Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8CBABD6A33EC11F19CCD33AFCE1D38B0.roa
File: 8CBABD6A33EC11F19CCD33AFCE1D38B0.roa (raw, json)
Hash identifier: /UxnBjTncN8DQS6GurkjkNU/u8FU1NvOvLY832GbAjs=
Subject key identifier: 6F:BB:60:9B:7C:A7:B3:87:63:B8:8E:34:25:0E:A6:47:C7:0F:63:8E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AB22
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8CBABD6A33EC11F19CCD33AFCE1D38B0.roa
Signing time: Thu 09 Apr 2026 08:17:29 +0000
ROA not before: Thu 09 Apr 2026 08:17:25 +0000
ROA not after: Thu 14 May 2026 08:17:25 +0000
asID: 152297
IP address blocks: 45.195.106.0/23 maxlen: 24
45.195.106.0/24 maxlen: 24
45.195.107.0/24 maxlen: 24
45.196.209.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 14:05:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109346 (0x1ab22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 9 08:17:25 2026 GMT
Not After : May 14 08:17:25 2026 GMT
Subject: CN=69d76099-58a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:f7:07:8c:ff:b4:e3:de:c6:98:32:c5:3c:18:
d3:c8:a6:be:35:4f:9f:56:15:6b:3c:2e:db:e3:65:
b3:8a:03:a7:56:3c:d6:99:ab:23:ac:66:cb:47:ba:
44:91:ec:5f:e3:70:6e:7a:fd:24:67:c9:e2:ec:39:
79:36:cd:2d:59:01:6c:1b:89:ba:87:80:90:4a:df:
be:54:38:57:1e:27:80:79:48:59:0e:3f:75:f3:b0:
52:c4:27:aa:50:e6:37:f8:0f:91:1d:92:5e:b4:c2:
d4:5f:ce:6b:5f:f5:69:3e:fa:cb:ac:7a:44:6b:eb:
4c:e8:9c:c6:34:22:dc:c4:e3:c2:eb:07:79:f0:e3:
80:28:39:3b:10:67:c9:31:20:9a:6f:ba:9e:ca:9d:
af:bf:56:69:0d:e9:2f:ef:65:b8:c9:70:64:e9:90:
99:f7:21:8b:da:59:e8:c4:fc:b4:7d:40:c6:45:45:
28:65:3a:9a:31:9b:04:c1:f4:0f:cf:56:8f:f1:23:
64:17:c8:c1:e1:4f:6d:d3:00:79:ee:1a:3d:ce:fb:
7e:1f:ef:fa:94:1b:ef:0a:7b:ce:95:95:4c:af:5b:
5f:a3:34:f5:14:77:56:8b:e3:70:5f:ee:c0:18:37:
e6:95:07:66:0a:aa:4a:f5:e5:34:38:8d:81:3d:3a:
5a:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:BB:60:9B:7C:A7:B3:87:63:B8:8E:34:25:0E:A6:47:C7:0F:63:8E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/8CBABD6A33EC11F19CCD33AFCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.106.0/23
45.196.209.0/24
Signature Algorithm: sha256WithRSAEncryption
38:21:a2:3e:d6:aa:ce:ab:4e:c9:74:c3:b5:1d:0c:a5:ca:08:
59:6e:68:73:b1:ea:f3:3e:62:24:22:de:1f:77:c2:11:c1:d3:
9e:c5:61:3c:e7:54:28:9c:26:f7:42:0b:32:b8:f7:08:ec:bd:
8b:00:a5:b0:20:3b:e7:24:c8:74:b1:fa:7f:26:02:fc:d5:71:
82:7c:a8:67:7c:fd:36:71:e6:49:fa:f9:d4:59:f0:8b:c8:20:
94:b8:42:1d:f7:cb:50:a1:ae:90:50:10:6b:7c:b6:90:18:c7:
5a:18:a2:7e:8e:c9:8a:c9:cd:27:7f:ef:41:27:f5:91:16:5a:
29:27:e5:88:59:ea:d5:0a:f8:fc:5c:66:b9:70:9e:d7:90:30:
b8:53:97:29:c5:d4:39:21:6a:08:b2:a5:b2:8e:b9:95:3c:ac:
b3:ee:f3:c5:07:73:b3:fc:b2:8f:7b:78:40:52:40:8c:a6:38:
57:f5:e6:4b:39:b4:f6:04:0f:f8:ef:ac:46:8b:59:4e:2a:26:
a2:cb:7f:e2:4c:e3:e6:60:78:ed:5a:d5:68:ab:d3:a4:79:fe:
7f:71:58:b1:b2:60:d3:38:54:c6:91:d0:8a:fd:c3:35:b9:6b:
f8:67:c7:a4:10:38:16:d5:e9:0d:ba:18:6c:2f:ff:66:81:41:
0f:c2:47:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 16:37:35 2026 by rpki-client