Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F365F7E8/B87BC27696CA11EEBFD5AC73D25BE465/7F8D883847B111F1979852D1CE1D38B0.roa
File: 7F8D883847B111F1979852D1CE1D38B0.roa (raw, json)
Hash identifier: oYDoVUfu6u2a8Loo+1YedtcCrnvJ2azWlePBsIXROG4=
Subject key identifier: B6:FE:2F:D5:9B:1B:93:55:24:39:B5:B6:66:23:B0:CD:97:E5:31:B9
Certificate issuer: /CN=F365F7E8AR/serialNumber=92288280E3D882DEC415F5881C015C87659D684A
Certificate serial: 038A
Authority key identifier: 92:28:82:80:E3:D8:82:DE:C4:15:F5:88:1C:01:5C:87:65:9D:68:4A
Authority info access: rsync://rpki.afrinic.net/repository/arin/kiiCgOPYgt7EFfWIHAFch2WdaEo.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F365F7E8/B87BC27696CA11EEBFD5AC73D25BE465/7F8D883847B111F1979852D1CE1D38B0.roa
Signing time: Mon 04 May 2026 12:05:10 +0000
ROA not before: Mon 04 May 2026 12:05:05 +0000
ROA not after: Tue 04 May 2032 12:05:05 +0000
asID: 328176
IP address blocks: 160.19.36.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F365F7E8/B87BC27696CA11EEBFD5AC73D25BE465/kiiCgOPYgt7EFfWIHAFch2WdaEo.crl
rsync://rpki.afrinic.net/repository/member_repository/F365F7E8/B87BC27696CA11EEBFD5AC73D25BE465/kiiCgOPYgt7EFfWIHAFch2WdaEo.mft
rsync://rpki.afrinic.net/repository/arin/kiiCgOPYgt7EFfWIHAFch2WdaEo.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 07 May 2026 00:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 906 (0x38a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F365F7E8AR, serialNumber=92288280E3D882DEC415F5881C015C87659D684A
Validity
Not Before: May 4 12:05:05 2026 GMT
Not After : May 4 12:05:05 2032 GMT
Subject: CN=69f88b76-4b1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:8d:bd:21:e4:e1:93:d7:7c:04:3e:ba:c9:ef:
ca:0f:30:89:61:62:77:8e:64:4b:da:ec:aa:0d:1e:
4e:a7:35:59:1a:c8:bc:46:ad:39:70:0e:0b:68:83:
02:75:88:84:98:b4:bc:73:e6:78:f7:b7:de:1e:2d:
53:65:19:27:23:49:d1:c5:d1:9f:a4:40:f5:ba:ad:
dd:82:58:80:6f:c1:82:c8:d4:8b:34:ce:9a:c0:34:
47:b1:28:c4:85:0c:a9:56:1f:75:35:a2:57:78:28:
da:6b:29:77:13:34:f6:0c:d6:14:93:1c:d2:6d:12:
f3:db:62:21:f9:16:ef:60:47:59:2d:ae:e5:48:34:
69:20:71:78:90:53:e1:fd:0c:90:62:60:4d:5e:bb:
91:8d:9b:df:04:64:7f:ee:b0:5a:ac:79:ad:29:df:
7b:a9:e4:a5:72:fc:68:45:ac:10:9a:34:24:a7:52:
0a:93:d8:59:ca:f3:8c:2e:b4:f0:ab:fd:38:41:49:
7f:a4:7b:be:07:82:57:de:7c:b9:1a:5d:49:35:52:
c9:b0:9f:21:31:d1:23:da:28:a6:8b:cf:a3:3d:1a:
cb:27:59:3d:52:17:3f:78:98:bb:cf:63:a8:1b:6a:
63:2f:33:af:bb:93:ca:19:83:ea:98:20:e1:c5:1b:
f9:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:FE:2F:D5:9B:1B:93:55:24:39:B5:B6:66:23:B0:CD:97:E5:31:B9
X509v3 Authority Key Identifier:
keyid:92:28:82:80:E3:D8:82:DE:C4:15:F5:88:1C:01:5C:87:65:9D:68:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F365F7E8/B87BC27696CA11EEBFD5AC73D25BE465/kiiCgOPYgt7EFfWIHAFch2WdaEo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/kiiCgOPYgt7EFfWIHAFch2WdaEo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F365F7E8/B87BC27696CA11EEBFD5AC73D25BE465/7F8D883847B111F1979852D1CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.19.36.0/22
Signature Algorithm: sha256WithRSAEncryption
3d:d5:f0:0b:e0:fc:39:15:78:51:43:99:2d:e9:14:c9:c5:d2:
5f:f0:9b:99:a8:96:84:fd:fc:e8:c1:72:ca:49:c5:bb:8b:47:
e5:e8:0b:82:27:df:19:b7:8e:2f:3b:c2:4f:04:8d:99:53:af:
1c:9d:aa:35:c2:9e:91:22:f4:af:23:0d:63:c2:33:86:c2:6c:
ef:39:a9:2c:7e:24:0b:34:1f:96:e9:8d:b9:8a:82:7f:d2:f7:
b2:0b:17:63:a5:59:ae:20:30:05:54:6a:a7:9f:4d:5e:ab:5a:
64:78:1f:29:93:bd:61:a8:db:03:67:14:29:32:5e:d8:e9:06:
ed:d6:71:fb:48:3f:0b:17:0d:7e:e1:0d:8a:98:9d:90:07:d3:
d8:65:3f:21:22:f5:7d:9a:d5:e7:f1:57:cc:24:ae:3d:e9:e0:
2b:6d:93:61:f7:1e:5f:01:9a:a9:ff:38:86:46:50:6c:02:16:
3c:ba:81:ce:18:fa:8c:10:f2:a4:ed:67:52:88:9a:d4:31:94:
c0:2d:cd:b5:c1:da:7d:7c:6b:55:a5:7c:c0:a8:7e:08:26:20:
f9:d5:3d:d7:07:9c:b1:a3:76:c2:08:c1:46:d9:66:2e:f3:27:
23:dc:98:f2:6b:0a:0d:11:cb:43:61:8d:81:cc:93:4e:de:2a:
9e:e5:cc:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 5 23:15:41 2026 by rpki-client