Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E1EE3542460B11F198313DD2CE1D38B0.roa
File: E1EE3542460B11F198313DD2CE1D38B0.roa (raw, json)
Hash identifier: 5T6kJXtdoK/gXZPZU+f/EalTvm0u2kxzgOz8LptBEV0=
Subject key identifier: E5:AC:8F:75:A1:CF:85:87:DD:F8:1D:E7:3F:1B:8B:56:9B:56:54:AA
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B13F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E1EE3542460B11F198313DD2CE1D38B0.roa
Signing time: Sat 02 May 2026 09:47:08 +0000
ROA not before: Sat 02 May 2026 09:47:03 +0000
ROA not after: Tue 09 Jun 2026 09:47:03 +0000
asID: 55320
IP address blocks: 156.244.23.0/24 maxlen: 24
156.244.24.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110911 (0x1b13f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 2 09:47:03 2026 GMT
Not After : Jun 9 09:47:03 2026 GMT
Subject: CN=69f5c81c-0968
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:23:e3:8e:6a:a7:06:2f:89:d9:eb:a5:0b:7e:
ee:78:07:97:ff:ca:23:88:09:65:9a:a5:14:e1:50:
89:42:8a:d1:df:7c:5b:ed:c5:c4:99:a1:45:f9:15:
bf:5f:96:a1:48:a6:cd:d5:86:0f:cf:60:0d:17:05:
2f:ad:f4:f3:a0:cf:1b:1d:e6:39:64:e7:ab:96:cc:
f5:fe:3b:ab:59:a7:91:61:2d:a3:64:18:93:57:cc:
af:e2:e3:06:f3:bd:16:9e:c2:7b:ae:ef:f2:7d:65:
e2:37:51:36:6f:a2:0a:1a:07:61:7d:18:44:b5:30:
c1:1a:39:f9:f4:a6:e2:d2:89:a7:d2:e1:db:a7:2f:
17:f1:4e:3f:35:7d:cf:4f:85:0e:ee:12:3e:50:68:
f1:a4:16:73:13:13:58:54:cc:e5:de:49:95:65:3d:
2c:f0:96:54:0e:9c:bb:91:92:19:4a:c2:82:40:36:
e0:0a:26:48:b2:24:17:c8:b8:12:a0:45:b8:99:a3:
7e:65:2e:7f:cf:8e:c9:e1:ce:49:24:b1:d0:a2:5e:
1c:4b:80:30:24:02:91:19:a9:8a:a6:07:ad:ff:7d:
f5:ee:d9:13:34:2d:a9:6b:cf:ee:83:27:fb:ad:09:
d3:ec:c0:37:a4:c4:a8:ec:2d:ff:11:76:59:16:91:
0d:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:AC:8F:75:A1:CF:85:87:DD:F8:1D:E7:3F:1B:8B:56:9B:56:54:AA
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E1EE3542460B11F198313DD2CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.244.23.0-156.244.24.255
Signature Algorithm: sha256WithRSAEncryption
b6:eb:f9:3b:94:80:a4:5b:36:8d:68:44:5a:a7:e2:9f:07:53:
72:8b:e2:04:8b:cf:2c:ba:22:3d:21:98:71:8f:d6:d0:ca:9f:
bd:7b:98:6c:22:f7:a1:77:4d:5c:4b:b0:a3:6b:23:27:44:5f:
28:79:56:a6:33:92:32:57:ac:bb:e8:2f:69:e4:fd:52:90:5b:
1b:71:64:73:a8:fa:4f:1f:b6:1c:28:08:88:64:c3:41:d6:b6:
d5:c6:f3:14:fe:f7:12:11:4a:89:24:f3:cb:92:a3:ac:be:76:
fb:e8:05:db:b2:1c:9d:cf:b5:b7:6b:23:cc:1c:84:4d:13:db:
f4:4a:82:82:86:81:b7:be:7c:72:ae:16:eb:d3:be:09:4e:ea:
92:4d:66:1d:19:00:33:81:77:c7:61:f4:bf:08:b1:f0:14:aa:
d6:15:46:ae:c6:fe:e3:8e:3b:24:26:45:7a:08:4b:38:88:68:
ad:8a:9f:95:47:59:a1:e3:33:54:4f:df:dd:03:57:0e:9e:80:
79:e4:28:0d:a6:17:ec:71:76:83:54:8b:c7:ed:5d:31:17:64:
c4:e1:0a:8f:d4:6a:48:2a:0d:8d:ce:5d:c3:8d:ec:d0:c2:66:
d1:90:32:b0:9f:8a:96:3d:52:db:40:60:23:b0:27:a2:61:56:
d1:f5:4e:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 12:01:31 2026 by rpki-client