Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3663CEE/2E98855883BE11EA9D53D930F8AEA228/7D17FAF6630A11F1973428B3CE1D38B0.roa
File: 7D17FAF6630A11F1973428B3CE1D38B0.roa (raw, json)
Hash identifier: QOr/uKUZFgOlwkfhL6yATG6f8weg9wDJx4DrL1BDQEg=
Subject key identifier: 1B:74:3A:8C:78:B8:0D:CA:1C:93:B6:7B:7D:A7:36:B7:19:3C:80:7A
Certificate issuer: /CN=F3663CEEAR/serialNumber=E7AE8FC09CF807DED3463DDB4200151BA50A559F
Certificate serial: 08FA
Authority key identifier: E7:AE:8F:C0:9C:F8:07:DE:D3:46:3D:DB:42:00:15:1B:A5:0A:55:9F
Authority info access: rsync://rpki.afrinic.net/repository/arin/566PwJz4B97TRj3bQgAVG6UKVZ8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3663CEE/2E98855883BE11EA9D53D930F8AEA228/7D17FAF6630A11F1973428B3CE1D38B0.roa
Signing time: Mon 08 Jun 2026 07:20:13 +0000
ROA not before: Mon 08 Jun 2026 07:19:57 +0000
ROA not after: Sun 08 Jun 2036 07:19:57 +0000
asID: 327693
IP address blocks: 160.119.136.0/21 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3663CEE/2E98855883BE11EA9D53D930F8AEA228/566PwJz4B97TRj3bQgAVG6UKVZ8.crl
rsync://rpki.afrinic.net/repository/member_repository/F3663CEE/2E98855883BE11EA9D53D930F8AEA228/566PwJz4B97TRj3bQgAVG6UKVZ8.mft
rsync://rpki.afrinic.net/repository/arin/566PwJz4B97TRj3bQgAVG6UKVZ8.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2298 (0x8fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3663CEEAR, serialNumber=E7AE8FC09CF807DED3463DDB4200151BA50A559F
Validity
Not Before: Jun 8 07:19:57 2026 GMT
Not After : Jun 8 07:19:57 2036 GMT
Subject: CN=6a266d2d-c45f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:0c:d0:98:1b:f8:7a:07:81:bf:3a:81:63:08:
15:19:a7:fb:d2:73:ba:0b:a6:2c:7b:42:59:10:c7:
89:4d:a8:78:c1:8c:a0:3d:c9:74:54:f8:90:e8:38:
52:1f:97:54:56:b2:b2:96:d8:ce:5f:63:da:5d:10:
9a:9b:27:6f:73:45:4b:ac:4d:27:16:12:d0:34:40:
c4:0e:7d:4f:a5:ce:dd:93:5a:b9:74:8b:11:36:10:
7e:91:df:74:d2:5d:6c:17:32:57:74:fe:74:54:a2:
a8:35:d9:c5:b1:63:ed:ed:78:4d:24:ac:6f:18:f9:
cd:c3:bb:33:5f:1d:07:52:63:f5:fe:25:2a:9b:bf:
20:75:9e:d4:8a:d0:0f:66:07:06:91:ea:b9:2c:ee:
e4:ad:b3:14:8a:4c:f9:bd:03:a0:3b:5f:ac:2f:c6:
2b:18:9e:03:dd:e0:62:73:00:19:db:d0:7a:8d:03:
0e:2c:ee:fa:ea:51:84:d3:34:ba:1a:d8:6d:86:2c:
50:02:f1:d7:f1:66:dc:84:af:9c:7c:c7:3f:0c:f3:
b3:74:cc:ce:b0:0f:e2:19:6c:8c:e1:a7:11:6f:ae:
3b:84:bd:b7:44:f1:13:6b:2a:4c:21:16:07:62:d3:
ba:c8:db:95:76:4c:97:26:f8:a4:b3:67:a3:6a:e7:
00:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:74:3A:8C:78:B8:0D:CA:1C:93:B6:7B:7D:A7:36:B7:19:3C:80:7A
X509v3 Authority Key Identifier:
keyid:E7:AE:8F:C0:9C:F8:07:DE:D3:46:3D:DB:42:00:15:1B:A5:0A:55:9F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3663CEE/2E98855883BE11EA9D53D930F8AEA228/566PwJz4B97TRj3bQgAVG6UKVZ8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/566PwJz4B97TRj3bQgAVG6UKVZ8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3663CEE/2E98855883BE11EA9D53D930F8AEA228/7D17FAF6630A11F1973428B3CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.119.136.0/21
Signature Algorithm: sha256WithRSAEncryption
19:e4:25:94:18:09:d6:cc:d8:6e:3c:68:5e:cd:6a:7e:31:b3:
f3:f1:dd:66:9f:de:50:9e:c1:eb:30:2c:86:52:ac:3e:1e:24:
89:ff:b7:cc:73:c2:29:1a:ac:3a:98:5b:02:6e:56:de:c6:36:
a9:96:f9:f9:4f:9f:3b:f7:b0:75:59:c7:a4:6b:51:84:a8:70:
12:e6:27:c1:ca:49:35:90:b2:ad:92:bb:e7:84:1d:11:d2:e9:
0a:99:6b:4f:81:a1:85:e7:2e:21:29:1b:88:1f:3d:c2:6b:41:
b0:f7:d9:97:73:21:60:cc:3f:59:b8:f2:f4:01:f7:1a:0d:da:
03:02:1e:6a:a1:58:f2:fa:c7:36:e1:ee:92:af:c8:df:15:d4:
b3:22:ef:2a:7d:6a:74:0c:d2:b7:25:13:f6:65:cf:47:29:51:
6e:1c:67:5c:c9:97:f9:ad:6d:20:3a:94:95:53:42:d7:4d:5c:
8b:0d:cf:98:58:71:f6:ba:7d:05:dc:a3:dd:7b:6b:f3:3c:cf:
dd:d9:ea:59:41:24:e3:9e:2c:ec:92:05:6f:9b:41:22:9b:24:
0e:4a:3a:8f:a6:c5:60:ff:99:fd:cb:bd:75:98:6e:fa:69:16:
a4:ee:20:a4:e7:5a:8b:6a:be:66:b2:1d:b9:dd:96:e4:4e:43:
26:c6:db:5d
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICCPowDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
NjNDRUVBUjExMC8GA1UEBRMoRTdBRThGQzA5Q0Y4MDdERUQzNDYzRERCNDIwMDE1
MUJBNTBBNTU5RjAeFw0yNjA2MDgwNzE5NTdaFw0zNjA2MDgwNzE5NTdaMBgxFjAU
BgNVBAMTDTZhMjY2ZDJkLWM0NWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCwDNCYG/h6B4G/OoFjCBUZp/vSc7oLpix7QlkQx4lNqHjBjKA9yXRU+JDo
OFIfl1RWsrKW2M5fY9pdEJqbJ29zRUusTScWEtA0QMQOfU+lzt2TWrl0ixE2EH6R
33TSXWwXMld0/nRUoqg12cWxY+3teE0krG8Y+c3DuzNfHQdSY/X+JSqbvyB1ntSK
0A9mBwaR6rks7uStsxSKTPm9A6A7X6wvxisYngPd4GJzABnb0HqNAw4s7vrqUYTT
NLoa2G2GLFAC8dfxZtyEr5x8xz8M87N0zM6wD+IZbIzhpxFvrjuEvbdE8RNrKkwh
Fgdi07rI25V2TJcm+KSzZ6Nq5wCXAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUG3Q6
jHi4Dcock7Z7fac2txk8gHowHwYDVR0jBBgwFoAU566PwJz4B97TRj3bQgAVG6UK
VZ8wDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjYzQ0VFLzJFOTg4NTU4ODNCRTExRUE5RDUzRDkzMEY4QUVBMjI4LzU2NlB3
Sno0Qjk3VFJqM2JRZ0FWRzZVS1ZaOC5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
LzU2NlB3Sno0Qjk3VFJqM2JRZ0FWRzZVS1ZaOC5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjYzQ0VFLzJFOTg4NTU4ODNCRTExRUE5RDUzRDkzMEY4QUVB
MjI4LzdEMTdGQUY2NjMwQTExRjE5NzM0MjhCM0NFMUQzOEIwLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAOgd4gwDQYJKoZIhvcNAQELBQAD
ggEBABnkJZQYCdbM2G48aF7Nan4xs/Px3Waf3lCeweswLIZSrD4eJIn/t8xzwika
rDqYWwJuVt7GNqmW+flPnzv3sHVZx6RrUYSocBLmJ8HKSTWQsq2Su+eEHRHS6QqZ
a0+BoYXnLiEpG4gfPcJrQbD32ZdzIWDMP1m48vQB9xoN2gMCHmqhWPL6xzbh7pKv
yN8V1LMi7yp9anQM0rclE/Zlz0cpUW4cZ1zJl/mtbSA6lJVTQtdNXIsNz5hYcfa6
fQXco917a/M8z93Z6llBJOOeLOySBW+bQSKbJA5KOo+mxWD/mf3LvXWYbvppFqTu
IKTnWotqvmayHbndluROQybG210=
-----END CERTIFICATE-----
Generated at Sat Jun 13 13:11:07 2026 by rpki-client