Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B1A17F1C4AC411F1B1F10909CF1D38B0.roa
File: B1A17F1C4AC411F1B1F10909CF1D38B0.roa (raw, json)
Hash identifier: DvJhUdaUYowaj4HYTJy51iLwvAzDSZ4BGoUXlPszjPE=
Subject key identifier: E4:2F:43:69:94:03:F3:85:B3:87:C4:85:32:5B:DE:8D:F9:3C:4A:90
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B2CB
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B1A17F1C4AC411F1B1F10909CF1D38B0.roa
Signing time: Fri 08 May 2026 10:00:08 +0000
ROA not before: Fri 08 May 2026 10:00:03 +0000
ROA not after: Tue 16 Jun 2026 10:00:03 +0000
asID: 51142
IP address blocks: 45.195.139.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111307 (0x1b2cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 8 10:00:03 2026 GMT
Not After : Jun 16 10:00:03 2026 GMT
Subject: CN=69fdb428-a207
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:e0:4a:a3:08:bf:61:fb:07:51:6d:01:c4:bd:
7c:aa:a6:24:44:f8:be:af:37:d5:59:64:27:7e:a3:
3f:88:6d:f6:e2:a3:6e:cb:92:77:4b:02:e8:f6:53:
b4:69:31:02:78:32:29:bb:07:9d:33:9c:41:d7:78:
73:fb:19:09:f6:ee:51:6f:34:8d:7c:40:a7:cc:4f:
cc:77:d2:c3:a1:c2:ee:75:23:e9:1f:06:20:14:20:
ea:63:8e:ba:81:b9:74:f0:5f:05:76:d0:88:d6:1d:
e0:f7:4f:33:19:5c:13:72:44:be:ee:2d:96:56:61:
d1:4e:4b:2e:8f:a5:9a:c5:07:68:48:4e:ba:d5:91:
75:d6:53:8b:31:47:74:96:fa:d5:67:e9:19:1c:50:
35:71:df:c2:d8:c9:2c:1e:90:d0:05:bf:2d:bf:16:
89:00:24:d1:1f:b3:d5:60:64:19:b1:cd:80:53:b0:
83:7c:45:d9:53:a7:6c:70:5f:95:32:ea:0f:ed:ae:
23:58:6f:8f:df:21:35:05:fa:2c:62:87:b9:da:2f:
c0:cb:0e:b1:ef:49:38:96:09:07:53:ce:b4:66:ee:
69:3b:a7:06:65:97:f7:39:da:de:71:e8:de:6e:52:
47:2e:ec:93:7c:e6:7d:b3:f3:3a:c0:1d:62:c4:3e:
aa:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:2F:43:69:94:03:F3:85:B3:87:C4:85:32:5B:DE:8D:F9:3C:4A:90
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B1A17F1C4AC411F1B1F10909CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.139.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:8c:44:5e:9c:96:74:b9:9b:65:6f:fa:f8:2f:d4:af:f1:3b:
57:fd:17:10:62:f2:b8:7c:db:83:8a:25:e9:33:37:cb:84:be:
45:0b:8a:e0:68:5f:24:a9:6b:8f:3f:41:e9:05:e6:6c:8c:4a:
c6:50:23:26:d2:1a:a7:6f:5d:de:a3:92:55:fb:16:98:ff:78:
b3:d6:e3:a5:a6:cc:bc:b6:c8:07:44:2e:8e:13:ce:54:b6:cc:
60:a4:64:95:8a:77:9f:53:08:9a:7e:f4:9a:62:dd:d9:62:8a:
b7:76:ff:5b:f7:6c:4a:37:6e:9e:c1:a2:5d:c5:0b:ad:26:e5:
7a:23:d2:5d:78:06:52:ee:37:59:89:5c:c4:96:5e:1c:1f:8f:
dd:71:4f:a3:1d:23:22:d2:38:71:f8:c0:5d:e1:51:16:b2:be:
b5:b2:68:01:f2:e2:95:69:22:39:9c:06:dd:d4:3f:12:99:85:
d8:13:7c:21:93:03:9a:1e:0a:eb:4a:c9:83:86:c1:6c:6d:72:
6e:d0:da:23:ec:f8:04:1f:8f:c4:11:da:bf:7a:00:cd:43:dc:
2b:85:d8:7c:f1:a2:b4:a3:7b:5a:8e:ae:50:5c:dd:86:16:63:
fb:88:85:84:f3:e3:eb:eb:87:39:85:7f:88:67:2d:af:6d:26:
24:dc:49:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 11:22:21 2026 by rpki-client