Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/82A1C44C446B11F1B0E27BEACE1D38B0.roa
File: 82A1C44C446B11F1B0E27BEACE1D38B0.roa (raw, json)
Hash identifier: feNN73SuQE8JzCw8Jw9fEdHj1OV3vt3QjQ750CBzoc4=
Subject key identifier: 25:DF:65:BD:8F:45:27:04:81:2F:E2:DB:07:0F:4C:D6:80:81:57:5B
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AFFE
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/82A1C44C446B11F1B0E27BEACE1D38B0.roa
Signing time: Thu 30 Apr 2026 08:06:37 +0000
ROA not before: Thu 30 Apr 2026 08:06:32 +0000
ROA not after: Fri 05 Jun 2026 08:06:32 +0000
asID: 137899
IP address blocks: 156.238.224.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110590 (0x1affe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 30 08:06:32 2026 GMT
Not After : Jun 5 08:06:32 2026 GMT
Subject: CN=69f30d8d-965e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:51:d5:70:43:e9:fe:3e:f7:b1:7e:f5:58:df:
97:b5:4f:9d:47:39:e1:cd:1c:79:3b:b6:b7:5f:46:
3e:08:99:3b:88:e5:f3:df:23:e1:ae:3c:d8:7f:98:
64:bf:03:10:f8:63:55:fd:cf:f4:5e:9e:e7:9c:e5:
12:26:bf:3c:5f:f6:a1:15:20:48:9e:75:cb:62:8b:
f9:f3:1e:db:20:1c:9f:97:0a:2a:99:44:ce:80:62:
b5:43:a9:ad:1e:8d:5a:94:0b:a3:c2:0d:f3:ff:69:
07:ae:f7:d5:fa:63:9b:12:b8:18:43:8a:ea:70:8a:
c9:b6:b0:ac:07:6c:ea:8f:8f:d9:c0:26:74:83:f3:
a6:05:4b:9f:6a:47:42:33:cd:2d:81:62:0e:8b:42:
ce:cd:c6:f8:59:99:8d:92:6a:a7:3e:02:3c:d9:56:
c8:38:d6:6b:5b:91:29:22:40:4b:fe:4b:91:98:9a:
5e:b7:08:ac:22:65:82:b2:d9:76:8e:df:d6:da:6f:
61:77:59:df:7b:38:19:e8:7d:28:ab:3a:9a:93:43:
2a:f0:b6:e1:e6:26:b3:59:b9:98:6f:56:d0:f8:91:
07:31:06:78:1a:6e:2f:18:ee:7f:d3:14:4c:e9:9f:
82:c6:79:b0:4a:be:8e:55:3d:cf:e0:7d:01:2d:91:
ab:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:DF:65:BD:8F:45:27:04:81:2F:E2:DB:07:0F:4C:D6:80:81:57:5B
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/82A1C44C446B11F1B0E27BEACE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.224.0/19
Signature Algorithm: sha256WithRSAEncryption
2e:7b:e3:2b:fa:87:f6:cb:a9:83:eb:6c:77:2b:df:2b:b9:dd:
81:87:23:24:ef:23:37:83:e3:68:c2:f9:89:6f:9c:06:6f:ec:
6f:80:ae:1f:22:e2:dd:2f:a8:98:bb:37:68:02:ab:d3:5a:dc:
2f:d8:e0:dd:71:d0:bd:04:6f:5e:50:fb:64:e6:e8:30:c1:a5:
94:9e:9d:82:22:3e:48:6d:06:67:0c:18:9a:2d:5f:bc:70:59:
5c:26:fc:12:a1:be:f5:d2:93:5f:52:58:04:64:df:de:9f:aa:
1f:69:ea:03:b7:2e:04:a6:38:f9:9c:b6:99:bd:ec:0c:83:78:
b2:5f:47:7e:3f:cc:1c:9a:5b:7e:8e:fd:e0:fb:9b:fd:d6:07:
07:20:cc:b2:db:4f:46:9b:44:a4:17:45:84:3c:5c:09:94:f6:
af:88:d1:d7:cc:0c:bc:ec:d9:b8:28:e5:46:b0:a9:13:ed:0f:
c9:3d:48:27:44:a4:72:21:98:1c:df:32:58:72:5f:ea:80:dc:
e1:57:74:a9:ae:31:63:5b:17:11:b8:a5:61:bf:c9:27:14:fc:
b1:3f:e3:e6:b2:3f:be:fe:bb:9e:d5:44:fb:9a:46:b0:a2:da:
4d:e8:03:3a:90:ad:52:3e:f2:6c:38:11:59:ef:e5:e1:b8:9c:
c9:6a:2b:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 11:47:17 2026 by rpki-client