: Mon 16 Mar 2026 09:45:58 +0000
asID: 51142
IP address blocks: 45.195.139.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 03 Mar 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105586 (0x19c72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Feb 9 09:45:58 2026 GMT
Not After : Mar 16 09:45:58 2026 GMT
Subject: CN=6989acdb-42ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:72:cb:7f:d2:59:84:ab:15:68:c7:ba:d4:15:
d0:c6:07:22:4e:f3:d6:9b:64:33:7d:00:b1:e2:60:
dd:ee:8d:ab:89:2a:8d:6c:99:c5:0f:df:58:b4:a3:
7f:8f:13:97:eb:41:13:43:aa:08:b8:8c:e8:84:88:
6b:b2:4b:a9:fa:82:89:1c:65:62:46:c6:56:87:93:
d2:54:a3:a3:4d:5f:0c:ba:31:89:da:03:7f:05:8f:
57:43:2e:87:9c:79:b3:0f:17:ea:0c:2e:29:cd:d4:
26:94:d0:eb:f8:99:9f:0b:3b:69:a8:a0:cd:7c:88:
26:13:28:1d:3e:35:cf:d9:95:87:83:44:f4:6e:4a:
d9:a7:f0:be:74:5a:07:a8:44:71:e5:c1:bb:f9:51:
c1:56:2f:39:1f:b8:e8:6d:1e:e2:db:dc:c6:fb:cb:
be:97:d3:a7:8b:96:47:f5:11:ea:64:78:67:e9:9a:
21:63:c7:5f:59:c6:f9:11:68:75:fb:e4:46:94:c2:
15:e5:0a:ae:bf:ce:5c:71:38:a0:0b:eb:94:6e:67:
09:35:db:9c:ea:4f:91:88:f8:f8:b9:bf:90:f6:ac:
18:98:89:dd:d2:6e:4c:a7:4d:95:36:60:8c:36:9c:
64:8f:44:c0:9d:a5:a7:26:09:00:01:62:ca:63:e9:
46:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:12:6B:38:B0:3D:6A:A9:25:96:7E:00:A3:45:17:C3:D0:2C:27:2F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/25436EA8059C11F1A7C3368FDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.139.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:64:35:ef:63:48:87:2c:70:a2:28:f2:20:6b:d1:19:73:ab:
ed:03:91:68:3c:28:02:aa:98:e4:2a:ac:e2:40:cf:9d:13:b8:
29:ce:31:93:7c:22:dc:51:43:81:55:0f:53:4a:3f:3a:bc:00:
b0:bc:40:34:8a:fe:fa:a4:08:7b:ea:e2:c8:36:8d:1a:3b:20:
fe:cf:ed:70:51:d9:8d:a2:6c:f9:93:e9:e9:df:48:bb:49:42:
ba:57:27:a2:fc:9c:74:d5:ec:fb:33:7a:0f:58:af:fe:d7:44:
03:52:70:5c:4d:57:b4:24:06:09:bd:b8:48:4a:59:b4:5b:1c:
cf:ef:aa:c8:24:77:df:43:c6:df:ff:0b:df:3c:ce:35:04:ae:
cc:a0:f2:a2:37:fc:ea:78:20:4f:6f:3f:bd:85:1d:9c:74:f9:
96:48:b2:ff:11:41:d9:e8:19:be:ca:cd:b1:09:06:04:99:22:
d4:6e:a4:cb:fc:ea:a1:35:b3:60:14:38:ab:c2:ed:a7:6f:33:
ff:35:e7:f9:d2:53:c6:b1:91:a2:a2:81:2f:a7:b9:24:af:cb:
5a:0c:53:c6:29:2e:81:5c:a7:a0:31:12:33:9e:21:ea:5c:b8:
e2:0f:b1:9d:57:79:4e:6e:9e:f9:3f:3f:e0:4e:ee:17:2c:b4:
77:5e:63:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 18:19:32 2026 by rpki-client