Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EF6CDC5C42CB11F18211550DCF1D38B0.roa
File: EF6CDC5C42CB11F18211550DCF1D38B0.roa (raw, json)
Hash identifier: MTtzgLLKj362F64HwWtgdr6pxaIZusW5pBnRNzvS42I=
Subject key identifier: F3:FD:6D:17:A4:46:25:BB:E9:2E:63:A4:73:EA:77:86:B2:8B:33:A7
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AF84
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EF6CDC5C42CB11F18211550DCF1D38B0.roa
Signing time: Tue 28 Apr 2026 06:31:49 +0000
ROA not before: Tue 28 Apr 2026 06:31:45 +0000
ROA not after: Fri 05 Jun 2026 06:31:45 +0000
asID: 8796
IP address blocks: 156.238.224.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110468 (0x1af84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 28 06:31:45 2026 GMT
Not After : Jun 5 06:31:45 2026 GMT
Subject: CN=69f05455-0026
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:1d:c7:b9:58:71:7e:a8:f2:cc:49:d5:9f:3d:
d6:a4:7e:6b:50:09:6d:54:6e:4b:b9:ee:07:8e:1a:
d0:c4:8e:1f:9a:38:ae:71:48:dd:9a:8a:9c:57:6b:
09:f3:c7:9f:55:96:c1:74:16:58:fa:da:20:f0:e9:
5f:6c:69:f3:dc:ad:92:09:fc:94:ae:e8:3d:96:25:
41:43:43:dd:53:dc:51:69:2c:10:b0:3c:31:02:d8:
5b:1b:bc:ef:9e:5a:52:20:d3:66:0a:a1:cc:f7:ac:
46:d9:44:52:47:20:40:3e:c4:19:05:e7:c8:d9:1c:
8d:91:17:06:16:a6:c2:76:7b:d2:d1:e6:cd:ae:d5:
7e:04:7a:77:7d:15:49:80:d2:82:82:9a:71:da:46:
38:fd:75:72:3c:f3:9e:31:a8:9c:01:fc:9c:bc:5a:
7e:bf:b2:57:19:f9:53:4e:c2:eb:67:31:4e:8b:82:
b5:d1:2f:f9:ae:9e:d7:9d:3a:30:5c:f9:7d:e5:34:
dd:29:6e:dd:af:ae:88:f5:35:37:7a:10:1c:43:b8:
f9:ab:37:93:0b:47:59:f7:62:23:71:43:b9:a7:d5:
67:04:63:99:40:e9:67:1c:f0:11:30:c1:02:1f:c4:
b5:48:03:15:11:71:da:7a:ab:db:b2:29:e3:2c:6e:
af:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:FD:6D:17:A4:46:25:BB:E9:2E:63:A4:73:EA:77:86:B2:8B:33:A7
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EF6CDC5C42CB11F18211550DCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.224.0/19
Signature Algorithm: sha256WithRSAEncryption
0a:b4:4c:12:a9:2b:e8:2b:fb:b6:cb:5c:38:f9:39:cc:e0:0b:
a2:d9:7e:2a:a8:70:29:64:a1:46:93:4d:6c:27:50:d6:fd:a9:
74:5b:bb:e4:c6:67:fe:b6:61:8d:05:60:e0:c9:62:3c:dd:ff:
54:91:cf:5a:6a:f0:21:75:dc:64:03:57:e2:2b:19:6f:e5:7d:
30:2a:b5:39:77:a1:ff:5e:21:29:2e:eb:46:5a:1f:2e:56:65:
cc:2c:8a:73:a9:df:d9:f4:c7:c7:b0:fe:d2:44:79:fb:18:06:
78:09:6a:d9:7d:a8:66:4a:8c:2e:00:7b:c3:26:dd:84:66:71:
47:a0:4b:4d:47:cc:3a:85:ca:ba:9a:16:c2:b5:ff:88:48:24:
85:7d:05:a4:87:b9:95:5c:b5:5c:af:b4:c9:6d:12:0b:d7:63:
41:ca:d1:ca:aa:07:ca:e1:51:fc:5e:5c:b4:6a:f1:5b:fa:27:
1f:fb:1c:c6:89:ab:1f:62:8f:3c:1e:fa:94:ed:3c:a2:66:52:
a9:5d:59:d3:c9:ac:fb:4c:61:03:2b:52:a4:d6:cd:95:b4:d1:
7f:5b:3c:b2:52:ef:f4:99:1c:7a:c8:b9:c0:75:8d:da:ca:08:
ae:88:5c:2a:3c:d1:8f:4d:5c:d0:90:6a:28:2c:22:12:3e:8c:
ac:00:8a:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 08:24:35 2026 by rpki-client