Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F1E087084A1011F1A6ADE7BECE1D38B0.roa
File: F1E087084A1011F1A6ADE7BECE1D38B0.roa (raw, json)
Hash identifier: 2l73SbCo3v5PwbFrSa7k8SB0ZDjarp20h21+CKOjrKE=
Subject key identifier: C1:AC:9F:8F:AE:A2:04:93:9C:BD:49:C8:F9:34:0B:6D:81:1A:28:BE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B254
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F1E087084A1011F1A6ADE7BECE1D38B0.roa
Signing time: Thu 07 May 2026 12:33:27 +0000
ROA not before: Thu 07 May 2026 12:33:22 +0000
ROA not after: Fri 22 May 2026 12:33:22 +0000
asID: 142032
IP address blocks: 156.233.224.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 15 May 2026 00:26:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111188 (0x1b254)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 7 12:33:22 2026 GMT
Not After : May 22 12:33:22 2026 GMT
Subject: CN=69fc8696-be45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:35:4a:86:df:7e:8d:21:2c:fd:a9:8e:6c:0c:
c8:f0:b7:9e:15:0e:f3:96:bb:53:bd:05:ee:70:31:
68:b8:15:1e:43:f3:b0:53:a3:ce:3d:e7:7f:e9:d4:
d4:c2:f6:d8:1f:b3:f9:57:d1:19:2b:e2:b6:d2:db:
0e:bb:99:0a:33:e7:74:27:cf:4b:dc:9b:46:0d:94:
1b:91:55:47:c3:99:2e:37:68:d7:91:9c:3e:d5:f2:
f3:5b:27:7e:a1:eb:e2:b9:87:f9:f4:6c:58:c0:7a:
9c:c3:8b:e2:13:2c:f8:a0:5f:de:3c:78:f2:5d:22:
da:e7:d2:d6:aa:1b:f8:8d:f0:ef:71:09:de:2e:18:
47:dc:94:7d:35:43:8d:b8:17:0b:86:1e:04:5b:4f:
51:53:56:19:48:1f:6a:8a:67:75:fe:59:d7:a5:c8:
05:9b:41:5f:78:25:fa:16:a0:59:90:fe:98:de:60:
08:02:df:83:7c:75:21:b0:99:26:b6:17:37:d8:5a:
42:f1:d8:83:82:ca:0b:90:3c:99:29:e5:66:eb:15:
13:94:27:db:33:60:9c:76:af:54:6b:c1:80:96:18:
3c:19:7b:9c:8a:d7:62:ff:68:08:bb:f0:9a:76:17:
f3:dd:b0:2a:3c:f1:5b:95:d2:20:d6:ab:5a:9a:58:
19:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:AC:9F:8F:AE:A2:04:93:9C:BD:49:C8:F9:34:0B:6D:81:1A:28:BE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F1E087084A1011F1A6ADE7BECE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.224.0/20
Signature Algorithm: sha256WithRSAEncryption
a8:90:5c:7f:53:48:97:68:2f:89:ec:97:25:b1:83:81:a4:bc:
a5:8c:d3:6a:fe:2b:53:18:6c:a8:19:84:cc:82:d4:92:83:f1:
77:03:a0:dd:70:5b:62:11:2d:0b:9b:f5:e7:cd:35:22:aa:ef:
0a:87:09:34:a0:f9:92:21:66:85:c9:6e:b3:84:11:45:e1:de:
9c:f4:36:e2:88:d8:30:31:c2:7e:fb:9c:3c:da:b8:ae:c6:75:
b8:61:98:45:fa:75:82:8d:cd:62:0f:78:87:e6:c9:b8:fa:c6:
6e:be:11:a8:e8:bb:ec:f7:45:49:75:08:a7:ec:49:c7:08:91:
ab:09:77:da:fc:47:57:87:af:0c:48:09:41:c2:f2:0a:ea:d3:
98:e7:04:d5:86:96:43:e0:b3:e8:7a:ad:45:89:14:55:4e:0c:
d7:42:b1:2e:c0:96:d2:d2:10:ce:2f:71:8d:98:1f:f1:d9:45:
d2:d7:53:79:1e:76:b9:be:29:db:3c:04:bb:02:7d:44:5c:36:
f4:4e:e5:a2:bb:a0:21:e4:73:61:46:6c:df:01:ed:b1:25:2a:
4c:b1:96:18:74:17:01:64:56:fc:33:b2:f7:0b:97:60:b4:38:
05:d0:10:2f:03:ab:be:8a:30:af:bc:af:31:6a:a8:86:fe:bb:
f7:11:6a:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:46:47 2026 by rpki-client