Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3ECADDFC4C9111F1AF13CBEECE1D38B0.roa
File: 3ECADDFC4C9111F1AF13CBEECE1D38B0.roa (raw, json)
Hash identifier: JJzxhpXjSB1k+SvaBYz4R8kLnFMuL6xU50mkZN/bTaQ=
Subject key identifier: E7:96:11:61:A8:85:C5:97:83:DD:73:8B:91:58:AB:62:D2:17:E6:E5
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B37D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3ECADDFC4C9111F1AF13CBEECE1D38B0.roa
Signing time: Sun 10 May 2026 16:56:53 +0000
ROA not before: Sun 10 May 2026 16:56:48 +0000
ROA not after: Wed 10 Jun 2026 16:56:48 +0000
asID: 401615
IP address blocks: 156.226.170.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 14 May 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111485 (0x1b37d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 10 16:56:48 2026 GMT
Not After : Jun 10 16:56:48 2026 GMT
Subject: CN=6a00b8d5-0f1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:ce:df:dd:1a:0c:c0:13:9a:a9:99:f8:08:24:
e4:c0:79:1f:57:37:27:67:1d:60:9d:03:ec:ad:6d:
8b:ec:60:c3:85:fb:05:6e:88:b1:e9:42:a9:41:a0:
f3:a6:3d:39:34:81:4d:d2:79:c4:bf:e0:6a:eb:c3:
d4:0f:77:c3:e3:4f:ce:48:5a:27:bf:f8:86:ac:34:
2d:c2:64:3b:45:5a:4f:43:36:0f:6d:f8:ca:4d:89:
5f:74:1e:55:c3:24:82:b9:b4:25:ee:7e:9b:37:cc:
47:cb:b4:5a:95:87:39:96:37:9d:03:06:54:78:63:
39:8e:03:b5:0a:a5:8e:ad:52:3a:61:f2:9e:09:e7:
fb:84:36:6e:f4:5b:94:7d:ae:de:0b:d6:8a:3b:e7:
70:63:f9:83:c1:3d:8d:5c:1e:36:d2:98:46:db:3a:
ef:55:ee:c2:c4:85:8d:dd:ae:f7:52:d5:3b:16:f1:
c6:59:00:7e:11:05:22:fd:c6:66:1f:bd:e3:2f:0e:
1d:90:be:e3:72:98:c8:5a:1a:e7:89:95:4e:4d:11:
57:2f:4e:14:3e:a9:e3:43:c1:95:eb:c4:7a:1e:35:
d7:2f:1b:7c:b5:bc:40:c3:1b:39:47:8a:ae:22:18:
43:59:bb:99:d1:17:46:c4:56:a1:31:65:15:95:3e:
62:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:96:11:61:A8:85:C5:97:83:DD:73:8B:91:58:AB:62:D2:17:E6:E5
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3ECADDFC4C9111F1AF13CBEECE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.226.170.0/23
Signature Algorithm: sha256WithRSAEncryption
0d:ea:14:af:10:c3:00:6e:cc:ca:b4:82:ae:b0:a6:54:cb:35:
cc:e5:81:db:cb:2e:fe:8c:b2:ba:3f:e0:8e:cf:d4:dc:94:4f:
81:c7:2c:4f:65:93:bf:60:6a:9c:49:0d:49:ad:d6:86:ac:a7:
e2:ec:d0:83:2b:69:fd:2e:f7:fd:62:30:49:6e:a7:a1:11:cf:
81:b3:93:f9:79:fb:e7:ae:ff:05:70:53:a8:06:29:26:85:0e:
a6:c5:46:78:35:39:34:d8:26:e7:33:b8:89:be:cd:4d:97:58:
1d:07:de:a1:29:55:ec:b5:0d:15:2d:b4:98:93:df:e8:95:51:
a2:8a:da:f8:c7:6a:36:e1:f0:db:4c:fb:8b:9a:e4:d0:1f:e0:
b2:36:d1:db:38:27:3c:a0:77:e5:8c:e0:9c:f1:d3:55:82:93:
15:73:47:99:06:e2:b9:8b:1c:1d:7b:f5:8f:e7:ed:3f:cd:59:
44:41:f2:28:4b:71:ad:b9:ee:bc:9a:da:66:05:24:48:0c:41:
79:ea:58:ce:12:b5:06:3b:13:69:c2:21:e9:ea:a9:2e:b7:53:
e8:d5:13:a2:50:0d:56:1b:53:17:cf:f0:11:b5:35:0c:4c:ae:
3e:41:96:04:1f:59:fd:c9:59:3f:1a:7f:39:09:1d:0d:5a:dd:
dd:2f:b3:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:23:19 2026 by rpki-client