Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3513247C3FB211F1A6B9E4A2CE1D38B0.roa
File: 3513247C3FB211F1A6B9E4A2CE1D38B0.roa (raw, json)
Hash identifier: X78CyeI52p7D7IGPyAYFnwZ6DwFMfGRkPQXAX8CFmDI=
Subject key identifier: 25:8C:40:EA:64:63:C7:F3:27:42:DF:B1:E5:DD:16:F0:32:29:D5:2A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AED2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3513247C3FB211F1A6B9E4A2CE1D38B0.roa
Signing time: Fri 24 Apr 2026 07:50:06 +0000
ROA not before: Fri 24 Apr 2026 07:50:00 +0000
ROA not after: Sat 30 May 2026 07:50:00 +0000
asID: 35916
IP address blocks: 156.225.192.0/18 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110290 (0x1aed2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 24 07:50:00 2026 GMT
Not After : May 30 07:50:00 2026 GMT
Subject: CN=69eb20ad-ec8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:81:b8:ff:a7:42:aa:38:4a:91:ea:3e:1c:ae:
51:3f:c5:54:96:b8:a4:d1:34:2e:64:6f:c0:ce:af:
8b:19:dc:4e:7c:56:54:ad:84:cf:d6:71:16:15:6c:
18:fc:df:17:ed:76:28:dc:43:e3:c8:e0:0b:0c:37:
e9:03:fe:c7:2a:f2:72:f8:db:62:02:24:c8:11:f1:
83:cf:34:a7:bf:bd:48:62:17:4c:45:6b:9d:dc:ea:
9a:a6:6c:68:1b:3d:e4:4a:53:4d:50:98:01:56:31:
7a:aa:ad:ee:1b:79:b7:b4:1d:8b:b8:85:a2:6b:d0:
3a:5b:95:f3:63:4f:e6:e2:1a:d1:d0:54:db:98:e8:
3e:f7:aa:5d:c9:f7:d1:af:3f:4a:f6:04:43:c6:7e:
5b:3e:7f:4a:ed:06:d4:9d:7e:3a:4e:20:01:30:57:
0a:dc:ae:5b:6b:94:88:a6:47:c5:d1:af:5f:fd:14:
65:1e:4d:54:6b:f3:25:09:f0:18:80:34:c8:c3:14:
2b:ba:ad:4b:d0:f2:c6:fc:89:6a:0e:d4:f3:0f:2d:
81:c1:bd:5f:3e:a2:60:7c:6e:41:19:5e:4c:c0:8e:
7a:e1:c5:e6:46:5a:7b:86:46:07:a0:dc:70:f1:bc:
7c:04:4c:84:e1:43:5c:b7:bd:3a:7c:bf:5f:ae:bd:
3a:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:8C:40:EA:64:63:C7:F3:27:42:DF:B1:E5:DD:16:F0:32:29:D5:2A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3513247C3FB211F1A6B9E4A2CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.192.0/18
Signature Algorithm: sha256WithRSAEncryption
5d:b3:1c:23:b9:a8:6c:3b:c4:fe:c7:30:c2:8d:fa:ce:d4:59:
b6:18:2c:bd:8e:ce:e9:b1:51:2a:c4:64:f2:08:d3:24:2f:2f:
e7:38:d6:ab:e9:69:cf:9e:35:f1:db:18:33:d2:d1:51:38:7d:
46:60:1e:c9:af:0f:01:85:3f:ef:d5:e3:4c:ea:0d:7f:69:d1:
30:04:c0:0c:ef:2c:63:b3:6b:f4:71:28:0e:c9:58:51:ec:15:
34:65:7e:39:9e:73:d4:b1:2d:0c:da:76:9f:38:3c:6e:49:1d:
cf:10:54:09:53:ad:e2:c9:f7:df:85:a7:69:79:69:20:b2:7c:
a6:72:f5:11:a7:de:68:51:1a:6e:f2:9a:c9:71:f4:76:50:c7:
eb:a7:2a:6a:bc:6c:3a:52:9b:ab:06:7f:79:ef:98:04:a6:33:
31:fd:fd:ec:b7:f0:7f:de:86:f3:df:8b:c3:59:5e:7a:47:b1:
b2:6f:24:6e:02:be:6a:5d:b0:ca:9a:73:2c:b5:e3:9c:3f:cf:
d3:1e:40:b5:6d:4b:7b:99:66:04:c1:20:f8:b6:2b:d4:7d:8b:
e9:84:ab:8d:5a:25:1c:9c:bb:4f:64:de:5a:71:42:d5:82:84:
e4:e9:ae:19:f0:dd:3d:1a:4d:6c:a1:a2:bb:84:e8:85:ee:6f:
75:61:2c:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 11:18:31 2026 by rpki-client