Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/086DE2442AD711F18A81BC8CDAE4EC9C.roa
File: 086DE2442AD711F18A81BC8CDAE4EC9C.roa (raw, json)
Hash identifier: qCW+06VW0RMNUgP7u6tbcocwtnSAj9OyDl3QfaFD1ow=
Subject key identifier: C5:10:90:EC:24:2C:5C:4F:0E:5E:43:69:97:6E:C7:36:88:6B:AC:5F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A83A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/086DE2442AD711F18A81BC8CDAE4EC9C.roa
Signing time: Sat 28 Mar 2026 18:50:48 +0000
ROA not before: Sat 28 Mar 2026 18:50:43 +0000
ROA not after: Tue 05 May 2026 18:50:43 +0000
asID: 40779
IP address blocks: 156.238.224.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 Apr 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108602 (0x1a83a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 28 18:50:43 2026 GMT
Not After : May 5 18:50:43 2026 GMT
Subject: CN=69c82308-c478
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:bf:e9:62:cf:f9:0e:c2:a2:2e:95:06:40:00:
d1:4b:6b:23:48:3b:bd:c2:09:73:a5:a3:f8:d1:e4:
7d:f1:91:ec:67:bd:a8:57:54:e7:37:64:25:c3:6f:
7f:6c:b8:a1:f9:bc:dd:7c:4f:ce:a0:7e:78:99:f8:
4e:00:e3:26:e5:3c:e7:ba:19:ec:28:14:32:04:1d:
e3:65:04:4a:f9:cb:1c:88:2a:c5:22:8e:77:04:52:
34:22:c0:c8:80:c8:a2:17:42:ac:9b:fc:d9:b6:1e:
9e:51:7e:e3:df:14:85:89:ac:94:f7:41:d8:0f:53:
4c:ab:01:f6:2f:c5:7e:ab:5b:f8:9a:bd:ff:6e:c5:
c3:39:2f:b2:c4:95:76:fe:af:41:7a:c1:44:4f:75:
70:cd:59:69:bb:52:2a:c6:a8:13:d6:6f:0f:26:f1:
7c:46:a7:73:bf:ad:d0:da:88:9d:fb:25:21:5f:f2:
26:85:ea:c1:9a:32:7f:d5:5a:01:66:f8:68:98:46:
f0:b9:30:3d:f2:02:8b:b6:28:83:1f:e1:51:14:05:
ed:94:77:7d:56:c3:6b:3a:2b:a6:a0:fc:2a:9f:2d:
f5:1c:a7:c4:6f:7a:2d:7d:eb:46:03:c0:96:e0:ca:
64:4d:08:01:7f:08:3b:e7:0c:31:e1:b0:96:cb:67:
bf:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:10:90:EC:24:2C:5C:4F:0E:5E:43:69:97:6E:C7:36:88:6B:AC:5F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/086DE2442AD711F18A81BC8CDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.224.0/19
Signature Algorithm: sha256WithRSAEncryption
60:78:2c:62:8a:bb:43:38:16:22:1f:1b:35:b6:d6:de:3e:bd:
0c:be:f7:01:22:b0:64:a6:ee:a6:e2:0f:6c:f2:07:59:0a:a7:
af:37:29:58:24:7c:34:07:19:a0:ab:94:40:95:e8:16:24:42:
f5:22:c6:f2:6a:2d:4b:95:3e:c6:96:8c:d7:37:f1:b2:be:d7:
35:65:ac:0d:0f:75:77:fc:20:06:4e:4e:90:b5:5f:f6:77:35:
23:2b:15:4a:89:2a:0e:a5:16:4c:0f:12:46:14:4c:87:c3:21:
c9:15:e8:19:13:98:c9:19:a4:bb:cd:c0:41:a7:88:48:aa:8f:
83:36:2a:d2:a7:e4:39:9d:15:65:01:28:4d:e5:28:db:b6:12:
43:25:90:d7:6a:08:60:4d:03:db:33:cb:bc:13:32:94:6b:02:
80:d1:29:29:25:d8:09:70:25:3a:da:58:4e:34:4b:f6:08:2e:
08:56:39:60:ac:35:9c:e8:10:72:f2:d6:a6:ca:7c:8a:11:82:
f2:9e:97:b4:a5:9b:01:bd:a6:a2:cf:df:fb:94:07:c4:05:0f:
e8:a2:26:82:0b:73:8b:5a:0f:bf:86:bf:eb:f2:1c:fb:0c:5d:
d5:91:f1:79:ce:89:f9:cb:3b:2d:33:49:59:65:d8:ce:d3:44:
b0:79:57:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 14:30:38 2026 by rpki-client