Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A5AADB2E55C111F199462AE3CE1D38B0.roa
File: A5AADB2E55C111F199462AE3CE1D38B0.roa (raw, json)
Hash identifier: FBmfasJ8MT/4KHSMdtH7pByKYVJZyK+5WVGojELKnC4=
Subject key identifier: B9:C5:15:36:6E:AE:0E:32:0C:65:CA:6A:69:54:E1:0F:CA:64:97:80
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B7C7
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A5AADB2E55C111F199462AE3CE1D38B0.roa
Signing time: Fri 22 May 2026 09:36:02 +0000
ROA not before: Fri 22 May 2026 09:35:58 +0000
ROA not after: Wed 19 Aug 2026 09:35:58 +0000
asID: 55020
IP address blocks: 45.195.112.0/21 maxlen: 24
45.195.120.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112583 (0x1b7c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 22 09:35:58 2026 GMT
Not After : Aug 19 09:35:58 2026 GMT
Subject: CN=6a102382-336f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:f2:2e:65:11:73:8e:1f:86:5a:93:04:94:10:
23:c2:55:b8:fb:83:e2:85:21:09:70:bf:df:83:fd:
84:ba:5d:7d:26:4b:b2:ab:6d:fe:87:1e:63:65:61:
ad:ab:62:06:77:f2:b7:7d:d9:f6:1e:e0:27:26:82:
ec:49:d8:f6:8a:cc:e7:36:d8:16:9c:dd:d3:fc:bb:
b1:ed:75:f0:a3:41:ee:fe:d1:ea:b1:56:b5:4f:3e:
1b:2a:22:00:a1:ce:aa:8a:ef:fd:cf:63:4b:b1:c8:
72:a9:4f:a0:81:22:52:f9:24:54:02:1c:19:33:3f:
29:5d:ee:fd:d7:94:ef:19:fb:52:cb:82:69:cf:98:
d1:c1:75:41:03:c1:ba:a8:3a:83:d5:47:3b:01:29:
fe:89:5c:59:ec:6e:f7:64:01:33:1b:c0:9a:c7:7e:
13:9d:6a:b7:39:7c:7f:1e:63:4b:51:a9:6e:a2:95:
81:a5:4d:7e:61:3c:f6:c7:9f:56:85:77:d2:e0:cd:
75:38:3b:12:95:ed:f0:50:8d:14:d5:12:50:d6:0c:
cf:04:25:d4:21:ce:69:f4:66:75:4f:77:c5:11:1f:
6c:61:81:d3:d8:65:25:54:85:d4:b3:ff:f3:ab:ba:
4e:6f:70:03:06:4a:96:1b:52:61:e0:e8:7f:e0:15:
ec:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:C5:15:36:6E:AE:0E:32:0C:65:CA:6A:69:54:E1:0F:CA:64:97:80
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A5AADB2E55C111F199462AE3CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.112.0/20
Signature Algorithm: sha256WithRSAEncryption
4f:ce:44:3c:85:13:58:90:42:8a:36:4f:40:87:18:8d:ad:17:
e6:f1:39:54:fe:4b:42:f0:21:9e:77:5d:6b:63:0c:68:25:ea:
de:26:eb:3e:d2:d6:e8:a8:21:c5:23:9f:3d:06:c6:09:59:f5:
0b:a7:fa:9a:b2:a5:15:f1:4b:91:37:1b:4a:c8:8b:5f:f1:3c:
ae:96:40:5f:f4:72:1b:59:00:f3:70:95:6c:86:08:b6:af:b4:
7b:4d:44:17:8e:ae:5f:4f:71:6b:78:5c:d9:1c:d7:18:e0:2f:
b7:e0:63:9a:c2:62:2b:58:a6:4b:95:51:43:b9:8c:d4:85:d9:
a9:3a:ca:7b:63:45:10:31:e0:f9:42:2f:c0:c8:bb:af:c1:8e:
b5:29:f2:0e:8c:28:60:63:9b:de:a9:54:25:61:9a:a7:d6:8c:
d0:18:f5:3b:10:57:4e:34:3f:6e:8b:6d:a6:71:7a:64:57:f1:
39:2a:4f:e2:00:22:44:94:f7:3a:af:69:8c:ca:b3:eb:ea:f0:
3a:72:2d:22:61:95:ab:eb:9a:5d:e9:11:5a:6e:94:b4:92:c8:
a5:ca:df:86:40:28:13:a4:1f:1a:4e:6d:52:15:aa:a3:10:46:
23:6d:4a:2e:f6:0c:05:e8:2b:b6:03:38:32:77:b3:dd:80:f4:
0b:d9:48:d2
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAbfHMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwNTIyMDkzNTU4WhcNMjYwODE5MDkzNTU4WjAYMRYw
FAYDVQQDEw02YTEwMjM4Mi0zMzZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAzPIuZRFzjh+GWpMElBAjwlW4+4PihSEJcL/fg/2Eul19Jkuyq23+hx5j
ZWGtq2IGd/K3fdn2HuAnJoLsSdj2isznNtgWnN3T/Lux7XXwo0Hu/tHqsVa1Tz4b
KiIAoc6qiu/9z2NLschyqU+ggSJS+SRUAhwZMz8pXe7915TvGftSy4Jpz5jRwXVB
A8G6qDqD1Uc7ASn+iVxZ7G73ZAEzG8Cax34TnWq3OXx/HmNLUaluopWBpU1+YTz2
x59WhXfS4M11ODsSle3wUI0U1RJQ1gzPBCXUIc5p9GZ1T3fFER9sYYHT2GUlVIXU
s//zq7pOb3ADBkqWG1Jh4Oh/4BXsJQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFLnF
FTZurg4yDGXKamlU4Q/KZJeAMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9BNUFBREIyRTU1QzExMUYxOTk0NjJBRTNDRTFEMzhCMC5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQELcNwMA0GCSqGSIb3DQEBCwUA
A4IBAQBPzkQ8hRNYkEKKNk9AhxiNrRfm8TlU/ktC8CGed11rYwxoJereJus+0tbo
qCHFI589BsYJWfULp/qasqUV8UuRNxtKyItf8TyulkBf9HIbWQDzcJVshgi2r7R7
TUQXjq5fT3FreFzZHNcY4C+34GOawmIrWKZLlVFDuYzUhdmpOsp7Y0UQMeD5Qi/A
yLuvwY61KfIOjChgY5veqVQlYZqn1ozQGPU7EFdOND9ui22mcXpkV/E5Kk/iACJE
lPc6r2mMyrPr6vA6ci0iYZWr65pd6RFabpS0ksilyt+GQCgTpB8aTm1SFaqjEEYj
bUou9gwF6Cu2Azgyd7PdgPQL2UjS
-----END CERTIFICATE-----
Generated at Tue Jun 2 21:06:47 2026 by rpki-client