Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/32D773581C5C11F18F02AEA1DAE4EC9C.roa
File: 32D773581C5C11F18F02AEA1DAE4EC9C.roa (raw, json)
Hash identifier: myDiOmgecVacfpMS9q0Pw408Gt1vn8qBdqqGhqReY8Y=
Subject key identifier: EA:26:AF:29:8B:E3:22:77:3E:4A:67:54:CC:B7:55:9B:AA:20:24:D0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A3B4
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/32D773581C5C11F18F02AEA1DAE4EC9C.roa
Signing time: Tue 10 Mar 2026 08:36:15 +0000
ROA not before: Tue 10 Mar 2026 08:36:10 +0000
ROA not after: Thu 16 Apr 2026 08:36:10 +0000
asID: 134365
IP address blocks: 45.197.144.0/21 maxlen: 24
45.197.144.0/24 maxlen: 24
45.197.145.0/24 maxlen: 24
45.197.146.0/24 maxlen: 24
45.197.147.0/24 maxlen: 24
45.197.148.0/24 maxlen: 24
45.197.149.0/24 maxlen: 24
45.197.150.0/24 maxlen: 24
45.197.151.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 13 Mar 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107444 (0x1a3b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 10 08:36:10 2026 GMT
Not After : Apr 16 08:36:10 2026 GMT
Subject: CN=69afd7fe-9dbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:22:04:eb:e5:9a:1f:56:fb:aa:a4:30:05:24:
70:6d:ec:3b:8d:43:8d:d8:f5:6f:cf:03:30:db:58:
e7:27:45:02:7b:94:85:28:93:23:4f:fd:87:19:b2:
10:20:95:47:64:a4:fd:80:b5:c0:a0:ad:47:d2:00:
ab:b6:ea:32:7c:4a:e7:33:c8:0f:27:31:f7:c7:4f:
b6:86:7a:8c:21:ef:26:7e:88:6f:62:8c:69:9f:b8:
21:ea:40:0d:b5:b8:e0:f6:88:ad:9e:a0:b3:11:f5:
8a:a6:0f:c1:10:5b:42:46:9e:e5:15:2b:f9:ef:b4:
89:5f:f1:e4:3f:58:51:c7:4c:70:c7:fa:77:c7:78:
34:16:47:e8:e2:62:bc:87:94:8f:13:79:f2:8f:df:
13:da:36:49:72:d2:c5:67:ce:e8:f3:a8:e9:b3:d6:
46:13:f1:f9:22:41:8c:8b:60:48:68:1c:73:d2:91:
88:ef:39:09:c9:bb:e4:68:bf:dc:98:71:ea:a4:87:
a8:9a:f5:87:8f:3f:75:47:26:13:36:95:ea:e3:dd:
60:93:b9:6b:e5:a0:8d:79:6e:11:56:fb:d0:d6:97:
46:36:5b:e2:83:70:0c:3e:ca:0b:f6:e9:bb:37:8c:
24:ff:26:5a:07:9d:b5:2a:48:bc:c1:92:8b:c6:1d:
31:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:26:AF:29:8B:E3:22:77:3E:4A:67:54:CC:B7:55:9B:AA:20:24:D0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/32D773581C5C11F18F02AEA1DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.144.0/21
Signature Algorithm: sha256WithRSAEncryption
4f:8e:9b:41:89:c5:d2:8f:5b:b6:d4:52:52:12:bf:52:09:16:
8d:11:66:7c:d0:8f:f7:91:a2:20:be:84:ba:d2:32:93:e0:e0:
86:ee:0c:ac:72:27:73:08:30:f9:f2:be:6f:c0:33:a3:eb:51:
d7:03:7d:5b:58:1b:8e:4f:1e:0c:72:7e:8b:fb:9c:a6:4a:16:
97:70:83:06:dc:00:e6:8f:18:48:2f:7e:4c:80:76:6a:1f:31:
2d:d7:3f:0d:fe:f9:64:da:23:7c:73:58:01:ff:7c:14:84:07:
c2:2b:6b:0b:ac:7f:c5:4d:51:48:1e:92:91:fa:5c:fd:3f:10:
91:07:f4:2f:22:b9:18:80:db:bd:72:ae:4d:5d:e7:89:4f:6a:
0d:99:e5:e4:6c:56:0a:0f:87:c9:f9:0c:d3:e9:72:82:d4:85:
77:45:6f:ab:73:29:a6:65:55:e2:75:8b:0f:76:60:cb:40:58:
d4:ed:8c:22:27:4b:f7:79:fe:db:c8:03:af:88:6e:f3:b6:fe:
e3:80:80:7b:4d:5d:e4:1c:47:87:68:a6:be:5f:50:10:0d:45:
5d:e6:6e:5d:b4:e2:1c:3e:f2:8d:29:35:99:e1:47:83:59:2c:
4d:81:f3:92:34:e6:7d:4d:5a:4d:65:23:39:ba:cd:72:0b:e6:
d4:35:f5:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 11 15:14:10 2026 by rpki-client