Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BB0BF1FA358D11F190DECF00CF1D38B0.roa
File: BB0BF1FA358D11F190DECF00CF1D38B0.roa (raw, json)
Hash identifier: fu3ysE1npopUa6q2HCv4FeBBIiYFKm6Wi3uGkHX+0xs=
Subject key identifier: BC:93:A1:F9:55:FD:DB:A4:8A:B9:59:09:BA:E4:4F:E8:93:24:49:8A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AC02
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BB0BF1FA358D11F190DECF00CF1D38B0.roa
Signing time: Sat 11 Apr 2026 10:03:47 +0000
ROA not before: Sat 11 Apr 2026 10:03:43 +0000
ROA not after: Sun 17 May 2026 10:03:43 +0000
asID: 139613
IP address blocks: 45.195.199.0/24 maxlen: 24
45.197.20.0/24 maxlen: 24
45.199.130.0/24 maxlen: 24
45.199.131.0/24 maxlen: 24
45.199.134.0/24 maxlen: 24
45.199.137.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 14:05:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109570 (0x1ac02)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 11 10:03:43 2026 GMT
Not After : May 17 10:03:43 2026 GMT
Subject: CN=69da1c83-e140
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b2:6b:ad:cb:84:a4:c2:9f:92:3b:09:fd:6e:
41:4b:1a:54:9c:ad:a9:8d:a5:5a:f4:3b:5d:35:a2:
43:30:f6:c1:8b:98:e2:63:b9:f5:bf:a8:cd:e2:0b:
5f:73:5c:82:75:49:d8:8f:a3:9e:0e:6d:6b:e4:a9:
0f:43:f4:dd:eb:73:79:25:34:61:7f:89:cf:07:e9:
60:3e:4e:ef:a4:9f:e9:00:7a:26:6e:bd:1d:d6:dd:
66:f1:8a:e5:ea:b3:40:63:51:61:4a:12:3e:9f:b2:
d5:90:1a:a2:19:9a:41:92:18:2f:85:96:55:30:46:
e4:8b:43:be:76:b1:a0:4b:26:bc:d6:1e:aa:36:6b:
5c:ff:2d:15:0f:5e:33:16:20:a8:bc:79:b9:a2:20:
69:5e:9e:1a:e3:c6:d8:bc:41:ec:7c:c0:a2:9c:e9:
7f:f0:a5:c9:78:c4:04:d0:e1:c4:24:ad:b7:95:9a:
ca:c0:a3:54:86:b1:b2:00:56:75:3b:ad:84:b0:00:
64:e4:6a:af:6a:cc:79:0f:8f:ff:c4:45:ee:94:0d:
d4:f7:f3:55:57:47:24:61:00:83:1a:b3:32:d7:d6:
49:ab:66:0e:ba:01:0d:92:c5:fb:93:f8:b2:78:96:
e1:09:16:ad:28:4a:cf:92:53:86:be:3a:c0:f8:ac:
f5:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:93:A1:F9:55:FD:DB:A4:8A:B9:59:09:BA:E4:4F:E8:93:24:49:8A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/BB0BF1FA358D11F190DECF00CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.199.0/24
45.197.20.0/24
45.199.130.0/23
45.199.134.0/24
45.199.137.0/24
Signature Algorithm: sha256WithRSAEncryption
22:21:a8:7b:ad:5c:e5:a0:8f:af:01:e3:d5:05:19:39:fe:99:
9e:4c:a3:47:18:06:4c:20:d5:79:fb:26:ca:8a:f3:22:13:e3:
aa:85:18:17:40:ff:a5:3a:5d:7d:1b:76:d7:75:73:f1:ef:11:
94:90:de:fe:44:46:99:f0:01:1e:dc:f5:36:70:19:49:35:4e:
fd:0b:ba:0c:20:4f:91:97:02:2d:6a:e3:d4:20:63:88:b8:ab:
d4:69:4d:c5:83:3d:d5:26:61:bc:01:e7:5b:9a:03:6c:c0:35:
1a:b1:99:4f:10:0b:ea:d8:6f:c7:c0:99:d9:3b:d2:17:ec:7c:
5a:70:e8:aa:28:11:5f:fe:01:e1:bc:8a:b2:7e:19:ee:76:85:
44:1c:3b:ab:ef:67:13:ba:cb:68:f3:fe:6a:cb:22:2c:62:a9:
59:e6:6b:8a:62:54:d6:e0:f8:9e:39:5f:03:1c:b9:1f:57:35:
fd:8d:ff:47:2d:53:66:cd:6b:b6:7a:8e:42:d3:c5:d9:0f:81:
84:09:40:a8:0f:0f:24:59:88:57:64:ae:2e:04:7b:88:5c:10:
af:47:40:d6:78:1f:f9:09:c6:fb:d1:56:09:c4:23:57:2b:a5:
1c:f1:17:1b:fb:4a:80:f3:e3:45:91:bb:44:60:99:5a:12:30:
2d:3a:d8:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 21:01:37 2026 by rpki-client