Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/ABB69F58414411F1AC0E3BC1CE1D38B0.roa
File: ABB69F58414411F1AC0E3BC1CE1D38B0.roa (raw, json)
Hash identifier: e/FefvqB0Lmn+sNgqOlWBSHiR/mwNZh5QKfSahHd1KY=
Subject key identifier: 94:8C:73:EB:35:A3:19:EB:E3:C7:C4:43:C0:34:66:54:B8:B2:4D:D4
Certificate issuer: /CN=F3659F9CAR/serialNumber=09FB3136ECD5E3D7CF00B32C121F12E8AFD0A601
Certificate serial: 05C8
Authority key identifier: 09:FB:31:36:EC:D5:E3:D7:CF:00:B3:2C:12:1F:12:E8:AF:D0:A6:01
Authority info access: rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/ABB69F58414411F1AC0E3BC1CE1D38B0.roa
Signing time: Sun 26 Apr 2026 07:51:02 +0000
ROA not before: Sun 26 Apr 2026 07:50:58 +0000
ROA not after: Sun 25 Apr 2027 07:50:58 +0000
asID: 395222
IP address blocks: 66.251.153.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.crl
rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.mft
rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 07 May 2026 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1480 (0x5c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3659F9CAR, serialNumber=09FB3136ECD5E3D7CF00B32C121F12E8AFD0A601
Validity
Not Before: Apr 26 07:50:58 2026 GMT
Not After : Apr 25 07:50:58 2027 GMT
Subject: CN=69edc3e6-d371
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:82:2a:28:e4:66:c6:1c:2a:41:2a:f4:d6:d1:
b0:cd:ab:39:9b:65:50:55:c8:7a:9d:72:56:b4:37:
0f:3f:49:d1:0f:f2:3e:7a:fe:a5:cf:e3:d2:98:86:
54:2a:f9:81:db:35:39:ca:2e:ea:20:6e:51:76:68:
19:e5:57:12:f6:71:44:bc:52:8c:9c:73:f1:45:18:
1b:9e:e2:50:bb:07:eb:24:dc:01:b8:eb:62:8e:f9:
67:4f:65:8b:4e:a4:8d:8c:4b:32:ed:8f:af:3a:ff:
1f:5c:f0:fc:65:1d:12:ee:a7:af:2a:e2:b8:57:a7:
a0:ba:1b:e7:33:b2:f3:0a:f2:7e:4f:dd:94:db:6d:
6d:72:d4:8e:ea:72:7c:8f:60:17:c6:11:47:da:a5:
48:a1:02:8d:38:0a:18:d6:46:0e:cd:08:a9:a1:41:
e2:8a:08:99:b7:ee:34:90:49:41:89:39:c6:65:03:
40:43:ba:13:51:c9:7f:34:e4:e1:12:24:9b:1e:99:
d7:6e:17:19:f5:0b:b6:ad:f5:96:8c:5d:a9:88:a8:
19:0b:4c:48:e7:e3:a8:8b:a7:94:8c:67:c9:d6:35:
04:9f:ce:64:3d:fc:9c:a7:35:96:73:44:97:96:dc:
f8:41:a0:63:f5:86:4f:1d:e6:5e:28:e7:39:15:96:
ec:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:8C:73:EB:35:A3:19:EB:E3:C7:C4:43:C0:34:66:54:B8:B2:4D:D4
X509v3 Authority Key Identifier:
keyid:09:FB:31:36:EC:D5:E3:D7:CF:00:B3:2C:12:1F:12:E8:AF:D0:A6:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/ABB69F58414411F1AC0E3BC1CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
66.251.153.0/24
Signature Algorithm: sha256WithRSAEncryption
53:27:fb:32:94:8b:22:d9:b4:af:0c:a6:be:63:59:89:ae:0c:
87:1f:37:86:df:47:bd:17:a9:81:9f:b9:45:d1:d5:e6:70:8c:
25:db:1a:c0:5d:56:2d:77:34:56:31:d6:f9:5c:50:17:43:53:
5f:12:91:9e:80:9d:90:93:5a:d7:75:f1:51:38:5a:a4:18:41:
db:ff:71:8c:3d:43:c9:ef:b4:12:3a:89:0f:a9:36:b5:a0:be:
41:20:7f:1a:53:74:8c:14:9c:43:78:ea:ac:a5:dc:f3:f8:c1:
76:34:a9:69:a6:51:d0:28:07:10:4c:72:ce:52:e7:87:75:f4:
7c:79:d0:55:51:45:31:62:63:5c:40:aa:15:eb:f0:a1:8d:21:
1f:27:4b:26:1b:c6:84:e5:43:c7:9c:d8:dc:1f:17:6c:f9:7a:
2f:36:fa:13:6f:9e:08:b7:a4:d7:8f:e7:2f:e0:49:d1:9c:78:
85:7f:f0:91:34:8c:bb:b3:c9:f2:42:2d:70:99:39:4a:fb:d7:
fa:73:71:dc:71:37:7d:18:a5:bc:b3:b7:78:23:fc:9e:6f:77:
01:55:7d:c9:03:92:e6:57:5d:3a:bf:dc:60:5c:2f:d9:35:60:
45:ee:b2:62:a1:eb:b6:be:06:c6:44:3a:e8:d7:13:9f:00:11:
74:b5:99:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 5 23:15:55 2026 by rpki-client