Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/697F51224A6111F1A819AA1CCF1D38B0.roa
File: 697F51224A6111F1A819AA1CCF1D38B0.roa (raw, json)
Hash identifier: tuOtLYe1OIHuJeHt6mASiJMMEOowI1hkYXuai3ovHVE=
Subject key identifier: 7A:21:BF:AD:D4:BD:1B:DD:70:85:1F:FF:57:E8:60:A6:A8:EC:B1:12
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B286
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/697F51224A6111F1A819AA1CCF1D38B0.roa
Signing time: Thu 07 May 2026 22:09:27 +0000
ROA not before: Thu 07 May 2026 22:09:22 +0000
ROA not after: Fri 22 May 2026 22:09:22 +0000
asID: 40779
IP address blocks: 156.233.224.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111238 (0x1b286)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 7 22:09:22 2026 GMT
Not After : May 22 22:09:22 2026 GMT
Subject: CN=69fd0d97-bd28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:5d:59:60:24:42:af:f8:e1:7b:1a:92:c4:65:
e2:5c:78:5e:43:e5:f3:8d:33:b7:6f:24:c0:32:68:
3f:64:9c:b0:fe:e6:10:33:dc:64:86:da:62:cd:c4:
1b:27:36:45:ab:79:33:8b:2a:bb:6c:12:85:d6:4f:
81:78:27:50:8d:8d:74:6c:73:5b:7d:38:67:c4:06:
70:89:2b:6f:77:85:61:22:8d:d6:05:4f:f4:2b:f5:
a0:b5:ea:a4:aa:39:f3:6c:9f:a7:6a:a6:1c:86:b5:
2c:8f:c0:8e:2a:b5:d4:8d:0c:8a:5b:b7:08:f1:fe:
b2:68:da:2c:59:c9:7a:9e:15:ab:e2:84:ce:2b:48:
c2:4a:00:14:12:37:03:2d:55:79:da:5f:c6:0b:7e:
95:91:fa:20:97:ee:e4:c1:0c:a5:29:0a:13:cb:ff:
78:af:6d:95:cb:9d:3c:73:65:6d:fb:d3:f4:39:41:
9e:e3:71:61:f1:13:91:70:c7:55:ff:89:49:e4:de:
95:b5:d6:f4:e0:ea:1c:f2:8d:b9:e7:05:8f:dd:30:
0b:16:d7:98:58:5b:1e:89:bb:85:14:a4:bb:cc:d9:
69:b2:6a:ee:8d:e3:11:63:1a:a8:a0:a3:31:7f:f4:
e0:93:f5:bb:13:73:22:88:cc:4e:1b:cd:63:3c:bd:
45:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:21:BF:AD:D4:BD:1B:DD:70:85:1F:FF:57:E8:60:A6:A8:EC:B1:12
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/697F51224A6111F1A819AA1CCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.224.0/20
Signature Algorithm: sha256WithRSAEncryption
5e:46:77:9f:b0:4f:b1:85:4f:df:37:6c:a4:08:ec:3f:81:76:
a6:4f:5c:dc:26:dc:2d:ab:40:91:0a:7f:29:64:46:56:1b:01:
40:4a:03:fc:66:a1:2b:91:86:ce:98:6f:89:44:67:de:b5:2d:
05:31:ef:bd:bd:62:b6:e9:fb:3f:10:18:b4:23:f2:b5:b0:3f:
91:01:5f:6f:ce:d0:95:39:ad:7e:ae:cd:bf:06:a3:de:a3:93:
9d:70:28:0c:8a:a5:75:a0:62:ed:39:d4:43:f7:0f:51:a7:c2:
d7:db:a6:da:68:7e:d6:c1:d4:93:a3:26:ae:03:85:38:58:8e:
4e:11:48:b5:74:2b:1a:72:d6:16:73:a2:b3:09:c1:7f:75:a5:
b6:19:af:06:a9:3a:89:22:d9:98:cf:8d:56:21:cf:6a:a3:ae:
09:ef:5e:b1:c3:5f:09:07:38:67:1e:7f:46:9f:b0:cb:f3:8a:
a3:ea:9a:61:d4:8f:e0:f0:63:c3:d7:df:25:e5:16:a0:cd:c3:
42:5d:50:93:55:d7:82:8e:41:b5:3a:66:0a:63:c7:2b:96:89:
66:18:44:9d:f9:a6:e1:b1:8a:9a:16:65:50:d7:ff:98:4a:f5:
9b:50:bb:d5:df:f7:1d:45:d6:55:ce:85:30:fd:c7:e7:6b:5a:
25:71:e6:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 12:14:04 2026 by rpki-client