Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/31923D624DF711F1A38221F5CE1D38B0.roa
File: 31923D624DF711F1A38221F5CE1D38B0.roa (raw, json)
Hash identifier: sVcy99ZedvIFMVt7uT2HNdp5qWjIJiWk1ts362j8SWg=
Subject key identifier: 3C:C9:23:74:B4:A8:AB:0E:BC:24:0B:E4:41:0E:0F:A1:A9:75:1A:6A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B3F1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/31923D624DF711F1A38221F5CE1D38B0.roa
Signing time: Tue 12 May 2026 11:39:11 +0000
ROA not before: Tue 12 May 2026 11:39:06 +0000
ROA not after: Sat 20 Jun 2026 11:39:06 +0000
asID: 153789
IP address blocks: 45.195.193.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111601 (0x1b3f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 12 11:39:06 2026 GMT
Not After : Jun 20 11:39:06 2026 GMT
Subject: CN=6a03115f-0a7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:30:fb:39:63:cc:f1:80:db:65:d3:fd:e5:15:
57:04:c8:0a:57:32:ab:dc:e2:57:31:bc:ea:cb:f6:
2c:0c:f5:77:af:af:05:f8:ff:db:0c:13:19:ba:2c:
9a:2b:05:34:71:9b:5c:9f:dd:53:1b:94:7f:51:21:
43:07:6e:e3:c8:4f:68:ea:71:76:50:f0:ca:67:31:
38:99:9c:17:3a:c1:cb:72:a4:cc:f3:ad:d0:0d:42:
ec:22:15:f2:ac:a6:90:f4:51:fb:f9:f3:96:97:65:
6c:6e:20:b4:22:b1:0a:f4:87:b2:56:46:c4:e6:11:
17:40:f4:78:47:81:c5:37:db:d8:7d:bc:47:2b:86:
03:81:e2:08:54:f3:53:ca:fe:ed:a6:c9:97:fe:16:
75:97:12:3e:32:78:8c:4e:b2:69:39:39:5b:6c:c3:
89:6e:49:b7:d1:97:ec:69:b5:18:6e:78:e7:f6:d9:
4d:e4:7e:35:c7:b8:00:d2:7b:50:85:23:d9:e5:fc:
44:8e:e4:5c:79:be:88:70:4b:f8:06:79:e4:90:7e:
50:50:ff:a5:69:c7:45:3c:c5:03:30:f5:4d:5c:56:
63:8c:63:86:a9:0c:a9:4d:56:b4:39:b8:1f:d9:18:
5f:57:b8:70:8e:ea:5b:81:ae:27:2d:5c:c3:70:c1:
8d:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:C9:23:74:B4:A8:AB:0E:BC:24:0B:E4:41:0E:0F:A1:A9:75:1A:6A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/31923D624DF711F1A38221F5CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.193.0/24
Signature Algorithm: sha256WithRSAEncryption
45:d5:10:b6:da:9b:d0:f5:5e:61:70:92:7d:01:cd:64:fd:13:
24:c5:03:0e:d8:d4:d4:ae:83:14:cd:46:ee:eb:f4:6f:de:5a:
fb:54:8f:b2:f1:b3:86:1d:96:7d:52:6a:fa:00:fb:94:9d:16:
53:2d:1d:b6:31:90:c6:2e:ef:ac:c3:01:4a:e6:1e:aa:46:ab:
1b:c7:02:7b:4b:24:88:43:01:5b:68:ec:cf:b8:32:4c:87:5e:
7d:14:7a:31:10:7f:f8:b0:ae:ac:8c:7e:54:a9:e1:ae:d6:7d:
0f:cc:ff:e3:54:5d:f5:26:b7:8e:f5:05:af:30:4c:77:f5:cf:
72:8c:b7:24:06:86:cd:cb:be:5b:f0:de:e8:5e:c1:bd:bc:17:
1f:8e:e8:44:56:7b:7f:78:ce:80:6d:3c:32:5e:c7:e2:b0:8e:
5a:10:54:37:fc:8f:cb:aa:90:49:72:be:03:f4:69:0c:37:a5:
71:6e:ed:cc:5b:51:1c:d5:6a:25:7f:22:67:6b:25:7d:f4:e1:
dc:d3:55:18:21:17:e1:36:c0:50:4e:b4:bf:ca:94:af:61:fd:
00:38:69:63:6c:0a:4f:44:6e:7f:f4:c1:19:9b:f5:a4:e3:a6:
41:0e:63:49:26:02:ec:65:1e:f5:67:cd:41:0f:45:ca:9c:49:
5a:96:c5:32
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAbPxMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwNTEyMTEzOTA2WhcNMjYwNjIwMTEzOTA2WjAYMRYw
FAYDVQQDEw02YTAzMTE1Zi0wYTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAuzD7OWPM8YDbZdP95RVXBMgKVzKr3OJXMbzqy/YsDPV3r68F+P/bDBMZ
uiyaKwU0cZtcn91TG5R/USFDB27jyE9o6nF2UPDKZzE4mZwXOsHLcqTM863QDULs
IhXyrKaQ9FH7+fOWl2VsbiC0IrEK9IeyVkbE5hEXQPR4R4HFN9vYfbxHK4YDgeII
VPNTyv7tpsmX/hZ1lxI+MniMTrJpOTlbbMOJbkm30ZfsabUYbnjn9tlN5H41x7gA
0ntQhSPZ5fxEjuRceb6IcEv4BnnkkH5QUP+lacdFPMUDMPVNXFZjjGOGqQypTVa0
Obgf2RhfV7hwjupbga4nLVzDcMGNBQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFDzJ
I3S0qKsOvCQL5EEOD6GpdRpqMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8zMTkyM0Q2MjRERjcxMUYxQTM4MjIxRjVDRTFEMzhCMC5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALcPBMA0GCSqGSIb3DQEBCwUA
A4IBAQBF1RC22pvQ9V5hcJJ9Ac1k/RMkxQMO2NTUroMUzUbu6/Rv3lr7VI+y8bOG
HZZ9Umr6APuUnRZTLR22MZDGLu+swwFK5h6qRqsbxwJ7SySIQwFbaOzPuDJMh159
FHoxEH/4sK6sjH5UqeGu1n0PzP/jVF31JreO9QWvMEx39c9yjLckBobNy75b8N7o
XsG9vBcfjuhEVnt/eM6AbTwyXsfisI5aEFQ3/I/LqpBJcr4D9GkMN6Vxbu3MW1Ec
1WolfyJnayV99OHc01UYIRfhNsBQTrS/ypSvYf0AOGljbApPRG5/9MEZm/Wk46ZB
DmNJJgLsZR71Z81BD0XKnElalsUy
-----END CERTIFICATE-----
Generated at Wed May 13 11:50:02 2026 by rpki-client