Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E5A254F657E111F1969A1BCECE1D38B0.roa
File: E5A254F657E111F1969A1BCECE1D38B0.roa (raw, json)
Hash identifier: iAGXPQ12ul3gpjGh8AN9hHwSJRxXaRBP3ZH5zs49ulQ=
Subject key identifier: 32:B5:A8:42:E7:BB:C5:7B:5B:35:9D:60:06:B2:D3:98:41:74:86:31
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B953
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E5A254F657E111F1969A1BCECE1D38B0.roa
Signing time: Mon 25 May 2026 02:31:56 +0000
ROA not before: Mon 25 May 2026 02:31:52 +0000
ROA not after: Mon 13 Jul 2026 02:31:52 +0000
asID: 20326
IP address blocks: 45.202.100.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112979 (0x1b953)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 25 02:31:52 2026 GMT
Not After : Jul 13 02:31:52 2026 GMT
Subject: CN=6a13b49c-2536
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:8b:e5:98:30:ec:2c:a4:d5:f9:05:77:bd:01:
62:9c:13:50:e8:45:8e:7f:e2:e0:dc:1d:df:4a:b6:
38:ea:d4:6e:e1:be:60:69:91:15:3c:ab:bc:4d:fb:
7d:cd:bd:96:41:52:d7:d8:3c:51:18:92:50:09:ff:
e6:39:07:04:63:d6:58:c5:cc:24:56:7d:34:f3:d5:
89:e3:27:8f:08:f2:61:31:30:06:85:c5:2b:34:89:
ee:b4:36:fb:8a:05:df:fc:3f:de:46:d3:0c:c8:00:
5d:94:bf:1d:3c:35:c2:5f:a3:bc:83:51:05:6e:ed:
08:c9:49:6b:a8:bf:c5:e2:dd:71:f0:59:ac:ef:b1:
71:df:12:a7:31:c5:cc:bb:91:d2:8d:89:5f:84:a1:
8f:be:9d:7d:0f:c0:53:2b:31:90:c0:13:f2:f2:d8:
d2:a0:20:df:94:bc:0d:67:36:ea:09:ce:44:a5:dc:
7f:15:e9:f2:ab:a2:be:18:a3:49:47:6a:1d:31:02:
90:42:37:6d:b8:9e:57:01:b8:0c:8f:bf:05:6a:90:
d0:ef:5b:55:15:70:67:ab:92:6e:35:26:26:dd:55:
8d:e7:f8:d0:9f:a9:91:eb:56:66:3e:a5:3a:e6:2f:
78:0a:54:0e:8a:61:00:95:f4:55:f2:b3:4a:8d:5e:
93:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:B5:A8:42:E7:BB:C5:7B:5B:35:9D:60:06:B2:D3:98:41:74:86:31
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E5A254F657E111F1969A1BCECE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.202.100.0/23
Signature Algorithm: sha256WithRSAEncryption
1c:3a:7e:c6:62:0d:e2:6f:5e:ed:18:93:70:06:1c:c3:70:95:
2a:85:a6:23:c8:cf:98:43:61:31:8f:3e:a2:4d:24:05:b5:77:
ad:5a:3e:5c:49:67:18:0a:5c:41:82:f8:46:85:00:40:bc:50:
3e:8d:75:94:d3:ce:ac:1b:14:bb:8c:83:bf:9b:67:5e:14:92:
65:b8:da:75:8e:b2:e1:35:ab:d9:cd:14:3b:0a:1f:e2:d4:ef:
e2:c3:56:0f:16:c7:ed:56:02:df:0d:4a:88:1c:8d:2c:f3:d5:
d9:1c:53:30:79:05:b6:ff:72:53:c9:93:dc:f1:fb:e1:c6:30:
4b:03:b0:b4:d9:4b:7a:d7:23:c1:fc:50:78:4d:96:fa:ca:79:
37:50:70:e3:41:f6:58:ad:61:58:05:9e:fb:70:b0:f5:47:29:
5b:82:62:34:39:c7:b1:7c:29:4c:e7:14:08:c4:53:69:88:5f:
11:c7:b5:ec:2f:95:d6:59:d2:93:ae:b6:ec:d8:db:b1:ce:d4:
2c:6c:27:df:8e:84:a4:ef:35:47:a1:a7:91:12:a2:30:27:9f:
bf:0d:5a:2f:20:d5:ff:5f:e9:41:b4:f9:31:c2:1e:45:f3:fd:
38:58:b2:93:25:5b:68:9b:61:0f:57:37:b5:a3:1a:b7:14:f8:
52:81:ab:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:07:12 2026 by rpki-client