Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E14813C04DD511F1ACE3FCAECE1D38B0.roa
File: E14813C04DD511F1ACE3FCAECE1D38B0.roa (raw, json)
Hash identifier: 6MrjMmGKWzrCRcHRS/wh8ocZNqvZp6lFyJHpaZJ751w=
Subject key identifier: 3A:85:17:B6:92:0A:00:13:8C:DB:3A:DD:25:E5:B0:3D:A5:FC:25:20
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B3D5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E14813C04DD511F1ACE3FCAECE1D38B0.roa
Signing time: Tue 12 May 2026 07:40:43 +0000
ROA not before: Tue 12 May 2026 07:40:39 +0000
ROA not after: Wed 17 Jun 2026 07:40:39 +0000
asID: 54801
IP address blocks: 45.197.1.0/24 maxlen: 24
45.197.2.0/24 maxlen: 24
45.197.4.0/24 maxlen: 24
45.197.5.0/24 maxlen: 24
45.199.137.0/24 maxlen: 24
45.199.191.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 14 May 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111573 (0x1b3d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 12 07:40:39 2026 GMT
Not After : Jun 17 07:40:39 2026 GMT
Subject: CN=6a02d97b-8f9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:35:49:c9:6a:8d:bc:45:c6:cd:c7:c6:bb:0e:
36:7c:26:85:78:5d:db:c6:d9:c2:ca:16:55:4d:7d:
3e:a7:f1:49:9e:17:1d:19:f2:73:21:70:3a:36:07:
27:66:d5:6c:85:69:cb:c9:f7:85:ae:04:2f:a7:fc:
aa:73:22:d2:02:34:3b:0e:eb:f3:c7:c0:e5:43:0c:
92:0f:e3:dd:79:27:2f:72:01:80:0a:6f:c5:a8:53:
92:00:e2:82:00:36:31:64:df:1c:e2:00:81:3d:35:
31:6b:d7:78:d1:2a:2c:c1:34:9e:24:0b:50:30:24:
39:19:4a:c4:e3:e0:a8:0d:a6:7e:30:0a:c8:32:73:
a8:90:6d:88:b8:97:96:9f:87:35:e0:06:e4:0f:d5:
30:d3:98:2b:3f:d0:a9:fe:5e:c7:83:a2:d6:4f:8c:
45:a9:c7:dd:eb:55:db:d5:67:54:1b:3c:40:49:75:
e2:39:e3:3e:a3:aa:2e:34:ed:94:17:f9:46:db:b0:
bd:78:cc:59:90:70:bc:87:60:0b:e8:3a:b6:6a:9f:
eb:c4:0e:57:c5:e3:ce:a9:98:1a:b9:88:18:8a:e7:
3c:d0:25:79:d6:70:19:82:0b:fe:80:c8:26:20:74:
d4:81:b1:75:c5:83:8f:e3:5d:b1:a0:6c:0c:18:5d:
fe:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:85:17:B6:92:0A:00:13:8C:DB:3A:DD:25:E5:B0:3D:A5:FC:25:20
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E14813C04DD511F1ACE3FCAECE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.1.0-45.197.2.255
45.197.4.0/23
45.199.137.0/24
45.199.191.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:35:01:8e:fc:d1:6c:b7:05:b9:78:a2:14:49:f6:60:bd:0d:
6a:85:22:6c:7e:5a:49:52:a0:1d:ea:51:f6:fd:fd:5e:95:ea:
7b:37:5a:0b:34:e8:c8:c7:8f:fb:3b:22:fd:bb:b7:71:74:e7:
3f:62:33:16:27:ab:01:67:f8:77:7e:40:26:50:ea:08:ad:3f:
c5:6a:50:0f:b4:a5:5b:ab:95:20:ee:dd:ac:2e:9d:ac:34:f1:
7b:18:18:42:b3:cd:f3:af:d7:a9:36:ef:fd:f2:29:a4:0e:f1:
f2:c1:a5:84:68:07:33:2e:a3:b6:4c:6e:dd:f1:74:a4:fd:c9:
7e:eb:4f:c5:6d:e4:92:d3:56:fc:f8:d6:82:21:ec:02:ec:07:
5a:89:d4:5c:43:88:55:f2:72:b0:fd:0f:86:2a:a8:08:33:f0:
4b:b9:7c:01:85:a5:3d:13:24:69:68:55:d3:db:e0:22:c3:98:
be:f0:cd:f9:a1:b5:73:f5:fd:51:fd:15:cb:8c:43:e0:09:c8:
79:6f:87:62:ac:f2:f2:22:25:c6:f2:6e:b9:4f:b0:ab:48:1e:
7d:84:d4:0c:cf:fc:9b:36:a6:ea:bc:f4:8f:cf:05:3b:be:d9:
6e:e1:88:10:e8:25:a3:db:5a:8d:b3:9d:be:79:ed:4f:96:af:
fc:e8:f5:2d
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed May 13 02:25:57 2026 by rpki-client