Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/A5D578D2406F11F199B8B3ABCE1D38B0.roa
File: A5D578D2406F11F199B8B3ABCE1D38B0.roa (raw, json)
Hash identifier: xczrceb2fqLQf3/vcSamDSq5TTgepe/JXQfgK+G158Q=
Subject key identifier: 0C:C9:DB:29:A0:CF:E5:C4:07:20:1D:AA:C3:41:88:05:04:F3:3D:2D
Certificate issuer: /CN=F3659F9CAR/serialNumber=09FB3136ECD5E3D7CF00B32C121F12E8AFD0A601
Certificate serial: 05B8
Authority key identifier: 09:FB:31:36:EC:D5:E3:D7:CF:00:B3:2C:12:1F:12:E8:AF:D0:A6:01
Authority info access: rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/A5D578D2406F11F199B8B3ABCE1D38B0.roa
Signing time: Sat 25 Apr 2026 06:26:10 +0000
ROA not before: Sat 25 Apr 2026 06:26:03 +0000
ROA not after: Sat 24 Apr 2027 06:26:03 +0000
asID: 395222
IP address blocks: 66.251.139.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.crl
rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.mft
rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 07 May 2026 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1464 (0x5b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3659F9CAR, serialNumber=09FB3136ECD5E3D7CF00B32C121F12E8AFD0A601
Validity
Not Before: Apr 25 06:26:03 2026 GMT
Not After : Apr 24 06:26:03 2027 GMT
Subject: CN=69ec5e81-dc4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:9e:d0:9a:dd:01:d9:a5:0d:ba:6e:63:59:02:
eb:ab:99:b0:c7:8f:ba:0a:b3:52:9a:d6:be:d1:87:
0e:3c:f9:c4:58:0e:c1:81:d3:f2:a1:f3:3d:25:3b:
09:39:24:aa:22:2d:b2:83:b7:83:8e:34:68:27:4b:
31:f5:c7:9e:80:c6:81:76:d4:6b:11:ba:18:6f:58:
29:d6:62:cf:60:33:58:58:50:7b:ea:4f:63:3f:38:
42:7a:39:7f:7c:c4:4e:e1:ee:d3:a8:63:51:e5:67:
b8:73:cd:0f:7f:50:47:08:ac:ac:bc:85:72:8c:b4:
17:8b:9a:c8:34:04:73:70:c6:bf:74:e2:7b:09:b2:
83:93:88:a2:0d:c0:5d:51:ed:fc:ea:fb:b2:d4:ec:
46:0c:bd:6f:84:e5:9a:27:0d:c2:04:a7:43:e2:b1:
e1:5f:cc:7e:05:ab:73:4d:92:ab:86:3b:54:c4:af:
a5:6b:06:b0:b7:b9:49:9f:cc:1d:0f:96:a9:ea:70:
ac:a9:48:51:1a:dd:53:a8:25:dc:a2:8f:07:02:7a:
3b:f5:44:66:a9:bf:56:8e:6b:db:87:f2:d1:85:39:
f9:e1:10:dd:22:c8:e5:81:68:fe:19:46:b2:49:f2:
a4:8c:8e:bd:24:eb:86:18:32:ed:19:64:ba:74:57:
d9:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:C9:DB:29:A0:CF:E5:C4:07:20:1D:AA:C3:41:88:05:04:F3:3D:2D
X509v3 Authority Key Identifier:
keyid:09:FB:31:36:EC:D5:E3:D7:CF:00:B3:2C:12:1F:12:E8:AF:D0:A6:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/A5D578D2406F11F199B8B3ABCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
66.251.139.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:39:fa:0f:6b:4a:ff:26:5f:bc:57:de:c3:d8:6d:ac:d8:c1:
52:f7:cb:93:b6:ee:d9:0e:02:e9:94:13:ab:9b:19:41:ce:77:
b4:b9:7e:88:4c:17:34:29:2e:6d:74:7e:f4:d1:69:21:89:3f:
4e:0b:21:c3:7d:b1:4e:a5:04:35:e1:d6:6f:87:cf:81:cd:1c:
16:43:87:87:de:32:df:e0:a7:50:b6:07:f2:0c:3d:1f:49:c3:
e4:ed:8b:68:fb:01:c9:99:eb:5e:3b:c6:3d:51:d9:65:37:ae:
68:b8:f7:d5:8b:7d:f9:3f:2c:27:77:46:61:47:2c:8e:37:8d:
f6:30:00:14:73:66:36:b1:7c:fc:a3:7a:0c:61:3f:ad:5f:6b:
1f:3b:3d:19:c9:b2:d2:d8:3b:31:27:a5:43:67:f0:cd:bc:b6:
7f:b4:d1:08:1d:ed:6d:36:cc:fe:81:20:14:0c:49:fa:b3:db:
c7:de:71:4c:0f:a7:b9:31:33:f5:57:f7:f6:b7:75:d1:1c:e0:
6e:26:4b:6d:d2:58:9a:88:69:6e:36:b3:ad:77:a0:18:b1:01:
c3:32:12:86:e1:8b:c0:39:d2:3e:1b:b7:3e:70:68:b7:1e:7b:
34:d8:85:20:cc:01:ae:37:65:85:a8:a8:18:5f:2b:90:6e:67:
d9:58:15:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 5 23:15:56 2026 by rpki-client