Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B29BA9C6454A11F1906F8BB5CE1D38B0.roa
File: B29BA9C6454A11F1906F8BB5CE1D38B0.roa (raw, json)
Hash identifier: bQG3b35GO407ALnui9t62b3M9l81q9es8FbHqS/6q6E=
Subject key identifier: C9:B2:16:88:B6:1D:56:DF:25:AC:8E:4C:83:83:6D:17:7C:57:68:C0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B067
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B29BA9C6454A11F1906F8BB5CE1D38B0.roa
Signing time: Fri 01 May 2026 10:44:15 +0000
ROA not before: Fri 01 May 2026 10:44:11 +0000
ROA not after: Fri 05 Jun 2026 10:44:11 +0000
asID: 137899
IP address blocks: 156.238.224.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110695 (0x1b067)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 1 10:44:11 2026 GMT
Not After : Jun 5 10:44:11 2026 GMT
Subject: CN=69f483ff-d3ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:13:2b:ba:db:5d:1d:92:99:ce:53:90:87:63:
4f:9f:e1:da:00:55:90:3a:86:92:56:8e:e0:6a:e1:
43:11:b8:70:62:2b:3f:01:5f:f5:b9:1d:3f:e2:fb:
be:40:cb:eb:6d:82:da:2f:e9:dc:5b:e0:ea:f4:cb:
3c:6c:95:ce:3f:03:d4:15:8b:47:42:65:7e:66:05:
2e:b9:8c:02:d7:65:f2:73:32:8e:14:f0:7b:90:93:
4b:ac:c1:7f:6e:21:f0:d2:90:a8:2d:26:be:41:f7:
5b:7e:9d:a3:70:16:1a:ac:91:85:d4:b1:a4:94:e7:
71:f4:d1:0c:39:14:b6:14:0e:fc:b5:a5:3e:ee:1c:
45:4f:bf:25:b3:8a:b9:a7:e3:d5:2b:a6:d6:18:48:
ff:1b:0c:81:09:64:bc:96:7d:43:45:70:74:40:d8:
0a:84:ae:4f:fb:75:6c:9c:8c:32:96:6b:fb:de:88:
66:9d:b7:4f:5e:68:dc:74:f4:3d:38:e8:47:7b:a9:
43:8a:e8:bb:43:88:6e:3e:1d:67:d5:31:d1:34:54:
c2:37:59:b1:af:bd:ee:eb:07:93:93:6d:f2:1e:53:
54:76:97:c1:fc:49:45:86:74:bf:ea:7a:45:b2:cb:
30:bd:f5:cd:eb:64:2c:6a:f7:5d:f6:67:0a:78:d2:
ec:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:B2:16:88:B6:1D:56:DF:25:AC:8E:4C:83:83:6D:17:7C:57:68:C0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B29BA9C6454A11F1906F8BB5CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.224.0/19
Signature Algorithm: sha256WithRSAEncryption
af:f0:f9:0a:b2:71:10:66:73:52:66:f8:26:ce:0a:c7:76:bf:
ee:e2:35:97:75:7e:8b:1a:c0:6a:21:56:47:68:85:0d:57:3f:
30:26:56:64:7a:99:59:b6:89:d7:1f:bd:c3:17:b0:c6:55:e4:
10:d2:23:5e:99:35:9d:02:3a:8f:c3:12:6b:f6:23:c5:12:73:
5b:09:2e:23:26:e2:8d:8d:81:9d:a7:f7:65:cc:f1:6c:13:3e:
19:f1:c7:a2:97:91:dd:55:f0:7c:56:60:f1:40:6e:45:f3:92:
24:c0:2c:5b:0e:f7:54:db:0f:88:39:45:aa:ee:37:7e:7d:28:
b5:38:af:0b:a4:1b:ea:3c:73:cb:3b:c6:61:a3:97:e0:63:47:
c6:07:14:06:b9:4a:7c:a4:a3:96:e9:94:85:7a:ac:78:f6:8f:
09:db:64:95:71:9a:97:89:1a:6e:05:93:cd:11:79:f2:18:2c:
55:33:90:55:ff:47:11:1b:14:44:40:99:2f:45:e7:20:58:da:
eb:0b:05:40:4f:ab:4d:d2:3f:74:8e:77:96:a6:40:fe:a0:ec:
11:0f:53:2e:d4:b7:84:c1:82:da:c6:6b:17:69:79:0b:f4:17:
ce:bf:59:49:7c:db:c1:c4:76:69:99:e4:d8:11:44:fa:39:75:
30:ed:83:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 14:08:17 2026 by rpki-client