Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367F26D/5003E4B270B911E9996C873FF8AEA228/16018B34188C11F1A67028E5DAE4EC9C.roa
File: 16018B34188C11F1A67028E5DAE4EC9C.roa (raw, json)
Hash identifier: YK06nGsXOl3zmJE+1ADa7T9j6CDDbGC/qd8vMyl5oV4=
Subject key identifier: 09:BB:06:12:85:28:77:EB:BF:C1:83:E8:6C:D7:6E:23:23:77:3B:53
Certificate issuer: /CN=F367F26DAR/serialNumber=153DC0115120E240A04AAB9AE04FAD647926B124
Certificate serial: 0A0A
Authority key identifier: 15:3D:C0:11:51:20:E2:40:A0:4A:AB:9A:E0:4F:AD:64:79:26:B1:24
Authority info access: rsync://rpki.afrinic.net/repository/arin/FT3AEVEg4kCgSqua4E-tZHkmsSQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367F26D/5003E4B270B911E9996C873FF8AEA228/16018B34188C11F1A67028E5DAE4EC9C.roa
Signing time: Thu 05 Mar 2026 12:08:58 +0000
ROA not before: Thu 05 Mar 2026 12:08:32 +0000
ROA not after: Fri 01 Dec 2028 12:08:32 +0000
asID: 328366
IP address blocks: 160.226.144.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367F26D/5003E4B270B911E9996C873FF8AEA228/FT3AEVEg4kCgSqua4E-tZHkmsSQ.crl
rsync://rpki.afrinic.net/repository/member_repository/F367F26D/5003E4B270B911E9996C873FF8AEA228/FT3AEVEg4kCgSqua4E-tZHkmsSQ.mft
rsync://rpki.afrinic.net/repository/arin/FT3AEVEg4kCgSqua4E-tZHkmsSQ.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 15 Mar 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2570 (0xa0a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367F26DAR, serialNumber=153DC0115120E240A04AAB9AE04FAD647926B124
Validity
Not Before: Mar 5 12:08:32 2026 GMT
Not After : Dec 1 12:08:32 2028 GMT
Subject: CN=69a9725a-88cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ff:df:11:e9:63:1c:49:0a:27:ac:d5:41:43:
ed:62:1b:51:40:a3:f8:93:f2:59:65:70:42:0c:84:
ba:da:33:99:82:c4:c4:d0:f8:f9:68:78:03:46:f2:
c3:83:d0:2e:e1:fc:25:27:fb:50:21:ac:28:53:ac:
21:8b:18:39:41:10:b0:f8:a0:cd:c9:66:4b:27:25:
1e:d3:08:8f:5e:b8:47:9e:6e:44:06:22:f9:cc:e1:
8c:b5:b8:95:d7:0f:0e:e6:87:78:d9:df:36:de:6a:
83:eb:37:e2:0e:45:a3:7d:b1:51:fd:44:a1:b8:ea:
bd:a6:7d:ee:06:2e:4d:93:64:ad:7f:84:ed:cc:26:
32:30:a6:25:33:48:dc:92:f8:34:87:e0:02:3c:4d:
9b:92:ad:f7:ea:9b:46:99:7b:83:61:95:b4:c2:49:
22:cb:5d:55:1f:01:e7:1c:e6:4a:77:19:42:fc:88:
d7:77:20:bf:c1:f9:bd:9e:43:c7:21:1f:66:16:58:
ba:c8:2b:70:a0:78:4b:90:bc:12:33:2c:bc:8f:a5:
f1:fc:f0:a8:1e:d1:d5:f6:3e:49:ae:0e:f5:2c:8e:
1b:8c:18:a3:e5:69:ec:8e:9b:21:70:01:33:6f:33:
c7:63:be:4d:66:ce:eb:54:d6:e1:1b:45:34:2e:d7:
dd:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:BB:06:12:85:28:77:EB:BF:C1:83:E8:6C:D7:6E:23:23:77:3B:53
X509v3 Authority Key Identifier:
keyid:15:3D:C0:11:51:20:E2:40:A0:4A:AB:9A:E0:4F:AD:64:79:26:B1:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367F26D/5003E4B270B911E9996C873FF8AEA228/FT3AEVEg4kCgSqua4E-tZHkmsSQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/FT3AEVEg4kCgSqua4E-tZHkmsSQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367F26D/5003E4B270B911E9996C873FF8AEA228/16018B34188C11F1A67028E5DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.226.144.0/20
Signature Algorithm: sha256WithRSAEncryption
85:1c:4e:fc:fe:f9:c5:02:d5:1a:e6:2d:59:07:6e:3e:8c:8c:
65:5d:e7:20:ae:6c:93:84:38:c7:37:e4:9a:26:01:8c:e2:f9:
cf:71:54:4b:3f:76:71:3a:49:fb:aa:77:9a:f1:9b:cc:05:05:
92:0b:92:43:63:0e:7d:c9:b4:bf:c4:d3:16:38:9b:f8:91:c4:
41:59:1d:9c:36:96:4b:14:ba:3d:84:0b:b3:c6:04:a4:3b:85:
29:73:50:1a:17:8e:77:d4:c9:ad:b4:ad:19:8f:cb:36:f3:10:
c5:f8:53:68:1c:3e:c5:ba:42:96:1c:ca:00:e3:ea:b4:5d:f2:
b2:07:33:29:d6:21:fc:0c:2f:40:a1:2f:4e:25:dd:f2:98:c2:
aa:62:f5:91:63:bf:1a:4b:82:b0:d1:0b:dd:39:1c:52:ba:44:
04:ef:89:dc:12:2f:2a:e1:ce:b1:c8:84:c2:2a:d6:82:f9:93:
ee:0a:6b:14:4c:d4:ab:01:5e:b0:d3:e2:87:36:55:0f:3f:e0:
31:32:ed:ff:a1:60:3f:00:a9:24:28:3b:31:90:90:a2:97:f4:
c9:d8:ef:f2:42:71:49:76:41:5e:5e:fb:cc:57:1d:83:c3:c5:
8a:36:e5:ae:95:d6:cb:6b:8c:56:e8:5d:5f:55:8e:3c:fb:22:
0c:56:12:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 11:13:33 2026 by rpki-client