Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/234460B4536511F1BEF88EF9CE1D38B0.roa
File: 234460B4536511F1BEF88EF9CE1D38B0.roa (raw, json)
Hash identifier: x07Gqrys9yJ5rHZs398LryaFMn/+0Cxc3bvb7NtPJ6w=
Subject key identifier: 7A:A4:AD:DC:F9:3F:7D:DA:AF:ED:D2:33:3C:E8:6E:0E:15:D7:E1:A0
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B5D5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/234460B4536511F1BEF88EF9CE1D38B0.roa
Signing time: Tue 19 May 2026 09:28:48 +0000
ROA not before: Tue 19 May 2026 09:28:43 +0000
ROA not after: Sat 22 May 2027 09:28:43 +0000
asID: 63199
IP address blocks: 156.242.82.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112085 (0x1b5d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 19 09:28:43 2026 GMT
Not After : May 22 09:28:43 2027 GMT
Subject: CN=6a0c2d50-cba4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:4f:a6:83:16:35:58:51:94:32:8e:c9:be:58:
4c:49:17:49:a4:53:bb:99:fe:72:77:65:a5:f5:02:
ac:6c:37:1a:50:de:19:23:7a:91:11:74:56:e2:1e:
cf:c6:4f:0a:f4:dd:60:63:5b:ee:9a:05:f7:bf:c3:
16:6c:c1:4c:28:c1:a3:68:27:2d:79:20:98:a7:0c:
4c:84:28:bc:09:c0:aa:0f:1a:27:e6:3e:cb:31:02:
87:f5:3f:2e:ef:5d:02:a3:03:20:54:6b:28:0c:4d:
05:1e:80:59:65:15:71:3f:14:af:30:7e:28:86:14:
c1:a9:2c:8d:cf:61:ad:df:0c:18:5a:ef:15:21:52:
f3:6c:0e:0b:06:c2:06:a9:08:ce:da:c9:7a:8e:99:
e2:f5:65:ac:30:9e:83:cf:30:c4:f9:d5:3e:70:f2:
7d:44:c3:52:0c:66:e5:27:3c:da:4d:a1:b9:de:4e:
c8:d4:5b:73:e6:31:1c:67:87:9e:73:7c:d0:f3:9f:
27:94:50:83:cc:da:9e:98:1d:03:36:3b:e5:88:6e:
df:42:53:9d:97:83:e2:96:05:26:0c:d7:93:6c:d0:
1c:7b:ea:43:94:ed:9e:f2:85:a0:ee:3a:f9:4b:e6:
f5:06:02:24:7c:66:27:8d:6d:7d:05:66:a9:f6:5e:
5c:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:A4:AD:DC:F9:3F:7D:DA:AF:ED:D2:33:3C:E8:6E:0E:15:D7:E1:A0
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/234460B4536511F1BEF88EF9CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.242.82.0/24
Signature Algorithm: sha256WithRSAEncryption
11:e0:35:59:d4:6e:b1:21:81:85:ab:8d:18:6d:e6:15:af:c9:
91:46:2a:9f:8f:b4:f1:66:43:cb:3c:c1:e5:b7:1d:01:e6:18:
bd:a4:4f:be:49:b1:76:e6:37:f1:0b:ab:15:51:c0:7d:64:1d:
e1:88:54:8d:f6:b3:fb:75:4b:f4:13:be:68:05:9d:09:7e:e3:
2d:d1:52:10:41:4d:65:64:24:89:94:30:e8:b6:08:f3:79:df:
3c:ac:4e:1f:43:5a:c6:a7:03:97:d1:ae:65:96:22:84:4b:a7:
74:05:cc:0b:e1:cd:cc:62:33:26:20:84:75:f9:8b:47:56:4c:
cb:9e:e4:5b:f1:14:2d:fc:77:8b:b0:b5:b7:ae:d0:e7:b2:03:
8d:da:07:02:23:e7:3a:12:a4:76:94:d9:e1:ef:a4:da:52:18:
64:d8:a3:a1:0e:d9:df:13:f6:88:a3:12:57:db:e0:a1:c6:35:
24:ff:fa:5a:0b:ed:05:ed:d8:c3:73:56:4e:a8:5f:92:38:82:
ce:83:5d:f9:06:f8:05:10:4d:2e:2d:bb:c2:ff:57:fd:2d:67:
95:72:4a:66:0f:22:23:87:cf:9a:e2:fc:6f:91:66:85:74:02:
7b:04:72:4e:a1:09:eb:b1:af:d3:78:6f:c6:72:b3:20:b6:03:
bd:c6:0a:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:07:30 2026 by rpki-client