Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/4E5CFF565A6111F18615000BCF1D38B0.roa
File: 4E5CFF565A6111F18615000BCF1D38B0.roa (raw, json)
Hash identifier: qBUF7V2t7wsU9Jof72FWBKP4A64JhBvfQ5AxTCYamws=
Subject key identifier: 38:53:B3:75:CB:73:1F:DE:61:BF:6E:1C:9C:A7:C3:92:CE:88:3C:E0
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 0E7B
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/4E5CFF565A6111F18615000BCF1D38B0.roa
Signing time: Thu 28 May 2026 06:49:00 +0000
ROA not before: Thu 28 May 2026 06:48:56 +0000
ROA not after: Wed 28 May 2036 06:48:56 +0000
asID: 23734
IP address blocks: 192.142.16.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 30 May 2026 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3707 (0xe7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR, serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: May 28 06:48:56 2026 GMT
Not After : May 28 06:48:56 2036 GMT
Subject: CN=6a17e55c-c60a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:94:96:33:23:ab:14:68:47:cd:2b:9f:d6:ad:
70:78:95:4b:9e:27:4e:84:3e:0f:df:72:68:58:09:
c3:f1:a5:12:4a:60:7e:7b:55:91:bd:73:06:7f:c0:
69:d5:07:54:31:3a:8f:4f:3c:75:b0:b8:a8:b5:a0:
b7:98:c2:81:b8:87:dd:d9:2c:29:d9:b6:40:6a:7e:
90:1b:f5:be:95:ed:71:c7:39:33:14:77:ab:0f:9e:
7e:b0:b9:89:e0:52:2d:2a:d1:2c:59:1c:95:01:7c:
d6:b3:ca:1d:b4:82:c2:fb:8b:d1:fc:16:4f:39:84:
a6:3d:cc:eb:d5:5c:8f:d3:67:ea:e8:83:72:e5:28:
b6:26:86:03:11:be:27:f0:18:a0:62:04:36:d1:3f:
bc:fe:51:fa:d7:9c:d9:ac:69:73:f5:73:ab:6e:5b:
2a:62:12:65:81:68:8d:3f:2e:21:e9:d6:29:08:f5:
45:25:5e:14:d5:db:fc:bb:ff:eb:bb:04:ac:49:9a:
6c:f6:99:22:d7:8c:fd:6e:89:46:fe:63:02:e1:53:
1e:06:40:e3:3c:6c:2c:f0:74:14:ad:40:de:12:6f:
a4:bc:c0:a5:f6:4c:79:9a:97:44:b1:0e:82:73:cb:
2a:16:e9:9b:37:e2:7d:63:b8:f2:35:f6:8f:3a:9e:
d2:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:53:B3:75:CB:73:1F:DE:61:BF:6E:1C:9C:A7:C3:92:CE:88:3C:E0
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/4E5CFF565A6111F18615000BCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.16.0/24
Signature Algorithm: sha256WithRSAEncryption
32:e6:99:28:f8:af:72:fe:03:17:54:ea:46:9e:4e:f4:1d:59:
7a:bd:c7:eb:a4:62:61:54:b7:45:8f:32:2b:19:63:4e:63:3b:
fa:cb:3b:d8:c3:94:2a:00:fa:b0:bb:30:cb:0c:0d:64:30:ed:
8d:6b:8b:b2:57:8f:51:9a:80:05:10:58:28:3b:f4:08:57:0f:
6c:83:d0:60:cb:25:f7:f4:f5:c7:37:a1:92:32:f5:6c:93:ac:
da:51:16:40:11:5f:38:c7:9c:93:ac:61:1d:42:e3:74:6e:b4:
0c:cc:fa:92:90:18:d7:f3:bc:55:1f:c2:a0:54:8f:46:d3:e4:
06:7f:3e:49:49:84:97:16:8b:f4:1c:65:77:a8:e8:39:44:bb:
70:88:15:6d:e3:30:cc:08:34:c8:54:4c:86:1a:8c:10:41:85:
ee:af:ef:27:31:65:a2:51:ba:54:de:54:41:8b:28:71:8a:64:
37:e0:92:29:aa:0f:4f:52:ae:f8:55:91:c3:65:be:69:0a:14:
84:fa:ab:4e:08:ea:bc:fd:8d:e9:47:fa:fb:80:f9:3a:17:97:
5c:d1:99:e5:32:83:28:54:b7:94:38:37:1c:df:37:e7:a7:eb:
dd:7a:73:cd:7d:38:1e:1b:92:24:4a:cf:00:1a:c0:b8:cf:68:
2a:7d:89:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 28 18:54:21 2026 by rpki-client