Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/109FA2E24B5011F19D29C2CCCE1D38B0.roa
File: 109FA2E24B5011F19D29C2CCCE1D38B0.roa (raw, json)
Hash identifier: v+BZuBPF7mAz8262IgtilL3FuJJjZVkxN9F8+RvMytE=
Subject key identifier: 73:7A:8B:52:2B:A6:07:EC:26:62:4D:AB:DC:C8:BB:60:0F:D1:32:E4
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B2F3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/109FA2E24B5011F19D29C2CCCE1D38B0.roa
Signing time: Sat 09 May 2026 02:37:48 +0000
ROA not before: Sat 09 May 2026 02:37:43 +0000
ROA not after: Fri 15 May 2026 02:37:43 +0000
asID: 137263
IP address blocks: 156.250.2.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111347 (0x1b2f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 9 02:37:43 2026 GMT
Not After : May 15 02:37:43 2026 GMT
Subject: CN=69fe9dfc-9cad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:66:94:b4:7c:b5:70:62:a0:2e:39:c4:a9:5e:
1c:9b:5c:99:bc:7b:a8:b3:fb:ce:54:1a:3e:c7:59:
96:d6:3a:fa:39:d6:e0:4c:04:c9:34:1c:05:16:33:
7d:b7:72:67:10:a0:77:32:2b:9a:27:2f:46:aa:8b:
48:0c:d2:be:45:9c:57:f6:22:f1:09:8a:09:c2:27:
de:fe:4f:e5:4f:a0:ab:06:99:fe:69:24:1d:a4:e1:
fa:db:d1:22:7d:f1:26:5d:45:48:43:78:0e:fd:67:
43:da:de:f3:ed:4c:06:a5:36:db:64:ce:d2:39:3d:
df:4e:c9:31:34:30:58:d2:c8:85:8c:6e:b9:54:5a:
6a:99:68:ba:c5:86:52:67:e8:e1:fb:07:75:df:e8:
8e:d6:09:24:6b:53:d0:26:75:db:7e:bc:ae:7f:fd:
19:63:6b:ae:90:cb:8f:1b:57:b4:4c:42:c5:dc:d0:
c1:82:38:83:bd:5b:d7:39:fb:aa:a4:45:e7:04:1f:
08:a5:e3:89:56:42:a4:9b:fe:40:c4:17:7a:e1:f6:
56:a7:e9:15:d7:28:6b:aa:58:9d:9f:9b:ab:98:1c:
bd:a1:62:16:e8:1e:ec:54:6b:f2:58:f1:34:42:c2:
c7:d1:86:ec:79:bf:e6:28:9f:7e:49:79:4f:95:c7:
02:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:7A:8B:52:2B:A6:07:EC:26:62:4D:AB:DC:C8:BB:60:0F:D1:32:E4
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/109FA2E24B5011F19D29C2CCCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.250.2.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:5a:6c:63:08:4f:a1:84:b9:11:03:59:0e:41:eb:77:d8:8e:
f7:2b:24:ea:89:2f:1f:61:09:aa:d6:e5:f9:59:81:55:45:dd:
3d:af:9c:98:cc:e7:7e:e2:f5:01:33:71:0e:3f:92:6f:6d:42:
92:38:54:8d:7b:c6:e6:e8:7a:62:34:4d:b0:68:49:2c:72:5e:
9c:97:51:1e:31:79:40:65:1d:44:87:ca:1e:fc:95:6d:7c:6d:
ec:a8:56:f6:10:b6:de:cc:58:94:0f:15:bc:68:82:85:09:b9:
c9:8a:36:b2:6b:d8:a9:a5:ed:0d:ca:ed:4f:48:75:70:8e:ce:
86:22:3a:2c:6e:5c:a4:31:f2:11:40:5a:06:92:45:fb:08:9d:
6d:2e:e6:b9:92:2f:ce:11:85:b8:58:95:e8:f2:17:69:59:d6:
44:7a:07:11:74:83:c9:ec:3b:c5:6a:9a:1d:43:64:54:34:e2:
74:e3:84:16:00:0a:dd:27:59:43:a2:0d:7a:a6:49:ce:9c:f4:
75:1f:81:09:5c:f5:b2:07:ae:68:e9:ac:9e:0a:fb:fb:a2:6a:
d0:67:79:bd:88:52:01:b4:1a:bc:64:d5:e9:50:f8:a6:04:f2:
d4:48:23:68:b2:b7:77:95:29:ab:35:93:b4:f7:eb:8f:87:1f:
6a:22:55:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 10:30:25 2026 by rpki-client