Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3D372BF4B88911F08E3196BDDAE4EC9C.roa
File: 3D372BF4B88911F08E3196BDDAE4EC9C.roa (raw, json)
Hash identifier: 5Tq9qsa3reqfDRP9Gt9CCAeQsz5ya8iAn6LWQQeY3PM=
Subject key identifier: FB:52:EB:C7:75:79:18:33:17:DE:5F:B8:98:A9:5E:32:9E:B7:56:42
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01845B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3D372BF4B88911F08E3196BDDAE4EC9C.roa
Signing time: Mon 03 Nov 2025 07:46:43 +0000
ROA not before: Mon 03 Nov 2025 07:46:37 +0000
ROA not after: Thu 05 Feb 2026 07:46:37 +0000
asID: 9294
IP address blocks: 45.197.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 06 Nov 2025 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99419 (0x1845b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 3 07:46:37 2025 GMT
Not After : Feb 5 07:46:37 2026 GMT
Subject: CN=69085de3-05d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:cf:43:b9:55:73:66:82:6b:a4:05:85:08:06:
7a:61:67:69:b0:b4:66:71:e4:33:db:9a:a7:9f:ab:
2a:83:bf:d0:ac:d3:73:0a:94:dd:7c:06:a3:17:3e:
8a:ab:96:17:96:8b:47:d2:0b:02:0c:7a:bc:64:f2:
ee:f0:71:72:a8:b9:7a:31:63:d4:79:d7:85:10:2b:
bc:e4:7c:5a:98:a9:62:02:87:fe:0b:ec:6b:40:ac:
d2:a0:6a:56:87:f5:87:f0:89:c5:33:87:79:1b:7e:
25:c0:24:6e:ed:0c:b3:38:a3:9a:40:e8:37:10:ac:
7d:47:3d:37:93:e1:a6:07:37:a6:39:63:a0:7a:1d:
c6:57:16:8d:19:ad:f6:a0:61:c1:5f:aa:66:5e:40:
c0:60:2d:c8:5f:07:71:a9:42:54:84:ea:29:92:f9:
86:8f:ac:13:b3:c1:68:33:60:6a:f9:85:25:b1:30:
ed:49:63:8c:c8:02:39:13:f3:98:70:9b:01:d4:e6:
9b:69:57:00:ef:a2:1c:a8:0b:16:0c:ed:94:df:2c:
4a:f8:50:de:8b:71:4d:c3:01:d4:81:cd:82:3a:86:
a9:96:a5:0d:42:75:aa:70:2c:5c:b0:ec:d4:79:2c:
c5:42:26:1c:cb:0e:79:bc:82:30:79:9b:9d:59:63:
f2:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:52:EB:C7:75:79:18:33:17:DE:5F:B8:98:A9:5E:32:9E:B7:56:42
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3D372BF4B88911F08E3196BDDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.197.32.0/19
Signature Algorithm: sha256WithRSAEncryption
14:be:d2:10:34:70:f1:37:fd:e2:80:f0:7e:bd:43:a4:b0:5a:
57:47:c7:74:5c:91:d7:25:e8:ce:51:be:ca:e9:5d:8b:37:47:
a5:8d:2b:ee:c2:e5:b6:f2:4c:32:98:a7:b5:c8:5c:ec:44:78:
c1:45:26:69:82:eb:71:6b:01:19:3e:92:55:47:a7:38:8a:8b:
d7:0c:25:a0:b5:e0:69:10:70:38:a9:b0:0f:f0:09:ae:72:bd:
c6:13:b0:20:16:af:dc:9d:9f:2e:9e:82:36:b8:d9:3e:39:c0:
15:df:21:d1:a8:18:a9:a7:6f:9b:5a:0b:4a:e8:02:27:c5:f9:
6b:a2:30:e4:f1:f4:fb:5e:23:a7:07:35:e1:c9:f3:93:28:dc:
ef:11:22:39:48:69:07:4f:2c:1a:3a:18:7a:2c:35:99:5c:91:
8f:31:5b:fb:ab:4b:25:e4:5a:cb:66:be:49:13:63:66:c8:6f:
c8:86:dc:40:4f:65:76:ec:b0:03:ee:aa:49:de:e6:ba:22:65:
cc:85:91:d2:52:9f:af:97:12:19:33:d5:39:e2:da:17:91:77:
c0:00:55:91:54:22:fa:02:00:d7:5d:c2:33:c6:86:9e:51:26:
f1:dd:8f:9b:fa:70:5b:74:dd:f3:48:e0:4c:a2:e1:22:7b:cd:
21:2c:6b:b3
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAYRbMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjUxMTAzMDc0NjM3WhcNMjYwMjA1MDc0NjM3WjAYMRYw
FAYDVQQDEw02OTA4NWRlMy0wNWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA3s9DuVVzZoJrpAWFCAZ6YWdpsLRmceQz25qnn6sqg7/QrNNzCpTdfAaj
Fz6Kq5YXlotH0gsCDHq8ZPLu8HFyqLl6MWPUedeFECu85HxamKliAof+C+xrQKzS
oGpWh/WH8InFM4d5G34lwCRu7QyzOKOaQOg3EKx9Rz03k+GmBzemOWOgeh3GVxaN
Ga32oGHBX6pmXkDAYC3IXwdxqUJUhOopkvmGj6wTs8FoM2Bq+YUlsTDtSWOMyAI5
E/OYcJsB1OabaVcA76IcqAsWDO2U3yxK+FDei3FNwwHUgc2COoaplqUNQnWqcCxc
sOzUeSzFQiYcyw55vIIweZudWWPyjwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFPtS
68d1eRgzF95fuJipXjKet1ZCMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8zRDM3MkJGNEI4ODkxMUYwOEUzMTk2QkREQUU0RUM5Qy5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFLcUgMA0GCSqGSIb3DQEBCwUA
A4IBAQAUvtIQNHDxN/3igPB+vUOksFpXR8d0XJHXJejOUb7K6V2LN0eljSvuwuW2
8kwymKe1yFzsRHjBRSZpgutxawEZPpJVR6c4iovXDCWgteBpEHA4qbAP8Amucr3G
E7AgFq/cnZ8unoI2uNk+OcAV3yHRqBipp2+bWgtK6AInxflrojDk8fT7XiOnBzXh
yfOTKNzvESI5SGkHTywaOhh6LDWZXJGPMVv7q0sl5FrLZr5JE2NmyG/IhtxAT2V2
7LAD7qpJ3ua6ImXMhZHSUp+vlxIZM9U54toXkXfAAFWRVCL6AgDXXcIzxoaeUSbx
3Y+b+nBbdN3zSOBMouEie80hLGuz
-----END CERTIFICATE-----
Generated at Tue Nov 4 15:59:02 2025 by rpki-client