Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F561457A447F11F19F5959E3CE1D38B0.roa
File: F561457A447F11F19F5959E3CE1D38B0.roa (raw, json)
Hash identifier: XlClFRN38NHnD+NHE0e0Kkc+2U+Ff2WSxYWT63VJjzU=
Subject key identifier: BF:7B:31:B7:6C:6E:4A:F1:41:AE:F7:64:38:8E:93:F7:A0:4C:8D:17
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B022
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F561457A447F11F19F5959E3CE1D38B0.roa
Signing time: Thu 30 Apr 2026 10:33:00 +0000
ROA not before: Thu 30 Apr 2026 10:32:55 +0000
ROA not after: Fri 12 Jun 2026 10:32:55 +0000
asID: 49981
IP address blocks: 45.196.232.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110626 (0x1b022)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 30 10:32:55 2026 GMT
Not After : Jun 12 10:32:55 2026 GMT
Subject: CN=69f32fdc-113c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:87:a4:e0:bd:14:8b:65:b9:75:0a:eb:a5:20:
17:b0:64:83:03:93:59:54:42:bf:0d:2f:6e:99:94:
94:f9:50:d4:dc:c7:dd:68:81:ea:85:48:58:84:6c:
f3:d7:94:70:a5:bf:69:b3:12:cc:09:28:cf:40:6b:
76:9c:eb:4d:0f:80:5c:fd:57:87:1c:68:b1:67:d4:
36:2a:5b:88:8d:d0:fe:fa:bb:52:d0:1f:0f:6d:db:
21:40:3a:2f:28:bd:2c:39:8a:9d:7f:e8:0f:b4:74:
3e:e0:47:35:86:ab:c0:7b:a7:7e:62:3c:2e:9a:38:
6e:db:59:03:f6:ca:2e:70:0d:24:da:96:5d:ae:32:
8d:9d:ea:75:31:e3:a1:3d:d7:a6:9e:3b:5c:c1:ae:
7a:ea:be:d0:40:1e:21:16:85:5b:5b:0b:7a:22:5f:
b7:df:32:40:12:c6:97:3e:37:57:14:37:91:18:30:
2f:42:92:d4:ae:67:a7:1d:48:4b:06:c5:ab:15:c7:
21:fe:b2:a6:23:7b:58:e9:44:ab:90:cf:0b:ee:ed:
3f:58:02:8b:04:a5:b1:68:77:1a:58:8a:8b:ab:f0:
09:13:85:6d:94:d7:c9:7a:bc:ac:8c:f1:4c:6e:4e:
ff:12:c6:8b:cd:9e:db:00:e9:cb:10:18:a1:4e:82:
fe:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:7B:31:B7:6C:6E:4A:F1:41:AE:F7:64:38:8E:93:F7:A0:4C:8D:17
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F561457A447F11F19F5959E3CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.196.232.0/24
Signature Algorithm: sha256WithRSAEncryption
26:e4:c2:ee:44:bb:d5:15:a9:46:6d:f8:8b:1e:1e:28:68:92:
18:20:12:54:1a:6f:ec:e8:b7:59:b1:a3:a9:88:ab:78:2b:1b:
56:9e:b3:50:67:3d:d5:5b:50:45:b0:e5:42:a7:11:8f:75:54:
70:a3:f4:41:01:e5:f5:cf:39:03:81:c6:0e:71:35:e2:04:f1:
cc:2d:62:f5:a8:26:bd:31:9e:46:9c:16:8e:c1:58:66:e6:69:
e8:0f:8c:cb:7e:da:44:3a:34:ba:b6:39:17:ea:59:8e:ab:00:
14:18:59:40:b5:d5:fa:aa:97:98:45:5f:ad:ce:c5:88:37:3e:
b3:58:4b:86:f6:d9:6a:76:74:96:21:a1:b9:cb:38:e6:a7:0f:
8a:b5:2e:b5:f0:32:64:90:ec:50:38:91:ad:2f:7d:73:72:0f:
17:f8:1d:1c:6a:72:58:97:cc:60:82:65:f5:c9:0c:cc:99:bd:
d4:93:bc:b2:56:6b:9a:d6:32:0f:54:c7:9c:02:fb:13:d6:bf:
58:60:af:f8:d1:2f:97:06:e8:b7:fe:a9:53:8a:3e:90:ce:a7:
12:6a:93:3e:d5:5f:bf:f0:6d:2a:fe:a4:46:10:7d:b3:1f:f5:
7a:27:d1:e8:5a:fa:76:44:25:06:06:1c:1c:6f:2e:9b:ca:ef:
a1:35:5a:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 12:40:52 2026 by rpki-client