Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/BD44B076414311F186D40ABBCE1D38B0.roa
File: BD44B076414311F186D40ABBCE1D38B0.roa (raw, json)
Hash identifier: PAhqEt6W2ArIxptsZqdwRSoq6Lj8JdpXnpEBx14vygw=
Subject key identifier: A7:6F:3B:29:7A:A7:18:C8:99:4C:40:45:24:FB:1C:DD:67:65:B2:1B
Certificate issuer: /CN=F3659F9CAR/serialNumber=09FB3136ECD5E3D7CF00B32C121F12E8AFD0A601
Certificate serial: 05C4
Authority key identifier: 09:FB:31:36:EC:D5:E3:D7:CF:00:B3:2C:12:1F:12:E8:AF:D0:A6:01
Authority info access: rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/BD44B076414311F186D40ABBCE1D38B0.roa
Signing time: Sun 26 Apr 2026 07:44:22 +0000
ROA not before: Sun 26 Apr 2026 07:44:18 +0000
ROA not after: Sun 25 Apr 2027 07:44:18 +0000
asID: 395222
IP address blocks: 66.251.146.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.crl
rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.mft
rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 07 May 2026 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1476 (0x5c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3659F9CAR, serialNumber=09FB3136ECD5E3D7CF00B32C121F12E8AFD0A601
Validity
Not Before: Apr 26 07:44:18 2026 GMT
Not After : Apr 25 07:44:18 2027 GMT
Subject: CN=69edc256-014f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e3:16:63:de:36:13:80:ce:4f:b5:64:fa:a6:
4e:6f:72:3f:f4:fb:f5:65:1e:ae:06:98:59:a3:97:
8d:93:d6:c8:13:a7:bf:68:e0:f1:f9:54:8a:0e:87:
19:78:cd:5c:3e:fa:72:8a:2e:4c:01:9d:29:99:cc:
a8:7f:91:2f:c6:f4:40:1a:b9:9d:22:77:33:1f:0e:
24:48:1a:5f:74:93:1e:94:15:2f:97:cb:b3:65:48:
10:64:0f:1d:3f:5b:9b:d7:b5:23:12:19:5b:f7:00:
2e:09:4e:4b:72:61:52:28:2e:4e:d0:ce:a1:ef:05:
2d:35:6a:b7:5a:2e:50:f3:11:8e:5a:d0:88:ac:7f:
71:1c:ca:42:08:73:3b:ef:c2:f7:d0:9e:f3:1c:3c:
47:70:9c:a8:27:f4:3e:96:69:47:2e:82:ca:9c:ba:
79:8f:35:8e:b3:e3:25:32:ff:aa:4d:ce:d0:80:64:
c0:57:96:b6:57:11:8d:ed:60:18:9e:ef:b7:42:9b:
1a:33:43:c6:8a:b4:dc:c9:7e:60:6d:0e:b5:d0:1b:
f1:f1:a8:b1:45:ef:21:48:cd:85:91:82:9b:4e:88:
53:26:49:79:c1:a6:79:92:fd:83:78:28:78:b8:87:
18:3f:ec:c5:09:17:d9:07:26:5c:18:7d:a6:3a:28:
07:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:6F:3B:29:7A:A7:18:C8:99:4C:40:45:24:FB:1C:DD:67:65:B2:1B
X509v3 Authority Key Identifier:
keyid:09:FB:31:36:EC:D5:E3:D7:CF:00:B3:2C:12:1F:12:E8:AF:D0:A6:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/CfsxNuzV49fPALMsEh8S6K_QpgE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/CfsxNuzV49fPALMsEh8S6K_QpgE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3659F9C/1D22996E7A0911EDBD422185F1222468/BD44B076414311F186D40ABBCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
66.251.146.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:40:75:52:61:3e:0c:05:53:2f:56:10:f3:1d:00:04:04:01:
08:9f:7b:85:f9:1d:ab:e8:71:20:7c:41:d9:c7:d3:38:38:7b:
b9:a6:97:31:33:66:c5:9a:3d:3a:ec:c8:59:47:8c:45:5c:d9:
40:3a:ba:ec:9f:66:8e:ed:83:f8:df:9c:4f:3c:82:2e:b3:71:
3c:75:f5:da:f5:e0:99:6e:fa:c6:f0:68:9d:3b:28:01:1c:c7:
6c:1e:ce:e8:71:d0:e4:4c:a6:f3:95:ef:48:3f:5a:be:0c:5f:
b6:6e:fe:d9:59:95:f9:aa:55:62:a1:9e:e5:da:de:6c:5b:88:
37:f5:d9:2d:10:36:fe:f6:66:7c:ba:69:26:2c:aa:d6:88:86:
73:bb:43:aa:bf:e1:e7:60:1e:2b:57:dc:ec:c5:a9:0b:4c:1a:
11:2e:0d:94:28:d0:a3:0a:2b:4f:3b:a1:03:26:28:70:17:5a:
b0:db:de:e1:99:98:d3:0f:48:e4:5e:77:90:21:49:43:fd:eb:
91:f9:58:fd:26:6c:77:ab:40:12:b3:40:f3:ef:b2:36:db:4e:
e0:00:ca:79:c8:42:47:91:de:24:3e:cd:ec:97:5e:de:5f:bf:
41:71:d8:b4:63:4e:22:e1:70:c8:7d:cd:c9:53:93:26:ae:2e:
97:fa:30:e5
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICBcQwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
NTlGOUNBUjExMC8GA1UEBRMoMDlGQjMxMzZFQ0Q1RTNEN0NGMDBCMzJDMTIxRjEy
RThBRkQwQTYwMTAeFw0yNjA0MjYwNzQ0MThaFw0yNzA0MjUwNzQ0MThaMBgxFjAU
BgNVBAMTDTY5ZWRjMjU2LTAxNGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDB4xZj3jYTgM5PtWT6pk5vcj/0+/VlHq4GmFmjl42T1sgTp79o4PH5VIoO
hxl4zVw++nKKLkwBnSmZzKh/kS/G9EAauZ0idzMfDiRIGl90kx6UFS+Xy7NlSBBk
Dx0/W5vXtSMSGVv3AC4JTktyYVIoLk7QzqHvBS01ardaLlDzEY5a0Iisf3EcykII
czvvwvfQnvMcPEdwnKgn9D6WaUcugsqcunmPNY6z4yUy/6pNztCAZMBXlrZXEY3t
YBie77dCmxozQ8aKtNzJfmBtDrXQG/HxqLFF7yFIzYWRgptOiFMmSXnBpnmS/YN4
KHi4hxg/7MUJF9kHJlwYfaY6KAcHAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUp287
KXqnGMiZTEBFJPsc3WdlshswHwYDVR0jBBgwFoAUCfsxNuzV49fPALMsEh8S6K/Q
pgEwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjU5RjlDLzFEMjI5OTZFN0EwOTExRURCRDQyMjE4NUYxMjIyNDY4L0Nmc3hO
dXpWNDlmUEFMTXNFaDhTNktfUXBnRS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L0Nmc3hOdXpWNDlmUEFMTXNFaDhTNktfUXBnRS5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjU5RjlDLzFEMjI5OTZFN0EwOTExRURCRDQyMjE4NUYxMjIy
NDY4L0JENDRCMDc2NDE0MzExRjE4NkQ0MEFCQkNFMUQzOEIwLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABC+5IwDQYJKoZIhvcNAQELBQAD
ggEBAJtAdVJhPgwFUy9WEPMdAAQEAQife4X5HavocSB8QdnH0zg4e7mmlzEzZsWa
PTrsyFlHjEVc2UA6uuyfZo7tg/jfnE88gi6zcTx19dr14Jlu+sbwaJ07KAEcx2we
zuhx0ORMpvOV70g/Wr4MX7Zu/tlZlfmqVWKhnuXa3mxbiDf12S0QNv72Zny6aSYs
qtaIhnO7Q6q/4edgHitX3OzFqQtMGhEuDZQo0KMKK087oQMmKHAXWrDb3uGZmNMP
SORed5AhSUP965H5WP0mbHerQBKzQPPvsjbbTuAAynnIQkeR3iQ+zeyXXt5fv0Fx
2LRjTiLhcMh9zclTkyauLpf6MOU=
-----END CERTIFICATE-----
Generated at Tue May 5 23:16:33 2026 by rpki-client