Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/63EB09804CE211F1B713ACDACE1D38B0.roa
File: 63EB09804CE211F1B713ACDACE1D38B0.roa (raw, json)
Hash identifier: dOPiMehb3YyFi5tWxcimoa5Ymf+37aCkIafnUIpup5A=
Subject key identifier: 43:9D:46:E4:55:B4:31:0D:D6:CE:7A:FA:07:F1:EE:79:EA:FD:8D:44
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B395
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/63EB09804CE211F1B713ACDACE1D38B0.roa
Signing time: Mon 11 May 2026 02:37:45 +0000
ROA not before: Mon 11 May 2026 02:37:40 +0000
ROA not after: Thu 21 May 2026 02:37:40 +0000
asID: 17497
IP address blocks: 156.245.176.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111509 (0x1b395)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 11 02:37:40 2026 GMT
Not After : May 21 02:37:40 2026 GMT
Subject: CN=6a0140f9-8f71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:82:8e:45:51:73:5d:f7:14:9c:e0:8c:d2:f2:
bd:22:11:d7:f8:45:e3:1c:b0:f7:94:1c:3c:58:95:
cf:1c:1b:0a:43:55:61:89:03:1a:ed:9f:01:f0:ca:
5c:af:ba:16:b1:d1:a0:85:3c:64:53:77:1b:ce:71:
c4:84:9d:38:5c:28:37:9a:77:ef:30:19:7d:52:b2:
f4:dd:e5:72:b6:f2:42:92:dc:35:97:97:c3:d4:51:
5c:23:7d:d2:39:e2:43:58:b6:1d:d4:42:31:71:85:
f8:a8:2e:31:07:1d:51:67:71:f3:74:c1:54:01:3c:
98:63:2b:26:21:b4:6a:38:01:06:72:ae:e9:0d:95:
1e:8a:be:05:26:df:8b:04:dd:40:b6:ef:8c:7b:3a:
ad:d3:19:c5:6d:a3:2b:7c:f7:6d:c0:72:3e:90:b8:
1e:75:9a:2e:3a:21:c1:2c:94:11:cf:85:82:6d:b2:
f7:14:48:fd:89:fd:bf:88:56:eb:55:6b:f9:0a:12:
72:da:bb:1e:0e:37:cf:d4:a8:9b:44:10:84:a3:63:
e0:5a:2b:e0:89:8c:5e:1e:dd:36:e4:de:e6:21:9d:
6a:cf:f1:5d:76:13:fa:78:d1:ed:c7:ef:65:73:bb:
b0:b3:c3:95:b0:66:9d:00:8d:2f:67:af:e0:75:e6:
b3:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:9D:46:E4:55:B4:31:0D:D6:CE:7A:FA:07:F1:EE:79:EA:FD:8D:44
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/63EB09804CE211F1B713ACDACE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.245.176.0/23
Signature Algorithm: sha256WithRSAEncryption
67:da:fc:36:6e:32:16:3a:2d:9d:63:32:8d:89:f4:a1:40:e4:
cb:53:45:bf:0f:fb:ab:9d:9b:f2:4b:fd:16:a0:82:b3:7a:cd:
54:74:41:ca:01:ab:d7:88:92:b2:d2:78:97:13:cd:fe:c7:50:
de:f3:d2:d8:5e:23:35:38:5f:e0:6a:d1:69:f5:0e:29:38:d3:
71:ad:5e:aa:f4:e4:85:2f:12:99:67:f2:e0:a8:23:29:1c:1a:
4f:b7:02:7b:11:51:cc:b4:63:ba:ed:7f:9e:a6:53:3d:5d:7d:
9b:9b:9a:ee:ea:f3:40:4f:2b:a0:20:5f:6a:a9:ba:5e:1d:1f:
88:43:66:90:8e:ab:14:fb:29:41:e4:0b:e6:6b:2c:1b:d0:96:
7c:79:ad:5b:54:dd:c0:59:2e:8c:74:81:2e:0e:1e:84:cf:0a:
c5:13:66:f0:26:1b:ca:18:3b:88:2d:8a:05:0b:20:2f:a4:fb:
c0:a4:59:f8:f0:0b:1d:b7:3f:4a:17:eb:0b:e6:df:6a:38:52:
ab:bb:dc:13:1e:5e:a4:25:ab:be:e0:c9:b2:5b:64:28:56:fe:
cc:10:ce:52:e6:5c:d2:a1:16:60:09:6a:31:40:e3:c0:d4:2c:
5e:d5:e1:da:7d:b3:f4:be:79:c1:4a:1b:f4:aa:d4:67:bb:94:
56:74:7f:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:46:49 2026 by rpki-client