Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6F57FBAE1FA411F1AC0956CADAE4EC9C.roa
File: 6F57FBAE1FA411F1AC0956CADAE4EC9C.roa (raw, json)
Hash identifier: c9K/yemjJWMnYJI5uY0wL4K/XLha3s15pTy8OfjHotU=
Subject key identifier: 06:78:E4:EB:D0:05:2B:A3:5B:83:2E:15:67:C0:FF:5E:F2:C9:CF:61
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A52C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6F57FBAE1FA411F1AC0956CADAE4EC9C.roa
Signing time: Sat 14 Mar 2026 12:50:53 +0000
ROA not before: Sat 14 Mar 2026 12:50:49 +0000
ROA not after: Sun 03 May 2026 12:50:49 +0000
asID: 62563
IP address blocks: 156.233.68.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 27 Mar 2026 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107820 (0x1a52c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 14 12:50:49 2026 GMT
Not After : May 3 12:50:49 2026 GMT
Subject: CN=69b559ad-0bb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:93:2e:b3:3f:d3:9e:65:ba:d8:7e:d9:73:2e:
88:39:cf:d8:60:cc:73:9a:2c:b4:83:04:5b:20:34:
65:4c:9c:f4:02:3d:d2:3b:4a:bb:a2:49:31:20:69:
3d:76:fc:ab:13:4d:09:a3:95:d8:32:92:ca:d3:cc:
ee:1d:a5:bb:79:31:d4:ed:4c:9c:bc:50:32:26:ac:
d3:0b:0e:07:32:9d:11:02:ca:03:aa:44:fb:e0:1d:
1f:e9:e6:65:34:e7:8d:cc:ee:78:a9:69:7b:04:97:
cb:21:ff:6c:db:2e:83:e2:fd:36:4a:2d:88:04:21:
ff:79:c5:2f:cd:50:77:49:27:a3:a6:53:c9:48:4f:
0f:6b:82:76:b0:06:aa:0f:44:89:8d:28:ce:47:a0:
8b:e2:84:85:c9:ae:69:89:a6:73:5b:e6:ed:2b:8c:
90:2e:cb:be:cb:fa:c4:97:75:e7:da:ee:a4:b4:04:
bc:de:37:76:95:b3:7d:25:4e:0a:14:bc:a4:d7:09:
65:7a:04:eb:a1:3e:21:0b:a7:50:fe:a1:18:c7:04:
2c:48:a4:77:08:5c:c7:c4:de:f6:a8:5e:4f:74:59:
9e:3f:88:cb:0d:81:64:b5:30:b5:97:2a:c9:79:f0:
1e:da:b9:a4:eb:55:19:b9:f9:f0:49:95:3d:44:29:
ca:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:78:E4:EB:D0:05:2B:A3:5B:83:2E:15:67:C0:FF:5E:F2:C9:CF:61
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6F57FBAE1FA411F1AC0956CADAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.68.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:41:0a:f4:12:62:ec:85:6a:81:62:b0:d6:a8:44:07:14:68:
5a:10:b0:db:a2:02:c6:53:88:5b:15:41:bd:a1:0f:4b:ae:56:
e7:f4:26:2e:fb:ad:4f:e6:b3:d0:ef:6e:43:24:29:4a:4f:21:
15:9c:b8:c4:76:49:26:28:60:11:93:d7:74:fc:2e:1c:e0:50:
e8:7f:0f:c1:0f:b5:e5:85:c2:e5:7c:04:b8:6b:5f:47:f3:06:
e0:d0:e7:3d:a8:22:75:64:f4:c7:71:78:a3:fa:fd:49:3f:f7:
c1:0d:5a:74:a0:29:c5:e6:f4:82:a3:47:ac:68:00:08:97:66:
e5:1b:89:8a:31:9a:c8:f6:e8:c6:19:cc:f0:1e:4e:a5:36:df:
ad:35:ca:b7:59:86:5d:ea:b2:65:b2:b2:6e:65:aa:5d:a7:60:
a3:59:fe:7f:b7:d9:e0:62:b3:ac:ec:19:a1:80:70:51:04:24:
a1:de:5a:ed:27:97:05:8d:00:5f:f0:a6:59:f0:9b:0d:2d:a5:
a4:ff:12:d0:97:c1:fa:b8:41:ca:ce:62:cb:3d:19:14:a0:54:
34:aa:db:20:b3:10:f8:a9:d3:2b:26:13:54:1a:14:9e:36:26:
fd:fa:f9:5d:24:a5:db:d5:88:ee:aa:fb:c5:ba:f2:cd:61:e1:
b5:15:3b:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:11:01 2026 by rpki-client