Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/20F010AA4AC911F1846535A3CE1D38B0.roa
File: 20F010AA4AC911F1846535A3CE1D38B0.roa (raw, json)
Hash identifier: fl0WSZtWRoksmSZjcyz7+QAsq58OgexIM/AZ+ist/a0=
Subject key identifier: 5D:49:5F:98:3D:F5:26:32:54:10:C5:2F:6D:5C:27:26:37:C3:BD:29
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B2D5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/20F010AA4AC911F1846535A3CE1D38B0.roa
Signing time: Fri 08 May 2026 10:31:53 +0000
ROA not before: Fri 08 May 2026 10:31:48 +0000
ROA not after: Sun 31 May 2026 10:31:48 +0000
asID: 63099
IP address blocks: 156.225.50.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111317 (0x1b2d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 8 10:31:48 2026 GMT
Not After : May 31 10:31:48 2026 GMT
Subject: CN=69fdbb99-f306
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:50:af:cb:6b:3d:da:a5:3d:af:39:22:94:0a:
6d:e0:fc:b4:92:1b:a8:71:67:1e:91:7d:bf:3a:c3:
d9:e6:4d:3f:e6:cb:9d:bb:4f:6f:44:2a:4c:03:49:
ff:48:7e:4e:ec:88:a6:90:af:f4:f9:dd:61:07:d6:
75:e6:2c:1d:24:76:bd:1f:fa:ac:98:39:9a:19:b3:
27:dc:aa:b5:4d:b8:40:a3:db:81:0a:c1:bd:29:1d:
d5:ff:0a:13:2b:78:92:9c:bb:3f:0d:1e:2d:c2:96:
84:c0:c5:95:ec:92:ec:81:06:42:b6:3f:5d:34:59:
4a:7a:80:42:f3:f4:7a:3c:4d:59:3d:33:ec:55:d9:
16:e1:91:5f:5c:49:f8:9a:05:89:e7:6d:81:a3:1d:
f2:18:ff:2a:54:85:64:f1:ed:6a:d0:9d:aa:9f:f6:
ae:21:74:86:5e:0b:6c:97:b7:fb:9f:29:97:be:c9:
0c:a1:a6:4e:0d:3c:d5:6f:da:92:01:17:76:8d:92:
cf:f7:fd:42:d2:b0:55:40:0e:5d:47:23:82:5e:ac:
80:40:e7:59:e3:20:f5:d1:7b:64:a1:64:a0:99:88:
af:14:d9:7f:64:4c:86:f1:d1:ea:5c:29:5e:54:ba:
b7:eb:ae:56:6a:3c:82:ec:c4:0b:69:7b:2c:94:d2:
bd:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:49:5F:98:3D:F5:26:32:54:10:C5:2F:6D:5C:27:26:37:C3:BD:29
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/20F010AA4AC911F1846535A3CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.50.0/24
Signature Algorithm: sha256WithRSAEncryption
53:3b:f1:c0:e2:91:87:1a:fd:a7:69:87:6d:d1:a6:f4:8d:b4:
0d:ac:63:b8:3a:0d:7f:f8:f4:bb:61:39:d3:1c:73:c6:82:8e:
ee:68:cb:70:2f:8c:65:eb:59:1b:3f:28:28:a6:7c:af:b7:8e:
ad:b8:cf:7e:1a:56:f1:b5:44:99:42:36:39:d5:ed:e3:80:0d:
9c:b6:df:cd:df:65:af:a9:9d:aa:df:33:e6:62:ba:7a:a9:ef:
18:58:48:fe:9f:15:83:d1:e3:ce:1c:15:08:0f:db:d9:7a:bd:
a0:8f:6e:1a:08:80:88:c5:b3:74:3d:5d:ca:29:ec:80:79:e2:
ac:e1:ba:4d:0d:b3:ee:24:52:a6:9f:bb:72:c3:c9:0e:80:17:
68:d8:d7:73:bb:4e:8b:e7:04:17:b5:4e:86:b4:eb:6b:3c:42:
d2:3a:64:b6:84:ac:7e:40:5a:7c:55:85:cb:29:41:8a:c5:a9:
a4:3e:ac:f8:17:11:3b:45:7d:f8:26:40:1a:85:67:b5:0b:05:
d1:85:93:af:3e:94:41:38:70:f8:ff:7b:72:52:d2:e0:4c:13:
a4:e2:59:12:28:42:36:a9:6b:db:b0:94:2a:64:72:8d:dd:5f:
77:15:a4:68:b2:f3:72:87:3b:cf:93:d0:13:73:f2:07:47:d3:
be:0d:81:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 10:07:07 2026 by rpki-client