Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/08FCC3F64CE211F1972F8DD8CE1D38B0.roa
File: 08FCC3F64CE211F1972F8DD8CE1D38B0.roa (raw, json)
Hash identifier: Dfr8asKMPOZw/HDYywjpqEM+mNF/K9mHbtIBzeFMHzk=
Subject key identifier: 0C:F5:5D:9E:69:CA:82:FF:FF:D2:95:99:25:70:89:2C:BF:67:1D:7E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B393
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/08FCC3F64CE211F1972F8DD8CE1D38B0.roa
Signing time: Mon 11 May 2026 02:35:12 +0000
ROA not before: Mon 11 May 2026 02:35:08 +0000
ROA not after: Thu 21 May 2026 02:35:08 +0000
asID: 17497
IP address blocks: 156.245.176.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111507 (0x1b393)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 11 02:35:08 2026 GMT
Not After : May 21 02:35:08 2026 GMT
Subject: CN=6a014060-7863
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:76:61:3c:1d:5d:d0:1b:b7:80:f5:62:ef:21:
7a:16:1d:93:f1:45:c9:f1:9c:dc:e1:2e:8e:77:7e:
7d:89:71:3c:3d:b9:9a:36:70:6c:04:ba:e6:4f:66:
ee:a6:1a:f7:12:9a:23:82:b0:31:da:42:c6:3c:29:
41:22:d6:5d:51:87:fc:c2:5b:65:a9:e6:da:45:43:
0c:07:b0:d9:a6:1d:21:3b:e2:4f:44:fd:0f:f0:28:
8b:f3:f5:e5:bf:8f:01:a3:cf:e7:79:25:1f:08:cf:
56:59:af:c2:ff:72:76:84:49:5d:cf:24:0a:20:b8:
cc:70:39:86:08:eb:43:7e:b0:e8:1b:66:c6:21:96:
c4:59:89:39:18:3b:04:30:8c:e9:61:09:e6:36:ac:
58:9a:45:8e:07:da:e4:9e:d3:70:d2:f4:90:f9:68:
38:d4:33:c9:61:e1:5f:4f:fe:72:81:42:5f:37:36:
48:eb:42:71:c3:01:16:96:ac:ef:7b:f1:db:4c:ad:
72:42:d2:a8:26:23:31:50:bc:52:33:cb:78:d2:38:
62:7c:1f:fe:56:92:3a:f1:31:54:0b:eb:27:ee:dc:
45:60:18:b6:8e:67:7b:1e:5f:3e:4e:16:92:8e:1e:
cb:a8:5f:9b:9e:f6:9e:92:a8:56:38:83:d3:38:38:
f1:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:F5:5D:9E:69:CA:82:FF:FF:D2:95:99:25:70:89:2C:BF:67:1D:7E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/08FCC3F64CE211F1972F8DD8CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.176.0/22
Signature Algorithm: sha256WithRSAEncryption
16:9f:a1:ac:1c:de:59:ab:38:fe:84:1a:67:0d:a0:c2:6a:49:
ff:17:ae:1e:a2:24:77:f9:26:69:fc:c8:3c:ca:fc:ab:c2:07:
ae:42:e4:6e:e2:4a:4b:15:21:1c:55:f6:1d:c1:b9:b1:bb:61:
18:2b:2e:05:36:33:ea:a9:11:83:ce:e7:7b:09:ca:53:13:9b:
ad:4c:d0:09:38:7c:26:d0:0c:03:cd:94:e1:65:e9:5a:07:c5:
27:71:45:79:06:91:b6:b3:74:33:98:eb:a7:da:29:25:05:bb:
9f:c1:16:b5:fe:82:56:45:6e:4f:98:9a:eb:69:9a:e8:ef:33:
c2:65:09:48:7f:ac:4f:63:ee:d5:d2:40:96:1b:20:6c:54:79:
de:f8:31:f7:35:b9:1c:49:6d:56:f5:d6:1e:c7:f5:d7:e6:f3:
ae:ee:df:4e:21:9a:3c:e7:f0:92:96:75:2e:80:2e:2f:9d:d3:
c3:bb:0c:f6:56:3a:11:04:a8:c6:95:b9:a8:84:91:f2:fc:39:
5c:c0:8b:47:ee:95:37:15:99:ed:81:dc:89:d9:c7:89:ee:e7:
52:4d:79:0e:39:85:1f:df:70:a8:62:d7:a4:93:36:26:40:89:
ed:82:5e:9d:2f:63:92:5e:14:d7:21:44:39:44:9e:3f:c1:fc:
ad:97:9f:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:55:37 2026 by rpki-client