Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/06CB293A50FA11F1B4CDF1C8CE1D38B0.roa
File: 06CB293A50FA11F1B4CDF1C8CE1D38B0.roa (raw, json)
Hash identifier: Jxfrh8WJGEuJWw8En/agR7r8gweAGhF06lvJAiF6qC8=
Subject key identifier: 47:75:A7:17:94:D5:64:DD:2F:97:F4:15:6B:B5:EF:95:8F:AF:2D:EB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B4F1
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/06CB293A50FA11F1B4CDF1C8CE1D38B0.roa
Signing time: Sat 16 May 2026 07:37:01 +0000
ROA not before: Sat 16 May 2026 07:36:56 +0000
ROA not after: Sat 20 Jun 2026 07:36:56 +0000
asID: 214432
IP address blocks: 156.254.20.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111857 (0x1b4f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 16 07:36:56 2026 GMT
Not After : Jun 20 07:36:56 2026 GMT
Subject: CN=6a081e9d-d7f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:1d:9a:b7:01:da:fc:55:e9:e9:36:76:c3:33:
51:88:a0:a7:86:75:5e:8c:f1:70:f7:fd:00:82:6b:
94:63:66:b3:ef:be:65:88:04:af:ff:49:43:9d:d2:
e8:b8:a2:10:81:06:76:03:e6:e5:05:5f:01:74:44:
eb:14:4d:fc:68:bf:97:e0:e9:9c:d5:7f:1d:42:ba:
fe:4a:1c:7e:89:c3:df:3e:69:8a:d1:79:17:d0:ee:
da:bb:32:34:b0:30:3a:70:42:07:e4:99:94:39:df:
97:42:f8:17:64:aa:c0:58:98:e7:89:a0:ee:3e:33:
0e:c2:bc:8e:40:2b:24:76:7a:79:29:4f:e0:f8:d2:
fb:d1:92:5a:31:c9:56:6f:70:d6:65:8d:30:3a:8f:
fe:dc:aa:35:eb:02:1d:ef:00:8b:d0:f9:dc:19:90:
e8:fe:f0:3c:b7:c0:c1:7a:e7:eb:a2:6f:74:9f:fc:
d1:e4:ce:6a:34:55:18:be:33:19:5b:4e:c2:e3:e2:
a2:ef:46:75:b7:02:4e:a0:ab:32:dc:cf:c9:ec:ff:
ae:1a:0f:06:fb:5b:3a:f9:44:12:f9:40:e1:17:36:
76:4d:76:fc:19:8e:55:37:1b:dc:34:8d:5d:ce:e0:
d1:5a:1f:c5:60:04:e5:70:62:b3:02:8b:63:e5:d3:
6a:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:75:A7:17:94:D5:64:DD:2F:97:F4:15:6B:B5:EF:95:8F:AF:2D:EB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/06CB293A50FA11F1B4CDF1C8CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.254.20.0/23
Signature Algorithm: sha256WithRSAEncryption
6d:29:e6:ff:e9:15:70:75:ef:b3:c1:dc:e3:81:1f:ca:08:79:
60:53:e7:d6:94:a5:49:7f:5c:fe:51:55:99:95:b0:cd:d3:b1:
e9:d4:99:37:ed:72:82:a2:5d:8e:3e:18:33:0f:8d:ec:ba:62:
48:d2:78:5e:45:57:6c:34:41:79:01:39:a6:69:45:4a:7a:27:
50:ba:99:f8:76:7d:6c:57:d1:f8:20:21:eb:1e:7d:d8:e7:91:
ae:4c:d6:04:1c:0f:7a:5d:1a:f0:39:a2:08:7d:32:7c:b8:04:
8a:35:d4:85:5c:7f:9c:0b:37:65:28:cd:9b:e9:63:30:ed:15:
80:3a:34:ec:0c:bc:b5:25:c2:83:a2:6f:e6:8f:2b:72:81:6b:
2e:e0:b8:02:ce:a1:cf:2f:85:a4:69:06:cc:5f:81:95:58:2f:
a5:98:36:09:12:45:91:73:14:35:93:73:d4:d2:6e:8c:fd:2e:
2d:e3:78:56:9b:68:2e:c1:47:84:0b:65:2a:9d:32:a7:53:e5:
78:f3:be:0f:9d:ed:8e:c4:60:a4:fb:6b:99:c7:9f:cb:87:e8:
32:d5:79:9b:83:22:64:80:bd:a8:6e:d4:18:0e:cf:98:8e:b1:
64:10:64:86:91:76:89:35:e1:69:e8:1d:5f:fc:f8:15:09:3e:
70:91:d8:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:07:06 2026 by rpki-client