Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D615C328448211F1882F61F5CE1D38B0.roa
File: D615C328448211F1882F61F5CE1D38B0.roa (raw, json)
Hash identifier: DhqvwPlGdZ6CUzEmlRnc896rR28BXZW91zTfUXIktUg=
Subject key identifier: 25:03:D4:E6:65:62:27:50:61:CF:98:1A:95:28:5B:4E:80:A7:23:E6
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B02A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D615C328448211F1882F61F5CE1D38B0.roa
Signing time: Thu 30 Apr 2026 10:53:36 +0000
ROA not before: Thu 30 Apr 2026 10:53:31 +0000
ROA not after: Thu 04 Jun 2026 10:53:31 +0000
asID: 138643
IP address blocks: 156.234.0.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110634 (0x1b02a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 30 10:53:31 2026 GMT
Not After : Jun 4 10:53:31 2026 GMT
Subject: CN=69f334af-e93c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:0e:31:2f:b1:2d:33:ba:c6:ce:20:67:3a:66:
40:bb:31:54:87:68:e9:71:a5:ff:73:85:b1:bc:08:
4e:bc:55:69:94:94:ed:a0:93:d9:c6:6f:6d:5b:0e:
80:33:1d:d8:eb:98:9a:44:15:7a:de:66:b4:1c:ed:
5a:89:47:65:fd:bd:77:5e:db:fb:63:ad:70:a4:a7:
3f:c6:25:dd:81:fb:50:a6:ac:e7:e9:82:47:d0:fe:
36:eb:e1:db:7b:36:e3:dc:0c:3f:6a:b6:86:c8:a2:
9d:66:80:a1:9d:67:34:3f:2f:77:6c:70:b7:9d:28:
f8:b0:dc:a9:ed:0f:74:82:72:21:f5:b6:32:ce:c6:
06:bb:e6:4d:83:6a:fa:a0:68:a3:38:35:ef:89:97:
02:d8:be:3e:06:d2:9a:91:78:06:7e:96:91:e5:44:
07:44:f4:e8:ca:ab:36:26:aa:76:91:cf:5a:78:bf:
74:e7:e5:3f:7d:ea:f8:97:84:95:e3:6a:a6:8b:d7:
7c:4b:c8:cd:53:e1:7f:32:fa:2b:09:75:40:0f:7b:
ae:1b:71:09:7e:ee:c4:b3:e3:ed:78:a4:2a:b7:90:
a1:55:f1:bc:7b:30:37:02:fc:90:c0:8a:17:2b:e5:
80:13:58:4e:53:7a:a2:8b:51:82:ed:68:de:aa:bc:
55:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:03:D4:E6:65:62:27:50:61:CF:98:1A:95:28:5B:4E:80:A7:23:E6
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/D615C328448211F1882F61F5CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.234.0.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:da:b2:ea:7a:83:6d:5c:6f:bf:2d:34:b3:ec:90:dc:a0:4c:
31:e4:8a:12:72:eb:9a:27:5f:fd:71:80:e2:d1:48:0d:f8:49:
30:05:33:78:b3:9c:8f:5e:e9:87:0e:6c:45:98:94:19:59:71:
75:17:1c:51:cc:fd:ab:bb:30:f0:ed:87:0f:97:aa:a8:95:cf:
af:84:3f:a7:fd:70:d2:e9:a5:b3:81:a3:f4:67:79:d5:e8:a1:
3c:7e:72:22:1d:7f:92:f6:aa:1c:83:d2:da:90:be:9b:44:d4:
8d:34:c6:03:81:29:d4:56:04:67:98:7e:d6:ed:43:63:cf:2b:
15:bf:25:4e:d8:f7:42:10:ac:e5:37:f3:ca:3d:bb:97:68:e2:
75:2b:fb:b3:9d:56:77:36:55:a2:ca:77:2b:41:6a:7b:39:45:
f3:24:5a:9f:a5:ad:e8:73:b9:48:87:63:64:a2:94:84:cf:c9:
d0:e3:c0:e9:8e:ca:70:c2:47:0a:bd:dd:91:19:47:1f:db:37:
26:9d:6a:99:95:02:23:7f:56:bd:d8:2d:ef:1c:53:a0:3d:3d:
59:d9:25:8f:f3:82:fb:dd:b6:f5:bb:43:99:5e:ed:10:f1:57:
1f:25:7d:00:8d:3f:ce:9d:94:f7:0c:dc:d1:20:50:50:52:01:
bd:c4:16:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 10:36:06 2026 by rpki-client