Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/195532BC4C8B11F1BE4EFACBCE1D38B0.roa
File: 195532BC4C8B11F1BE4EFACBCE1D38B0.roa (raw, json)
Hash identifier: Z1fJsMVFZsoV9fsJc/wCOL59+/GpsXR96Brmm+ZlOw0=
Subject key identifier: 6F:89:17:73:E3:76:0A:B8:8A:64:A5:9D:E3:40:35:86:B0:75:57:D4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B371
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/195532BC4C8B11F1BE4EFACBCE1D38B0.roa
Signing time: Sun 10 May 2026 16:12:54 +0000
ROA not before: Sun 10 May 2026 16:12:49 +0000
ROA not after: Wed 10 Jun 2026 16:12:49 +0000
asID: 38136
IP address blocks: 45.196.98.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111473 (0x1b371)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 10 16:12:49 2026 GMT
Not After : Jun 10 16:12:49 2026 GMT
Subject: CN=6a00ae86-e79b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:7e:42:9f:ae:a6:90:6e:bf:ef:c0:b5:7c:3a:
5d:7b:7b:62:19:c8:6f:54:92:3a:71:5d:47:27:2a:
6a:a8:0a:56:e8:45:d1:ab:70:5b:aa:85:d0:4f:d9:
63:1a:c5:5e:67:34:ac:57:97:1e:fd:6e:01:d7:80:
07:4c:d1:03:ae:3c:18:4f:c9:1a:86:89:b0:8f:1d:
cf:6a:f8:57:d7:a1:ab:c2:b0:d3:5d:ca:d2:19:5f:
1d:d7:b8:64:db:01:71:86:97:1e:86:a2:d9:76:8e:
bc:db:04:2b:52:91:7b:78:40:fa:bf:5b:5b:bd:ba:
f3:a9:a8:7e:85:5f:40:5f:52:3b:95:e9:1c:55:63:
cf:cd:f6:ac:1d:3a:6f:0e:ba:d5:4c:19:de:ab:07:
2d:39:a9:1e:e6:b3:be:b2:f3:3f:bd:2e:4a:34:8d:
04:f9:dc:35:9b:29:43:d0:73:07:cb:3d:c7:b5:34:
ff:ca:f1:e7:c3:25:b4:c8:46:76:3d:ac:0d:91:ec:
7d:9b:27:fb:19:4e:32:b4:d0:74:28:72:2f:43:3d:
6e:74:a4:ca:b8:8d:c3:85:b0:8e:71:fc:bb:52:b8:
1c:08:af:27:eb:28:5b:33:fd:62:e1:c4:e1:57:b1:
2f:b1:48:7e:08:12:64:6a:bb:b1:c7:fa:f7:f0:f2:
40:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:89:17:73:E3:76:0A:B8:8A:64:A5:9D:E3:40:35:86:B0:75:57:D4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/195532BC4C8B11F1BE4EFACBCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.98.0/23
Signature Algorithm: sha256WithRSAEncryption
48:00:17:90:61:7a:46:9b:4b:7f:a9:a0:90:e2:29:b1:4f:db:
38:90:a2:dc:db:66:06:7c:10:90:81:9e:e2:26:a5:41:d5:db:
ee:d2:62:85:4d:38:15:af:be:a7:63:26:b7:16:0b:76:06:02:
28:61:53:6a:31:52:c6:3d:7b:a8:e0:9f:a0:31:eb:aa:32:1c:
86:0d:1e:17:4b:f3:5f:b9:c7:7e:61:9d:00:ee:d6:93:08:2a:
eb:5d:63:7f:0a:e4:de:66:30:6d:75:8d:44:49:4b:59:a9:ff:
3b:6e:21:7e:59:22:00:bf:c5:32:44:44:81:c0:a3:c0:fc:e0:
fc:fb:30:6c:7f:13:c1:3a:0a:d1:ab:f7:e8:77:58:63:a9:63:
17:c9:4a:87:aa:29:14:cc:fc:76:31:1a:86:3f:f0:54:41:ee:
f0:a8:3c:3a:90:e5:5e:3f:57:ea:6e:6f:05:59:25:e4:18:8c:
d1:7c:dc:bf:ab:af:85:91:cb:06:3a:02:0d:e0:8b:bb:30:84:
04:c9:e8:3c:66:2b:95:49:98:e1:7d:9b:fa:71:75:1b:93:41:
b2:6d:7a:ca:65:25:6e:fa:91:96:87:44:3f:1c:b1:af:6f:63:
15:15:ec:a9:f9:cc:1c:73:01:13:14:ee:06:d9:aa:e5:91:92:
7a:7d:5c:b6
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAbNxMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwNTEwMTYxMjQ5WhcNMjYwNjEwMTYxMjQ5WjAYMRYw
FAYDVQQDEw02YTAwYWU4Ni1lNzliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvn5Cn66mkG6/78C1fDpde3tiGchvVJI6cV1HJypqqApW6EXRq3BbqoXQ
T9ljGsVeZzSsV5ce/W4B14AHTNEDrjwYT8kahomwjx3PavhX16GrwrDTXcrSGV8d
17hk2wFxhpcehqLZdo682wQrUpF7eED6v1tbvbrzqah+hV9AX1I7lekcVWPPzfas
HTpvDrrVTBneqwctOake5rO+svM/vS5KNI0E+dw1mylD0HMHyz3HtTT/yvHnwyW0
yEZ2PawNkex9myf7GU4ytNB0KHIvQz1udKTKuI3DhbCOcfy7UrgcCK8n6yhbM/1i
4cThV7EvsUh+CBJkaruxx/r38PJAowIDAQABo4ICojCCAp4wHQYDVR0OBBYEFG+J
F3Pjdgq4imSlneNANYawdVfUMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8xOTU1MzJCQzRDOEIxMUYxQkU0RUZBQ0JDRTFEMzhCMC5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLcRiMA0GCSqGSIb3DQEBCwUA
A4IBAQBIABeQYXpGm0t/qaCQ4imxT9s4kKLc22YGfBCQgZ7iJqVB1dvu0mKFTTgV
r76nYya3Fgt2BgIoYVNqMVLGPXuo4J+gMeuqMhyGDR4XS/Nfucd+YZ0A7taTCCrr
XWN/CuTeZjBtdY1ESUtZqf87biF+WSIAv8UyRESBwKPA/OD8+zBsfxPBOgrRq/fo
d1hjqWMXyUqHqikUzPx2MRqGP/BUQe7wqDw6kOVeP1fqbm8FWSXkGIzRfNy/q6+F
kcsGOgIN4Iu7MIQEyeg8ZiuVSZjhfZv6cXUbk0GybXrKZSVu+pGWh0Q/HLGvb2MV
Feyp+cwccwETFO4G2arlkZJ6fVy2
-----END CERTIFICATE-----
Generated at Wed May 13 13:08:44 2026 by rpki-client