Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/747EB93643AA11F1B03AE2D3CE1D38B0.roa
File: 747EB93643AA11F1B03AE2D3CE1D38B0.roa (raw, json)
Hash identifier: JH/FCibQRLoMAopN371F+/fvCRvW5APDCGPATRgOHSM=
Subject key identifier: FD:54:12:6D:D0:14:CA:71:9A:A6:33:78:D2:62:18:FA:BB:FE:28:B7
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AFD1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/747EB93643AA11F1B03AE2D3CE1D38B0.roa
Signing time: Wed 29 Apr 2026 09:04:41 +0000
ROA not before: Wed 29 Apr 2026 09:04:35 +0000
ROA not after: Thu 04 Jun 2026 09:04:35 +0000
asID: 138415
IP address blocks: 156.234.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110545 (0x1afd1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 29 09:04:35 2026 GMT
Not After : Jun 4 09:04:35 2026 GMT
Subject: CN=69f1c9a8-0629
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:74:d0:a0:13:92:99:d9:b8:6b:81:26:e3:33:
01:19:4c:65:a7:31:7f:66:b0:33:97:34:cf:9a:ca:
3d:bb:4d:5e:7b:a8:e2:3a:b5:c6:2d:70:7c:cd:77:
8e:bc:b3:fb:f6:cf:5d:cc:7f:4f:be:e3:75:e4:37:
c0:c2:91:a4:2b:b9:b3:b8:58:68:b2:b7:05:18:d4:
86:2d:c2:d0:ea:8e:6f:2c:47:93:a7:c9:34:24:2a:
b2:26:7d:e9:85:86:ba:18:6c:21:c0:a1:dd:fc:a4:
44:7a:e1:78:ba:ca:a7:2d:43:9d:e6:0f:c4:dd:ac:
49:25:28:27:bf:a9:7c:0b:a4:d1:58:b9:59:d2:1e:
00:58:32:ee:21:d7:c6:25:05:c0:46:8b:bd:2d:27:
9c:8d:cb:31:53:53:5d:74:9f:25:3c:08:ee:ea:9f:
bc:cf:07:4b:d5:c1:37:87:5f:80:35:35:54:e0:f6:
49:b8:2b:47:f6:bc:52:50:43:6c:2b:3a:ad:ce:8a:
1f:b5:24:6e:5f:cf:ad:af:cc:ab:3d:c0:4f:18:cd:
59:c2:c4:75:71:49:cf:75:b8:ef:3b:80:48:e5:66:
6d:dc:01:f4:e2:7e:f8:43:5f:37:9d:8c:cb:f4:84:
36:17:58:3c:cd:c0:31:bf:2d:c5:54:10:f3:d9:9b:
32:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:54:12:6D:D0:14:CA:71:9A:A6:33:78:D2:62:18:FA:BB:FE:28:B7
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/747EB93643AA11F1B03AE2D3CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.234.0.0/16
Signature Algorithm: sha256WithRSAEncryption
01:25:de:6a:a3:58:f6:50:c6:85:e3:f7:2e:3b:1a:45:f2:98:
37:71:35:e3:ad:ae:8e:4b:54:1f:e7:80:e6:af:c9:7c:1c:b8:
30:8b:0d:c9:8a:5d:7e:e6:08:91:7f:3b:0d:a1:fd:00:6e:49:
fc:2e:7c:c7:90:26:23:a0:56:a5:36:df:82:6e:e8:c7:e5:45:
9b:ba:ff:c2:c0:e5:69:1d:95:ad:9e:78:be:0d:d3:4f:42:5a:
c0:88:27:17:d3:fb:27:b2:70:73:77:7c:be:6e:95:64:49:72:
2e:17:ec:ea:dd:92:97:09:b2:42:e7:f2:25:f7:c4:a9:a5:96:
19:c2:4a:f3:56:11:c9:30:47:de:a8:c3:1b:78:9a:de:59:f3:
27:74:8b:23:a7:d3:a9:e6:ea:41:73:5c:97:33:71:de:df:5f:
29:f5:f2:8f:a6:ad:53:42:d8:d9:c5:d0:8f:c2:fb:07:2d:71:
28:4c:d0:56:34:d7:0e:b5:0a:82:f9:5c:d7:6b:d1:28:78:f3:
46:a8:5c:bb:b1:c3:83:f1:8d:be:8a:32:52:9a:37:ee:f8:e7:
71:6e:4d:64:16:82:47:b0:4e:a9:08:d5:ce:dc:ed:fe:e3:8e:
d2:c7:53:df:75:f5:0a:c5:ca:ad:3e:51:61:06:4f:11:b3:e8:
0c:89:4c:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 08:24:22 2026 by rpki-client