Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DA6332F8455E11F1B15DC6AECE1D38B0.roa
File: DA6332F8455E11F1B15DC6AECE1D38B0.roa (raw, json)
Hash identifier: zO8n4QslTN5hB/0OIOZbnqxVlV0dqMLD5j7qWQG4Umc=
Subject key identifier: 32:BF:A5:94:FB:B4:39:28:80:E5:6B:33:B3:A0:E0:2F:79:20:67:7A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B0A2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DA6332F8455E11F1B15DC6AECE1D38B0.roa
Signing time: Fri 01 May 2026 13:08:32 +0000
ROA not before: Fri 01 May 2026 13:08:27 +0000
ROA not after: Mon 06 Jul 2026 13:08:27 +0000
asID: 153347
IP address blocks: 45.192.21.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110754 (0x1b0a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 1 13:08:27 2026 GMT
Not After : Jul 6 13:08:27 2026 GMT
Subject: CN=69f4a5d0-4205
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:17:bb:35:04:d8:45:49:04:8d:e9:4b:c8:a8:
d0:63:77:f1:85:1e:61:f4:28:fc:eb:6c:87:16:81:
d6:e5:f8:12:c2:d3:53:09:13:3f:3e:ed:13:62:40:
c1:21:f0:5c:5a:28:4b:e1:ea:13:a0:f2:2f:20:8c:
bc:47:eb:87:62:70:45:05:3d:c9:f3:c1:5c:59:53:
2f:b7:73:f6:03:5a:76:9b:18:4d:61:ff:97:72:eb:
d8:a5:aa:b1:a2:ce:c8:d5:91:b3:33:1e:d7:55:fe:
f3:13:8c:b8:50:1a:57:c3:d2:80:d7:d7:90:7f:f9:
ce:84:73:69:26:47:8f:05:66:9b:59:23:83:9b:66:
10:8a:93:a4:23:f7:6f:a3:b5:7b:a4:57:2d:5e:08:
21:bf:6c:51:cd:9a:72:bd:f5:07:bf:0e:9c:a0:f5:
9a:05:cf:36:72:7b:81:04:78:07:aa:a3:82:3d:f3:
c9:cc:59:b0:25:bd:cb:27:cb:1d:4a:24:70:47:4d:
05:49:b6:f9:16:69:80:f1:20:43:7d:3b:eb:c7:48:
37:b8:0a:2b:f6:d8:07:f3:67:a5:2e:2b:a1:39:68:
fa:83:88:ec:f1:c5:53:10:29:16:3f:eb:45:07:0f:
98:51:c7:ac:96:82:3e:8f:49:f6:7b:ea:c4:9b:86:
27:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:BF:A5:94:FB:B4:39:28:80:E5:6B:33:B3:A0:E0:2F:79:20:67:7A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/DA6332F8455E11F1B15DC6AECE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.192.21.0/24
Signature Algorithm: sha256WithRSAEncryption
04:29:9e:55:c2:70:06:a4:2e:89:a6:c4:2b:15:bf:66:8e:88:
65:9b:c4:c5:23:34:b8:4c:b1:93:00:00:58:89:b1:7a:c0:ca:
ee:e1:ec:5c:db:61:68:29:74:bc:fc:47:e5:61:31:d7:f5:73:
a7:a1:74:a8:09:bf:29:d6:28:c1:b8:39:c9:59:43:cd:51:40:
21:d7:a3:7b:84:9e:58:50:5e:e2:3b:de:fc:00:4f:74:d3:b3:
c2:ef:59:ab:ff:76:0c:13:ce:56:3e:c4:d2:f9:bd:b9:1e:c8:
b4:0a:5e:fc:ee:d2:c5:aa:94:c9:6f:f0:80:35:60:4f:6a:99:
01:12:ed:a2:cf:b3:ff:88:b9:0b:c9:a2:20:d6:86:b1:1e:3d:
a6:9d:7d:b7:8b:bb:0d:0b:28:fb:7b:62:93:e4:a4:14:f3:d1:
6f:77:11:5c:25:ac:5b:a6:71:75:c7:19:28:70:be:93:47:2a:
e4:18:d2:09:28:ff:24:df:c6:0b:d0:6b:a5:08:03:bc:42:c8:
b0:d1:14:63:f4:3c:ca:0a:34:89:5b:a4:30:34:05:74:57:e5:
6d:e8:d0:6e:c6:52:2b:2e:37:e6:41:1d:ce:8a:0b:37:89:c9:
b8:67:ff:a5:b0:74:15:aa:f0:c1:b8:b5:67:04:96:8e:8c:f6:
ad:9e:bb:db
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAbCiMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwNTAxMTMwODI3WhcNMjYwNzA2MTMwODI3WjAYMRYw
FAYDVQQDEw02OWY0YTVkMC00MjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvBe7NQTYRUkEjelLyKjQY3fxhR5h9Cj862yHFoHW5fgSwtNTCRM/Pu0T
YkDBIfBcWihL4eoToPIvIIy8R+uHYnBFBT3J88FcWVMvt3P2A1p2mxhNYf+XcuvY
paqxos7I1ZGzMx7XVf7zE4y4UBpXw9KA19eQf/nOhHNpJkePBWabWSODm2YQipOk
I/dvo7V7pFctXgghv2xRzZpyvfUHvw6coPWaBc82cnuBBHgHqqOCPfPJzFmwJb3L
J8sdSiRwR00FSbb5FmmA8SBDfTvrx0g3uAor9tgH82elLiuhOWj6g4js8cVTECkW
P+tFBw+YUcesloI+j0n2e+rEm4YnhwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFDK/
pZT7tDkogOVrM7Og4C95IGd6MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC9EQTYzMzJGODQ1NUUxMUYxQjE1REM2QUVDRTFEMzhCMC5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALcAVMA0GCSqGSIb3DQEBCwUA
A4IBAQAEKZ5VwnAGpC6JpsQrFb9mjohlm8TFIzS4TLGTAABYibF6wMru4exc22Fo
KXS8/EflYTHX9XOnoXSoCb8p1ijBuDnJWUPNUUAh16N7hJ5YUF7iO978AE9007PC
71mr/3YME85WPsTS+b25Hsi0Cl787tLFqpTJb/CANWBPapkBEu2iz7P/iLkLyaIg
1oaxHj2mnX23i7sNCyj7e2KT5KQU89FvdxFcJaxbpnF1xxkocL6TRyrkGNIJKP8k
38YL0GulCAO8Qsiw0RRj9DzKCjSJW6QwNAV0V+Vt6NBuxlIrLjfmQR3Oigs3icm4
Z/+lsHQVqvDBuLVnBJaOjPatnrvb
-----END CERTIFICATE-----
Generated at Wed May 13 09:08:26 2026 by rpki-client