Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1E05138C545011F1ACB4960BCF1D38B0.roa
File: 1E05138C545011F1ACB4960BCF1D38B0.roa (raw, json)
Hash identifier: J1ArJgDe/qI21UYE+kGrkrPUQ6GjSZT//NnaGml88U8=
Subject key identifier: C7:D1:9E:BC:D1:96:01:78:17:5B:50:5A:F2:50:B8:62:AE:1E:9A:7A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B65A
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1E05138C545011F1ACB4960BCF1D38B0.roa
Signing time: Wed 20 May 2026 13:30:50 +0000
ROA not before: Wed 20 May 2026 13:30:46 +0000
ROA not after: Tue 16 Jun 2026 13:30:46 +0000
asID: 150706
IP address blocks: 156.255.2.0/23 maxlen: 24
156.255.2.0/24 maxlen: 24
156.255.3.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112218 (0x1b65a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 20 13:30:46 2026 GMT
Not After : Jun 16 13:30:46 2026 GMT
Subject: CN=6a0db78a-18c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e2:86:0e:99:8d:d3:4f:89:6f:86:c2:6b:f0:
36:9c:e8:d5:37:61:a3:6a:ea:1d:20:41:e4:82:c9:
1e:ab:1e:6c:55:22:b1:ed:a8:91:c0:e8:72:0a:66:
87:0a:7f:c4:98:7b:ae:a0:bd:d1:a7:4f:80:ad:0d:
a4:c7:6b:80:d7:b8:5e:23:33:72:75:ff:83:28:b1:
25:f2:b0:52:9b:34:fe:c3:03:9b:b8:3e:81:b2:01:
38:65:27:42:4d:24:4f:e9:ff:ba:67:7b:e2:52:a8:
22:cd:86:81:65:61:4b:b1:cf:ce:b8:56:b5:cd:c7:
8e:94:06:ba:dd:4b:61:10:44:d7:c2:f8:96:8d:d0:
67:86:e3:52:b8:90:93:56:51:55:93:3e:53:63:17:
37:8a:9e:89:15:c0:2c:8a:e8:c8:1e:4b:e9:e0:f2:
f1:1d:5f:1c:cd:6f:41:68:04:90:43:e4:2a:23:77:
a9:6a:30:2e:61:33:cc:b2:37:c3:e1:d5:a9:62:2f:
2c:12:a3:47:ac:3f:47:7e:c0:4a:8a:e1:40:f9:e9:
91:ba:a6:1d:2d:eb:1c:b4:0b:bb:6f:f4:8a:8e:b4:
43:02:59:11:fb:8b:ce:f8:94:8d:af:5b:59:0b:a9:
5d:f2:cd:8a:c9:26:a2:51:ab:4c:12:20:0c:61:75:
96:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:D1:9E:BC:D1:96:01:78:17:5B:50:5A:F2:50:B8:62:AE:1E:9A:7A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/1E05138C545011F1ACB4960BCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.255.2.0/23
Signature Algorithm: sha256WithRSAEncryption
7a:2a:92:97:cd:e5:78:11:ed:1a:26:70:3e:9a:cb:b5:a1:8c:
64:0f:bf:dc:66:19:e9:36:92:48:8d:ca:2a:13:bb:50:2a:ad:
78:6b:e5:f3:f0:d6:c9:dd:32:19:15:4b:63:11:68:48:35:ec:
80:bf:66:c5:21:93:b3:43:1a:33:9e:66:32:02:12:30:d2:b3:
80:0e:be:cc:81:06:93:d9:3e:7e:dc:89:5b:ba:22:29:b4:0e:
52:20:5b:33:17:4e:cb:0b:cf:fe:f8:a6:f7:d9:45:1b:e7:bc:
a5:24:ea:3a:6c:39:1d:da:78:07:ed:43:e4:e2:61:7c:a2:7c:
ac:78:c6:8a:7d:bf:5e:9d:16:65:18:31:03:39:74:22:71:a6:
0e:ac:6d:51:0e:1d:c8:2b:6f:e6:03:39:3c:fb:b5:e7:ed:6f:
7d:5d:c2:a0:f3:78:da:6d:76:51:3d:84:01:c6:62:ca:a9:67:
ba:8b:cf:82:cd:b6:2e:9e:1b:68:ef:c7:c7:e1:39:40:84:8f:
a8:b7:ea:48:13:fe:fc:a3:71:7a:36:79:b7:dc:fd:11:97:b2:
aa:aa:3b:24:fe:cd:29:c5:8c:13:5d:04:a0:78:c9:6b:ef:c9:
19:99:fe:5a:13:c7:6b:2d:df:0a:69:f3:d3:f7:3b:97:ea:c7:
c3:c1:07:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:07:32 2026 by rpki-client