Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/4772158C414311F1B6D401B9CE1D38B0.roa
File: 4772158C414311F1B6D401B9CE1D38B0.roa (raw, json)
Hash identifier: 2QkUZI76kgSfjHqaizbFIrW983lIVl7zlWeJR1DkrZc=
Subject key identifier: 50:EF:60:41:79:29:B6:49:A7:3C:AC:24:28:14:D6:E8:01:E5:C5:E6
Certificate issuer: /CN=F3659F9CAR/serialNumber=09FB3136ECD5E3D7CF00B32C121F12E8AFD0A601
Certificate serial: 05C2
Authority key identifier: 09:FB:31:36:EC:D5:E3:D7:CF:00:B3:2C:12:1F:12:E8:AF:D0:A6:01
Authority info access: rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/4772158C414311F1B6D401B9CE1D38B0.roa
Signing time: Sun 26 Apr 2026 07:41:05 +0000
ROA not before: Sun 26 Apr 2026 07:41:00 +0000
ROA not after: Sun 25 Apr 2027 07:41:00 +0000
asID: 395222
IP address blocks: 66.251.143.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.crl
rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.mft
rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 07 May 2026 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1474 (0x5c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3659F9CAR, serialNumber=09FB3136ECD5E3D7CF00B32C121F12E8AFD0A601
Validity
Not Before: Apr 26 07:41:00 2026 GMT
Not After : Apr 25 07:41:00 2027 GMT
Subject: CN=69edc190-f046
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f7:28:60:a9:e1:0d:c2:5e:5b:70:dc:ae:9c:
6d:f7:46:f9:e6:f4:1f:21:a9:c3:3c:6a:4f:7c:6d:
7e:c1:c3:62:5a:fc:59:75:08:70:1f:60:2b:8c:f8:
07:fc:85:4d:fe:72:24:ca:f8:de:78:58:d0:03:de:
e0:c5:0c:03:8e:5c:08:49:9a:3a:86:74:aa:f6:2e:
41:a7:2f:58:3b:de:92:85:d3:48:77:15:79:4e:4b:
da:79:09:1f:cb:98:32:e5:0d:8b:b6:47:06:1f:29:
45:54:86:a6:43:44:64:d4:cf:54:a0:9b:52:3b:62:
f2:fb:8d:f2:62:65:df:5d:c1:44:1b:f2:ab:3b:fb:
e5:74:c2:b4:d8:0f:2d:f4:f1:76:15:a7:d7:a9:f1:
42:a6:c2:59:08:dc:00:a7:ce:17:b1:74:29:22:b3:
da:7a:9b:a3:55:ad:6d:4f:c5:d7:3c:85:16:06:e2:
ed:04:30:03:44:f3:19:f6:7f:b2:24:59:53:a0:76:
d4:1b:f5:ef:47:e6:a7:56:90:e2:5e:d6:1f:9b:67:
17:c2:d7:80:86:ee:56:10:d9:79:4e:03:84:39:ef:
2e:dd:36:2c:96:8b:4d:51:24:c3:e1:6e:cb:d0:bb:
ab:78:8c:21:bf:e9:16:6f:ef:6f:23:3d:7a:f7:f4:
72:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:EF:60:41:79:29:B6:49:A7:3C:AC:24:28:14:D6:E8:01:E5:C5:E6
X509v3 Authority Key Identifier:
keyid:09:FB:31:36:EC:D5:E3:D7:CF:00:B3:2C:12:1F:12:E8:AF:D0:A6:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/4772158C414311F1B6D401B9CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
66.251.143.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:56:5f:ed:23:aa:2d:ac:05:ce:19:1d:15:91:92:69:c6:55:
8f:22:47:58:b6:ff:d4:d9:ca:7d:e8:a9:07:aa:62:df:96:7b:
f0:ab:bd:4b:3a:a2:e9:4b:23:c8:72:96:a9:7c:3a:29:b5:11:
2d:26:1c:91:ea:83:76:13:1b:39:9c:06:9e:13:fb:c3:70:b0:
c0:33:78:e5:38:46:fe:72:b8:83:34:93:18:12:b9:6b:db:9d:
ec:28:6b:d0:f5:47:c2:70:cc:8c:6e:0d:a9:ba:5a:7e:90:ec:
c7:fe:e2:1c:c4:09:9b:d8:43:3f:97:39:c7:ef:07:e0:9b:86:
2e:b5:7c:a4:2d:3a:89:aa:5e:f7:f2:0a:fc:53:ce:62:74:75:
33:93:3f:03:29:2c:8e:72:6c:88:22:d2:3b:d0:d3:e5:ee:67:
1c:eb:de:91:bf:5b:e8:78:4e:cf:4a:cb:ba:14:3c:79:0e:16:
a5:91:09:2b:88:05:03:ec:22:5b:bb:51:8a:f3:46:6b:8e:42:
0d:f2:0d:dc:f0:30:3d:be:4f:0e:09:86:ca:ee:8a:39:d1:ef:
6d:1c:c2:9e:1e:86:77:3a:6c:b0:d1:8a:2e:86:04:86:e8:81:
ae:d4:c7:a7:ad:2b:05:1e:4e:07:f5:88:39:a6:a6:33:92:ae:
fc:3f:bb:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 5 23:15:53 2026 by rpki-client