Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D66528F4460E11F1AFB4ABE3CE1D38B0.roa
File: D66528F4460E11F1AFB4ABE3CE1D38B0.roa (raw, json)
Hash identifier: At9DUT7OP2uzMruvxVAbrq+QQN2ywD4tLjKf6cAht+U=
Subject key identifier: B9:98:B5:5B:73:D7:95:DF:4C:82:A6:90:97:F0:70:FB:22:E2:0D:12
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B145
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D66528F4460E11F1AFB4ABE3CE1D38B0.roa
Signing time: Sat 02 May 2026 10:08:18 +0000
ROA not before: Sat 02 May 2026 10:08:04 +0000
ROA not after: Tue 09 Jun 2026 10:08:04 +0000
asID: 63139
IP address blocks: 45.197.64.0/24 maxlen: 24
45.197.65.0/24 maxlen: 24
45.197.66.0/24 maxlen: 24
45.197.67.0/24 maxlen: 24
45.197.68.0/23 maxlen: 24
45.197.68.0/24 maxlen: 24
45.197.69.0/24 maxlen: 24
45.197.70.0/24 maxlen: 24
45.197.71.0/24 maxlen: 24
45.197.72.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110917 (0x1b145)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 2 10:08:04 2026 GMT
Not After : Jun 9 10:08:04 2026 GMT
Subject: CN=69f5cd12-88ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:60:c7:9c:b1:b9:48:0f:30:f9:99:e5:6c:e3:
6f:15:a9:02:15:8b:dd:59:57:bb:c5:00:16:59:7b:
4b:15:d5:52:25:d1:48:04:50:43:86:12:18:1e:ec:
48:8b:53:64:23:9a:24:67:36:1e:f3:4c:82:35:f2:
b3:63:69:62:40:ab:ce:3b:21:23:54:13:05:bf:4d:
2b:c3:90:22:3d:c3:4a:2f:8b:8b:ad:0f:27:ba:fe:
36:70:e8:0a:49:7c:f0:52:a0:de:7b:35:a7:9c:86:
ab:e0:0a:a8:58:3c:35:78:0b:51:13:96:d1:ce:64:
ba:ca:5c:1e:90:5d:0c:3c:3b:50:86:01:43:60:90:
60:69:d7:98:7c:02:16:6e:f1:a9:d4:02:34:c8:a7:
57:76:8d:d3:52:c6:c2:59:01:c5:39:72:1d:ae:d6:
b9:cf:e0:f7:3f:a1:aa:ae:26:2d:40:fc:0c:81:cc:
03:17:12:05:32:82:77:84:24:43:c3:46:8e:ea:14:
ac:cb:86:ca:a8:ea:73:a0:80:6d:55:63:12:1e:f2:
f7:9d:09:9e:80:e9:12:da:28:dc:bb:e4:c4:df:15:
11:18:de:a7:8f:de:56:8b:54:27:c1:2d:29:45:60:
a2:b7:fc:8a:7a:ef:f9:16:c5:3a:08:ae:88:c0:34:
a8:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:98:B5:5B:73:D7:95:DF:4C:82:A6:90:97:F0:70:FB:22:E2:0D:12
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D66528F4460E11F1AFB4ABE3CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.64.0-45.197.72.255
Signature Algorithm: sha256WithRSAEncryption
5c:37:f5:3f:07:a0:95:a1:b9:12:83:44:d2:8c:40:b0:7a:eb:
fc:ce:46:d4:76:ef:ac:81:24:16:c5:b9:bd:5b:e8:a9:18:83:
df:3a:2d:a7:6a:b6:92:6d:27:e1:8f:77:84:8b:eb:5a:44:27:
85:9f:15:3a:b7:01:57:22:41:9d:70:59:bd:47:bf:d6:b6:3f:
7b:7a:99:38:8f:2d:1c:16:0e:81:77:2d:74:ab:6a:fd:71:e1:
bc:c0:76:61:7d:a0:62:1d:b5:35:b1:19:ba:c9:56:f2:20:67:
8c:fc:36:10:1f:c1:a4:81:9c:30:be:77:36:a5:1a:95:12:53:
26:62:36:c9:07:e0:0c:dd:3d:63:b4:87:f6:d0:6d:bf:11:f4:
6f:e0:cb:4a:19:9d:d6:72:04:b2:d9:12:a4:64:ed:d1:24:8f:
3e:d8:b3:a5:80:09:69:71:dd:57:f0:e1:b3:a7:e8:44:76:b8:
47:d6:66:97:95:16:5d:17:6a:6b:51:ac:6e:ff:c1:d4:b7:5d:
55:de:f0:ca:a7:08:84:0f:c5:cf:21:c3:e2:3d:48:f7:43:64:
6e:15:0b:b3:27:55:7d:c3:84:66:5b:c7:60:1d:df:f3:52:13:
63:fc:6a:04:1e:96:78:a6:13:48:e5:ee:40:0f:cb:3a:db:59:
44:ec:a4:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 08:35:30 2026 by rpki-client