Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/66DC593E47B311F1B94528DDCE1D38B0.roa
File: 66DC593E47B311F1B94528DDCE1D38B0.roa (raw, json)
Hash identifier: qLUyuEjh5U4VpYvxq/u9xNC98EbnHP0Ne6zH+1pXreI=
Subject key identifier: C9:00:74:FA:8A:80:85:3A:4E:FA:3D:52:CF:3D:A0:99:08:36:D6:83
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 0E59
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/66DC593E47B311F1B94528DDCE1D38B0.roa
Signing time: Mon 04 May 2026 12:18:48 +0000
ROA not before: Mon 04 May 2026 12:18:43 +0000
ROA not after: Mon 05 May 2036 12:18:43 +0000
asID: 6206
IP address blocks: 192.142.16.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.mft
rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 06 May 2026 00:26:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3673 (0xe59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR, serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: May 4 12:18:43 2026 GMT
Not After : May 5 12:18:43 2036 GMT
Subject: CN=69f88ea8-d78b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:de:53:af:b5:c0:e5:d9:37:63:fa:15:07:e6:
63:66:4d:40:63:59:76:c3:b2:d1:10:96:01:92:a8:
ab:a7:bd:61:34:5c:34:a6:6e:42:13:d1:e9:98:01:
8b:aa:50:c5:99:c4:51:df:3e:b0:b6:f5:8e:31:6f:
33:27:2c:98:22:48:9f:39:fd:48:6e:53:b9:44:e4:
f5:49:d3:af:6d:e5:a3:76:3c:e6:70:d5:d7:4c:f0:
40:db:92:d5:e1:0b:90:5c:d5:e4:3c:86:c8:f7:90:
d3:b2:92:2f:10:45:5e:3f:e6:b6:db:1f:2f:b6:a8:
cf:89:37:61:79:60:6e:76:48:51:a3:99:d0:5f:ea:
f9:d8:02:24:36:75:b0:88:57:70:00:60:bc:3c:3e:
ba:5b:08:7b:de:98:a5:01:0a:a1:4d:aa:0b:2f:7e:
54:e8:84:ba:f7:10:04:9b:15:4f:e1:c4:1e:19:d3:
64:f7:d7:f0:10:ea:31:1f:5b:1d:f0:40:e9:da:37:
7d:6a:9d:a2:6f:a5:e0:6d:f3:3e:3d:bd:a7:2b:ea:
af:3b:3f:c1:b4:c9:90:3f:11:9d:0f:03:52:91:e6:
0b:5b:a4:d5:1e:66:5f:b3:be:4f:c6:72:2e:bf:5e:
ef:d1:f0:7b:ed:62:9d:69:f7:f6:80:1f:97:14:de:
29:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:00:74:FA:8A:80:85:3A:4E:FA:3D:52:CF:3D:A0:99:08:36:D6:83
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/66DC593E47B311F1B94528DDCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.16.0/23
Signature Algorithm: sha256WithRSAEncryption
56:79:59:2d:9b:a3:f3:a3:ba:6c:b5:fb:ae:9d:f3:dc:5d:da:
1c:bc:e4:4a:c1:b0:5e:61:d5:f5:2b:11:01:16:ef:eb:05:78:
18:b7:41:25:bd:9b:97:f8:7e:ae:7e:d9:7c:22:46:9f:3f:04:
9a:9e:57:c9:e1:dc:a6:d7:df:cb:25:de:4c:ef:8b:44:b5:67:
60:73:f2:3d:e2:1a:e5:28:ae:89:48:a3:da:0a:b3:94:75:6f:
10:48:26:27:c3:01:da:20:f3:2f:1c:03:e8:54:c7:27:19:23:
25:38:7c:c8:4d:8f:2f:b9:0a:56:e7:2c:84:b4:8c:07:1b:d8:
b4:8e:64:e2:31:f9:20:99:4f:cb:8d:e2:b9:a3:b4:b2:61:e5:
5e:23:24:4c:1c:3e:28:39:41:05:87:54:e5:12:69:d4:c5:98:
49:d6:7b:79:9d:8f:ca:c8:29:9e:3b:10:98:99:9e:00:62:d6:
b3:05:75:ad:91:9a:81:e7:6b:9c:0d:42:bd:d4:8a:a6:4c:00:
e2:2f:59:8f:9c:6c:40:86:6c:5d:32:32:44:96:82:85:5a:e6:
04:8e:79:ca:0d:21:6b:b2:3e:ba:45:e6:5c:49:4b:29:3d:52:
a0:20:ac:75:7f:1c:44:d1:6c:b8:fa:6c:f6:c2:78:1d:4b:50:
ad:23:ec:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 4 15:14:09 2026 by rpki-client