Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1DB3D23A4A6211F1B65C41A2CE1D38B0.roa
File: 1DB3D23A4A6211F1B65C41A2CE1D38B0.roa (raw, json)
Hash identifier: zUkw15BpyxLChnZegfsZMLhOy1AJCYc8NabqGXM53tw=
Subject key identifier: A6:EE:59:05:20:39:0A:E3:99:40:BA:73:0F:93:38:3A:75:7F:8A:D5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B288
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1DB3D23A4A6211F1B65C41A2CE1D38B0.roa
Signing time: Thu 07 May 2026 22:14:29 +0000
ROA not before: Thu 07 May 2026 22:14:24 +0000
ROA not after: Fri 22 May 2026 22:14:24 +0000
asID: 401696
IP address blocks: 156.233.224.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111240 (0x1b288)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 7 22:14:24 2026 GMT
Not After : May 22 22:14:24 2026 GMT
Subject: CN=69fd0ec5-b886
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:23:84:fc:bc:03:31:10:6f:65:da:b9:b9:b4:
1c:ad:e5:27:d9:ca:e8:35:22:5a:94:7f:8f:e7:f1:
ac:6f:fa:b8:94:d8:72:55:52:02:81:28:b4:89:7b:
e3:80:35:75:ec:5a:54:7a:7a:95:a9:a6:09:52:26:
e5:d4:2d:9c:b7:aa:c6:df:e9:0d:ad:51:40:c6:2c:
3d:df:79:da:0e:9e:39:65:40:31:e1:98:a7:44:13:
68:8c:9a:ee:bc:2a:30:56:f9:a6:cc:1a:8b:ab:2a:
94:3a:66:4a:bb:10:c8:5b:24:85:33:45:d6:5e:64:
d9:21:ac:d2:0b:19:de:8d:62:df:61:ed:cc:16:73:
ca:ef:c4:69:94:52:e2:55:5f:ad:bb:9d:db:0f:d8:
da:10:f9:8f:e0:69:95:4e:af:ed:30:c3:0f:b7:72:
20:ac:41:20:f6:19:e2:bf:db:6c:cc:26:97:ad:4e:
7a:b2:22:98:b7:a8:20:ae:4f:64:36:b9:96:e7:62:
7a:fb:c7:ec:c6:43:8b:e0:37:8d:08:3d:a9:df:14:
8b:4f:8f:1c:28:c0:3b:84:6f:48:38:2f:02:73:d2:
68:6a:10:3f:a7:df:62:d8:b3:ec:6f:d6:2d:52:81:
98:a4:dc:23:47:34:62:cc:19:65:fd:12:37:11:b2:
c2:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:EE:59:05:20:39:0A:E3:99:40:BA:73:0F:93:38:3A:75:7F:8A:D5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1DB3D23A4A6211F1B65C41A2CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.224.0/20
Signature Algorithm: sha256WithRSAEncryption
0e:27:1f:65:95:4a:56:78:bd:bd:77:08:d7:bf:89:8d:78:5b:
04:85:da:d7:43:bb:58:6f:7f:6f:cd:02:78:40:9b:aa:6a:53:
be:8e:c0:20:0b:92:0a:1d:e4:49:85:46:d2:d0:e5:8b:1a:83:
e3:fa:2e:42:9f:b2:86:75:83:14:f6:68:6d:bd:d9:ab:37:56:
62:df:84:71:d4:8c:01:b1:b5:71:a1:61:4f:b6:e4:c2:80:a3:
6a:2c:3d:3b:d0:12:72:d7:bb:44:ad:94:f6:2a:4f:e8:c8:f2:
f9:57:ef:87:8c:e2:44:b1:d2:6f:ae:bc:53:51:35:25:8e:9d:
ce:52:84:58:90:d5:f3:ec:e3:74:8c:d6:7f:93:27:fe:a4:65:
a0:0d:ad:59:e5:e5:a1:93:21:b8:26:21:d1:8f:ae:6f:ca:51:
e3:5a:58:24:46:8f:fb:f6:8a:ee:7e:20:83:5d:10:45:0c:1a:
38:ba:e8:d3:93:48:9d:82:af:d7:f9:a7:14:05:66:4f:3a:77:
c6:8e:4e:7c:bf:8d:1e:56:00:e5:c4:45:5c:eb:c8:67:d8:df:
e6:6c:df:7b:17:9d:57:5a:a8:39:63:57:62:85:7d:c6:2b:4c:
1a:00:21:1c:72:5b:cf:7a:be:2f:fa:5b:9f:4e:4b:fd:09:58:
4a:a6:00:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 08:28:32 2026 by rpki-client