Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DB532EA2535511F1ADF0EC1CCF1D38B0.roa
File: DB532EA2535511F1ADF0EC1CCF1D38B0.roa (raw, json)
Hash identifier: okLJJkpB+M6oYSmn3hVRSCeRoPYTthiXagF03X9H9XA=
Subject key identifier: 14:0C:E6:20:7C:54:06:BC:3E:98:F3:7F:8E:2F:FB:56:06:07:F3:A9
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B5AF
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DB532EA2535511F1ADF0EC1CCF1D38B0.roa
Signing time: Tue 19 May 2026 07:39:24 +0000
ROA not before: Tue 19 May 2026 07:39:19 +0000
ROA not after: Fri 19 Jun 2026 07:39:19 +0000
asID: 274310
IP address blocks: 45.196.223.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112047 (0x1b5af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 19 07:39:19 2026 GMT
Not After : Jun 19 07:39:19 2026 GMT
Subject: CN=6a0c13ac-d7e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:eb:f2:e8:cd:4a:4a:1a:47:f7:f1:69:36:d8:
03:ab:a3:e5:77:e6:ef:b2:e4:16:08:e0:20:88:93:
35:56:97:0f:f4:81:bc:45:a2:08:b7:d6:e1:6c:13:
34:ae:28:b5:90:59:3f:c6:58:99:73:3c:50:4e:c7:
c5:bd:7c:d7:8f:98:ed:83:0e:69:1a:20:57:7d:70:
c0:e8:e0:fc:dd:3d:74:38:58:d5:8b:55:67:64:7c:
ae:bd:4a:4e:89:4e:0c:2b:fc:f5:7e:47:f4:83:7d:
7c:19:59:87:71:56:c3:10:05:17:e2:3e:85:25:14:
f1:03:45:c7:a2:89:d4:81:ae:b7:08:9f:91:d5:21:
1b:c9:3e:9a:58:4f:a0:86:30:e9:3a:26:a9:b8:e5:
63:9c:b7:75:16:17:d1:b0:67:ac:bd:3b:53:3f:9a:
f3:96:29:d0:e8:b1:60:84:53:39:9c:ee:6b:bd:0e:
10:ae:ad:1b:19:26:03:0d:12:0c:9c:34:86:2c:ec:
ab:2c:d9:e5:64:35:70:ed:7b:83:19:72:f2:cd:1e:
67:b8:06:8d:f6:93:6d:db:6b:dc:58:30:02:81:ef:
88:08:6a:cd:dd:c6:01:63:b7:4b:93:81:88:8d:89:
27:f9:90:fa:c4:85:a9:28:04:b1:fb:e9:f3:dc:9a:
ab:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:0C:E6:20:7C:54:06:BC:3E:98:F3:7F:8E:2F:FB:56:06:07:F3:A9
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DB532EA2535511F1ADF0EC1CCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.223.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:27:52:fa:66:e8:8f:ca:5b:22:ee:13:17:0d:9d:7c:6b:83:
cb:7f:20:1b:df:92:f1:ff:2c:14:f5:60:81:2a:77:6c:25:b6:
cd:d7:31:eb:3b:83:e5:d4:20:91:72:aa:e5:fe:40:63:cb:45:
e8:e1:8d:46:9d:fb:bf:c3:c6:37:a0:68:8c:f5:7b:ce:f6:8a:
a9:13:da:16:75:9c:34:42:0d:05:ce:a8:62:88:a3:2f:5c:54:
e9:cd:3b:82:48:f2:fe:7a:12:b8:26:f8:1f:a2:26:9d:1e:b2:
37:b8:f7:2c:ba:f0:57:e6:2e:fa:47:63:46:42:0f:03:cb:d2:
90:47:19:c1:d5:da:fc:90:cc:8c:03:c2:42:39:28:bf:ab:b9:
d1:13:ae:6c:2b:70:96:59:1b:0f:1d:da:76:12:63:e0:b3:85:
81:3e:09:64:22:75:16:ed:56:af:1f:39:71:34:0d:53:51:ce:
be:54:37:38:e8:62:44:e0:cc:31:b4:60:bb:0c:65:08:7d:53:
71:05:1c:c0:a8:c8:86:40:0a:db:8f:11:9b:aa:ab:73:ae:38:
c8:04:2e:1f:cb:9f:8e:38:7b:5a:24:e6:32:ba:67:6a:28:e3:
f7:1f:8b:fe:a4:06:2f:5a:12:97:4c:73:cf:e7:e1:6e:bd:55:
fb:d9:98:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:14:07 2026 by rpki-client