Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/64DCCC8E448111F1B21F43EDCE1D38B0.roa
File: 64DCCC8E448111F1B21F43EDCE1D38B0.roa (raw, json)
Hash identifier: hATJy5dU0OI7orNzJiTwT0xB7Lo7d64ycfbNvfp53qM=
Subject key identifier: FE:62:D1:D2:0D:3F:5E:D2:E8:EA:8B:CB:A7:10:BD:FF:88:4E:49:E0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B026
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/64DCCC8E448111F1B21F43EDCE1D38B0.roa
Signing time: Thu 30 Apr 2026 10:43:16 +0000
ROA not before: Thu 30 Apr 2026 10:43:12 +0000
ROA not after: Thu 04 Jun 2026 10:43:12 +0000
asID: 133731
IP address blocks: 156.234.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110630 (0x1b026)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 30 10:43:12 2026 GMT
Not After : Jun 4 10:43:12 2026 GMT
Subject: CN=69f33244-e9a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:b5:e0:f7:c5:06:69:d8:78:2b:14:3c:d3:df:
ed:99:38:b9:9a:70:99:2a:23:80:50:31:5d:5c:12:
56:1c:c5:67:75:e6:62:96:01:62:c2:75:c3:fc:53:
42:67:25:11:1e:8f:4c:14:2f:c5:f3:af:76:15:8c:
59:50:49:12:c8:03:6b:d1:42:31:23:95:50:94:ed:
3c:d1:58:e1:c3:47:50:4f:73:87:88:96:7b:cf:ae:
54:5d:07:a3:14:85:77:76:1f:10:21:4e:f2:fa:52:
89:50:fb:41:ec:3b:da:fd:64:93:f0:ea:d9:7b:65:
f0:2e:61:59:14:2e:2e:5b:ce:c4:17:d0:11:1a:ed:
82:23:0a:95:95:99:25:3e:97:6b:c3:94:ec:78:e3:
60:e3:aa:f8:89:e0:07:2c:8d:a7:b0:bd:e4:9b:bf:
f9:5e:61:95:37:b8:f2:d2:45:0f:23:3a:8e:f1:8d:
8e:43:8f:a2:26:f0:af:e0:9e:ed:d9:ca:10:bf:19:
96:49:50:1e:63:4a:d5:3b:16:67:fc:53:9d:49:da:
9b:36:d9:dd:4d:6a:4c:bd:6b:84:8c:72:d0:13:d9:
f1:b7:16:89:1b:48:44:81:48:f8:fc:b0:fa:d6:0b:
0b:e8:7f:19:4c:9c:c6:90:ad:9a:7c:d0:8d:c3:5f:
06:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:62:D1:D2:0D:3F:5E:D2:E8:EA:8B:CB:A7:10:BD:FF:88:4E:49:E0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/64DCCC8E448111F1B21F43EDCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.234.0.0/24
Signature Algorithm: sha256WithRSAEncryption
57:af:80:07:a3:e2:6e:bc:dc:8d:78:80:89:2c:cd:3f:60:1b:
02:9f:af:21:86:3d:63:57:1a:45:8b:6a:f4:32:62:c9:57:a1:
7c:1a:43:52:d3:2b:92:11:0a:da:f5:a1:1f:e1:62:42:59:a4:
bf:31:51:5a:f0:b7:14:0c:ef:16:19:52:f3:01:83:c5:47:11:
57:49:a1:a3:38:4c:18:6c:14:44:2d:24:1c:6f:37:33:14:f1:
ea:85:b6:67:a0:3d:1c:67:ee:b3:91:64:45:43:2f:49:54:87:
15:d1:54:ca:62:db:c9:01:51:d2:d1:41:14:9c:81:10:83:c1:
47:e2:1b:62:02:b7:95:da:91:9e:97:3f:31:c4:09:f5:17:ba:
d4:1b:b5:59:1c:65:52:8a:d4:55:de:f7:12:72:f7:e7:d5:45:
91:c6:1b:2d:84:e3:02:46:2d:fe:23:5d:23:3a:9d:07:b3:d4:
d7:dc:02:9e:ef:ef:32:ed:da:62:19:20:a1:2f:96:4b:70:61:
7d:ac:c4:cc:b6:00:a4:05:bd:12:da:d9:65:b5:94:b3:45:d9:
8b:b0:20:da:b0:22:30:14:d3:71:74:d0:ab:ae:6c:46:47:6d:
9c:ef:b2:be:94:6d:21:94:f4:60:f6:2a:d1:e9:f1:d9:3e:c1:
87:c4:08:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:50:37 2026 by rpki-client