Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D51D04A2492011F1B6691F0DCF1D38B0.roa
File: D51D04A2492011F1B6691F0DCF1D38B0.roa (raw, json)
Hash identifier: wz32hzv2BP17yNarHvEdbrX7fX6bQ53+1cTdqQzcvHg=
Subject key identifier: 0A:10:FA:3B:D2:2B:C5:70:C3:01:69:63:19:3F:28:F5:48:6A:53:56
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B1B0
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D51D04A2492011F1B6691F0DCF1D38B0.roa
Signing time: Wed 06 May 2026 07:54:39 +0000
ROA not before: Wed 06 May 2026 07:53:24 +0000
ROA not after: Wed 13 May 2026 07:53:24 +0000
asID: 9294
IP address blocks: 45.197.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 13 May 2026 07:53:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111024 (0x1b1b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 6 07:53:24 2026 GMT
Not After : May 13 07:53:24 2026 GMT
Subject: CN=69faf3bf-4acb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:4e:f7:77:2e:ea:b9:9d:75:63:b2:71:31:00:
33:df:ea:82:df:bd:82:b6:00:41:81:2d:ff:21:42:
da:2a:3f:9a:cd:0d:a1:3b:7c:41:f7:07:a2:37:52:
a6:7f:a2:38:02:50:b0:00:0e:58:73:7a:52:d0:7c:
42:26:97:d5:ad:37:97:52:61:d5:c6:2e:c7:87:24:
47:b3:65:0c:5c:c0:82:02:6d:8e:a2:a9:38:e9:d3:
84:13:57:c5:21:ad:15:64:a6:42:fc:a8:57:23:42:
32:b8:16:c9:93:b7:9f:4d:2d:56:e7:4b:33:e7:ee:
48:a8:cd:55:88:ca:77:3c:f2:29:c6:47:5e:a1:86:
f2:00:f6:b8:cb:cb:8a:4b:8c:fe:2c:53:3a:fb:10:
b7:6b:48:f5:11:6b:d8:49:f5:a7:32:bf:72:88:33:
62:ad:fc:a1:a2:3c:7d:d6:fd:e2:fc:0b:f0:79:c2:
b9:12:60:0b:14:e8:94:5f:f7:2d:e0:17:92:a7:23:
b7:b0:ad:55:b7:a4:13:d6:33:a0:f8:88:2d:d3:a0:
ab:bc:b8:55:a8:61:5c:92:4b:2b:d0:23:9c:cd:a3:
c7:20:f0:53:95:ef:36:1a:4f:82:2b:68:65:3f:ac:
12:fd:e6:8b:77:9c:ae:d5:0f:c6:a9:53:f1:ec:a2:
b2:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:10:FA:3B:D2:2B:C5:70:C3:01:69:63:19:3F:28:F5:48:6A:53:56
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D51D04A2492011F1B6691F0DCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.32.0/19
Signature Algorithm: sha256WithRSAEncryption
b3:5a:79:67:2d:3b:4a:81:54:1e:32:ef:8a:02:6e:57:45:a8:
18:47:ad:53:05:b6:02:83:af:6c:c9:5e:82:0b:21:0f:f4:3a:
79:da:b3:25:f8:d2:75:16:bb:bb:c8:f7:64:ab:1d:ea:51:65:
ec:1d:bf:86:e5:02:2a:fb:79:cb:2e:04:35:87:0c:67:aa:14:
04:b8:a2:9e:b1:1b:ef:c0:80:9d:dd:18:e2:90:e8:eb:ae:98:
e6:c2:29:27:b9:07:02:27:80:be:33:50:af:9e:d4:97:9a:92:
59:4a:36:46:3a:78:35:27:3f:33:37:e9:21:a5:b5:cc:ee:19:
83:ec:c7:ff:e0:c7:64:e6:97:95:fc:3e:80:cf:16:d7:9e:a8:
a9:d2:ac:b6:25:f7:ac:35:76:c3:21:47:f1:e2:3d:88:b8:65:
17:36:4f:7d:d2:cb:9d:fe:ad:7d:d9:cc:90:75:8b:cf:a4:e9:
9c:33:a1:30:64:6f:14:59:1a:25:12:7c:c5:2e:7b:15:4c:fe:
96:a4:f3:c2:ec:1f:98:e0:c7:48:bb:a2:e6:96:70:f5:98:92:
e0:68:ae:c6:cd:e9:22:ee:ab:ce:89:57:73:de:e2:56:1d:eb:
31:4e:f6:11:47:d0:06:09:a2:c9:a8:2b:08:c8:bc:fc:70:ca:
5a:e0:fd:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:35:06 2026 by rpki-client