Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F3D56CF43E8011F1995B62C9CE1D38B0.roa
File: F3D56CF43E8011F1995B62C9CE1D38B0.roa (raw, json)
Hash identifier: x9XFtJKFn5+lVLKl3PDcTVsAUr+03OiX3xaDrgEfeaE=
Subject key identifier: 0D:41:5D:0C:AE:55:71:09:23:CA:29:4D:5A:48:00:D3:86:4E:E5:03
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AE51
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F3D56CF43E8011F1995B62C9CE1D38B0.roa
Signing time: Wed 22 Apr 2026 19:25:00 +0000
ROA not before: Wed 22 Apr 2026 19:24:54 +0000
ROA not after: Sat 23 May 2026 19:24:54 +0000
asID: 17497
IP address blocks: 45.192.132.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Tue 28 Apr 2026 00:26:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110161 (0x1ae51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 22 19:24:54 2026 GMT
Not After : May 23 19:24:54 2026 GMT
Subject: CN=69e9208b-75d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:07:71:04:30:cc:6f:2a:cc:74:5c:81:a7:fd:
0f:7c:e8:ed:85:4b:c7:fc:4f:7e:22:2d:b7:8a:37:
49:f2:47:62:5c:bf:31:22:e6:ea:05:d1:89:3e:85:
d4:a1:e8:42:6a:a0:f4:fa:e6:cf:c4:61:39:76:c6:
61:10:cb:f2:1f:3b:09:e6:5c:c0:a1:2b:21:bb:97:
d0:44:22:8c:65:ea:3b:4d:9e:34:c2:43:64:56:46:
ef:70:a2:f2:26:cc:b8:8e:7a:a1:a9:f8:37:a5:19:
a9:21:cb:5c:61:6f:54:5e:8a:6d:50:68:6f:06:9a:
da:17:39:69:14:5c:59:ab:ed:ea:0c:eb:cc:0b:c8:
7f:d9:07:f2:5b:f1:96:1d:59:38:e0:65:36:fb:1a:
b0:d3:7c:1c:09:05:82:f1:68:95:3f:d8:cf:9b:4c:
0d:a5:aa:09:14:d4:5d:cd:a4:08:8a:0e:36:f3:bb:
90:12:80:e1:af:be:32:47:75:64:48:3d:4a:b9:23:
48:dc:21:77:08:0b:9b:e4:3e:ec:71:4b:15:3e:66:
0c:88:d2:58:fb:b9:ff:dc:6a:92:ab:30:25:41:7e:
a1:ed:1c:17:44:42:c7:a1:e6:77:f0:22:b2:d9:d4:
12:e7:f5:1c:47:a6:0c:1b:de:39:bd:b3:eb:c9:ad:
01:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:41:5D:0C:AE:55:71:09:23:CA:29:4D:5A:48:00:D3:86:4E:E5:03
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F3D56CF43E8011F1995B62C9CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.132.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:98:1e:2e:a1:b1:da:7f:29:c7:ee:65:45:97:b3:96:d1:e8:
8b:26:38:e5:1f:b5:5a:a5:29:d8:2e:a9:09:74:81:60:1b:b6:
e7:27:02:b6:d0:42:9e:96:b5:f1:8e:ef:13:54:f2:0a:e4:32:
0f:04:bc:18:2e:21:4f:08:78:94:54:8f:70:1f:4e:a1:da:98:
72:f3:68:ef:c6:15:d5:f1:1b:87:48:73:23:e1:e7:ce:c1:2f:
d8:19:4f:fd:70:22:0a:36:40:eb:50:28:7f:da:72:f3:d8:5d:
f7:65:57:75:e9:3d:be:b1:74:0f:4b:b3:e4:07:76:51:b5:e2:
b7:25:e1:2b:24:a9:f2:02:ff:df:94:e7:04:fc:d9:9e:4f:bc:
b4:b5:ad:40:14:a4:34:f8:38:ab:1b:1b:70:83:de:bf:da:81:
5d:fb:d7:a8:49:7d:2c:b5:c8:09:7d:e4:76:92:1a:12:0b:e4:
3b:29:4d:72:f1:21:1b:9d:cf:93:e6:c1:e3:a2:52:b2:11:3e:
b0:52:cf:61:9d:0e:2a:b2:da:49:4e:06:05:76:bb:1e:01:90:
75:3f:b5:77:cc:68:02:79:3e:05:82:b5:0b:21:c6:ed:53:12:
90:9b:20:1f:ee:ed:67:32:3a:63:d5:aa:cb:dd:ee:ba:b7:26:
aa:aa:73:be
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAa5RMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwNDIyMTkyNDU0WhcNMjYwNTIzMTkyNDU0WjAYMRYw
FAYDVQQDEw02OWU5MjA4Yi03NWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0wdxBDDMbyrMdFyBp/0PfOjthUvH/E9+Ii23ijdJ8kdiXL8xIubqBdGJ
PoXUoehCaqD0+ubPxGE5dsZhEMvyHzsJ5lzAoSshu5fQRCKMZeo7TZ40wkNkVkbv
cKLyJsy4jnqhqfg3pRmpIctcYW9UXoptUGhvBpraFzlpFFxZq+3qDOvMC8h/2Qfy
W/GWHVk44GU2+xqw03wcCQWC8WiVP9jPm0wNpaoJFNRdzaQIig4287uQEoDhr74y
R3VkSD1KuSNI3CF3CAub5D7scUsVPmYMiNJY+7n/3GqSqzAlQX6h7RwXRELHoeZ3
8CKy2dQS5/UcR6YMG945vbPrya0BHQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFA1B
XQyuVXEJI8opTVpIANOGTuUDMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9GM0Q1NkNGNDNFODAxMUYxOTk1QjYyQzlDRTFEMzhCMC5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALcCEMA0GCSqGSIb3DQEBCwUA
A4IBAQCKmB4uobHafynH7mVFl7OW0eiLJjjlH7VapSnYLqkJdIFgG7bnJwK20EKe
lrXxju8TVPIK5DIPBLwYLiFPCHiUVI9wH06h2phy82jvxhXV8RuHSHMj4efOwS/Y
GU/9cCIKNkDrUCh/2nLz2F33ZVd16T2+sXQPS7PkB3ZRteK3JeErJKnyAv/flOcE
/NmeT7y0ta1AFKQ0+DirGxtwg96/2oFd+9eoSX0stcgJfeR2khoSC+Q7KU1y8SEb
nc+T5sHjolKyET6wUs9hnQ4qstpJTgYFdrseAZB1P7V3zGgCeT4FgrULIcbtUxKQ
myAf7u1nMjpj1arL3e66tyaqqnO+
-----END CERTIFICATE-----
Generated at Sun Apr 26 21:17:55 2026 by rpki-client