Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C06CA9401EB911F1AC89BAF4DAE4EC9C.roa
File: C06CA9401EB911F1AC89BAF4DAE4EC9C.roa (raw, json)
Hash identifier: w8FXoxoVhXzIJdg2jtR0sDDkZCNwDj2lIYGibcIb5SM=
Subject key identifier: C5:C1:39:C9:4C:74:FA:75:E6:D5:94:04:80:DA:0C:C3:8E:58:32:7A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A4ED
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C06CA9401EB911F1AC89BAF4DAE4EC9C.roa
Signing time: Fri 13 Mar 2026 08:50:58 +0000
ROA not before: Fri 13 Mar 2026 08:50:52 +0000
ROA not after: Tue 13 Mar 2029 08:50:52 +0000
asID: 17561
IP address blocks: 156.224.72.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 27 Mar 2026 00:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107757 (0x1a4ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 13 08:50:52 2026 GMT
Not After : Mar 13 08:50:52 2029 GMT
Subject: CN=69b3cff1-e4a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:3b:f9:61:00:97:09:5d:06:7a:9f:e8:6c:bd:
e7:da:08:a0:4c:fd:86:67:9c:e6:39:8a:59:42:cb:
0e:3d:3f:7a:b8:bc:e4:52:75:5a:f2:b1:6a:f4:3d:
9d:ec:63:94:5b:4f:4c:a2:41:80:8d:d5:04:2e:ca:
06:de:67:80:17:64:63:dd:5b:cd:44:61:65:9d:1c:
d3:5c:df:e7:06:6d:0f:8b:4b:25:51:0c:bf:02:1f:
9d:b0:72:55:ca:71:65:9d:1b:5a:b1:24:bb:7a:35:
02:79:ab:c8:02:60:af:64:54:bd:b0:ab:54:87:52:
0b:04:31:96:96:73:41:07:34:df:83:da:ea:3c:d2:
45:2f:f3:f1:b5:69:17:c7:ac:ba:5a:57:8a:d2:f6:
bd:ce:2d:94:b6:b7:d5:55:46:c8:1e:63:20:ac:c1:
81:51:06:0b:5c:57:52:b2:c5:5b:11:60:53:5b:25:
32:84:70:63:a3:f6:25:3d:a0:51:83:60:b7:9f:5f:
26:34:91:ab:ba:1d:6a:b8:28:60:93:f6:4b:e3:f6:
b0:9e:13:8e:7e:ba:9e:ed:45:63:15:80:29:9c:0e:
ad:32:33:10:fc:d2:06:75:89:c9:f3:be:67:95:c5:
b3:f3:1b:32:fb:46:40:19:7f:bc:55:cf:75:0b:f5:
bc:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:C1:39:C9:4C:74:FA:75:E6:D5:94:04:80:DA:0C:C3:8E:58:32:7A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/C06CA9401EB911F1AC89BAF4DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.224.72.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:59:c5:e6:d9:b8:14:e6:0d:7c:95:3a:28:3e:11:97:ae:07:
3a:a9:91:d8:13:3b:fe:d3:16:47:27:da:f8:c9:03:1e:88:bf:
2a:9f:0c:99:db:1a:ab:24:32:9e:02:f3:f3:41:a2:58:35:9b:
3f:54:a2:4d:76:7c:c1:c3:89:42:4f:ac:09:3d:a8:62:f1:fb:
f1:ac:e5:c3:dd:fb:39:b3:ff:a6:35:f4:c0:d6:a1:ec:04:35:
82:a1:7a:c7:e7:33:18:31:3c:04:f3:18:39:9a:86:f8:4e:17:
9e:26:87:c8:87:e4:f5:e2:1d:0f:61:c9:76:8a:e7:bb:6c:f8:
9b:1f:3c:ea:2b:5e:e8:a5:eb:bd:7c:30:88:d2:88:76:bc:6e:
66:2e:a1:66:55:c7:35:1d:30:33:0e:d7:d7:26:fe:88:bf:60:
da:4b:e1:37:56:3a:d8:48:83:90:9e:b7:4a:b1:b8:45:77:b6:
73:39:58:52:7a:0a:07:22:99:c8:37:d6:fd:43:6e:cb:10:68:
da:8b:f4:47:67:d5:94:1f:72:16:6f:05:4c:1b:e1:e6:16:fb:
fd:c8:e3:9c:64:43:18:64:e1:60:e8:25:de:93:cf:00:57:54:
2f:0f:89:93:9a:24:5a:f5:c2:d4:3c:32:f7:af:67:64:62:8f:
2b:62:1a:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:09:51 2026 by rpki-client