Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/269B9E42507411F1AE98F011CF1D38B0.roa
File: 269B9E42507411F1AE98F011CF1D38B0.roa (raw, json)
Hash identifier: QpybwhfBSlMSlHrTR6kZpat2/pf/bgo22WsfGAJe+hQ=
Subject key identifier: 91:15:AD:31:98:11:52:E9:27:BA:C7:BB:FE:FE:35:92:34:2F:35:F7
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B4C6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/269B9E42507411F1AE98F011CF1D38B0.roa
Signing time: Fri 15 May 2026 15:38:42 +0000
ROA not before: Fri 15 May 2026 15:38:37 +0000
ROA not after: Mon 22 Jun 2026 15:38:37 +0000
asID: 137899
IP address blocks: 156.225.16.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111814 (0x1b4c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 15 15:38:37 2026 GMT
Not After : Jun 22 15:38:37 2026 GMT
Subject: CN=6a073e02-4a46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:19:3b:d9:45:0d:0c:47:71:a4:c9:0e:e0:28:
90:a9:20:e6:49:79:14:35:e3:3f:5a:0c:5c:0b:84:
28:54:e3:52:a6:b0:d4:a4:8e:39:6b:af:14:59:0d:
62:53:a4:27:fa:0e:a2:6a:67:05:f3:57:84:db:68:
90:9f:f2:cc:a0:8b:63:d4:48:8f:01:e5:68:cb:2c:
80:eb:cc:c4:b3:a8:70:7f:1a:c9:66:9b:5e:03:05:
6b:f1:1e:9f:c7:df:54:ac:fd:84:72:1b:73:68:2f:
4f:99:6b:e7:52:19:77:86:8d:1e:20:24:de:65:c0:
88:8b:67:af:5b:80:e0:4c:7f:1c:cc:13:2a:cb:16:
da:e0:3e:62:27:07:27:90:38:28:5f:ce:91:e7:11:
98:9f:15:e3:93:31:dc:fe:eb:17:f6:73:28:40:56:
2a:72:74:b2:46:50:a7:ea:67:3c:af:3f:4b:42:31:
19:40:7a:a7:dc:85:96:93:a2:03:b3:26:84:56:45:
5e:ea:79:0b:01:07:11:9d:51:67:eb:ca:11:47:09:
33:22:ea:ae:2a:38:c5:db:cf:15:fb:1f:cf:cf:66:
e0:57:ca:9c:9f:e2:cf:b4:c1:da:f0:f6:46:e3:4c:
17:d9:7a:73:fb:84:af:91:b8:46:ce:bb:b3:ba:cc:
ea:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:15:AD:31:98:11:52:E9:27:BA:C7:BB:FE:FE:35:92:34:2F:35:F7
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/269B9E42507411F1AE98F011CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.16.0/20
Signature Algorithm: sha256WithRSAEncryption
4a:99:c6:0a:f1:9c:39:9b:1f:62:a9:3d:b5:00:d0:4f:b8:08:
2e:0f:fa:6d:26:b7:c2:40:2a:c3:9b:03:f4:b2:65:e1:f5:2d:
de:48:4e:57:29:9e:2a:4e:a0:75:9d:7e:c2:8b:e4:5b:b8:c6:
ae:a6:81:eb:72:2d:e7:1e:ea:b3:ad:b1:2d:1d:b7:5b:01:aa:
00:f2:0f:85:b1:ba:dd:85:eb:28:80:00:20:a8:ce:7c:19:45:
b9:c2:c6:04:14:13:0a:31:6c:ca:46:c6:af:60:03:78:f0:4e:
c1:c6:1b:15:ad:55:c0:10:cf:a7:66:10:a1:00:84:f6:bc:e6:
b6:b1:60:cd:c6:31:07:81:f3:37:1a:ec:fc:06:b9:9d:ab:69:
38:e3:45:67:4f:26:df:16:d1:d6:c8:8f:0c:10:af:87:e5:2d:
ff:b4:60:6e:e8:b4:5b:19:f6:ea:5f:ff:cb:77:98:87:da:f2:
45:3f:44:4e:6c:ac:5b:4e:c9:60:1a:f0:39:b0:88:20:a6:14:
2d:9f:3a:9b:cc:bb:8e:4b:36:74:10:e4:4d:b6:fe:ad:65:1d:
b8:18:63:a0:43:1d:50:72:41:bf:bb:9d:64:9d:22:b9:d0:24:
00:ca:71:99:c6:fe:86:ad:99:b4:f2:52:c8:d6:80:3a:ea:24:
0c:61:ac:9f
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAbTGMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwNTE1MTUzODM3WhcNMjYwNjIyMTUzODM3WjAYMRYw
FAYDVQQDEw02YTA3M2UwMi00YTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEApRk72UUNDEdxpMkO4CiQqSDmSXkUNeM/WgxcC4QoVONSprDUpI45a68U
WQ1iU6Qn+g6iamcF81eE22iQn/LMoItj1EiPAeVoyyyA68zEs6hwfxrJZpteAwVr
8R6fx99UrP2EchtzaC9PmWvnUhl3ho0eICTeZcCIi2evW4DgTH8czBMqyxba4D5i
JwcnkDgoX86R5xGYnxXjkzHc/usX9nMoQFYqcnSyRlCn6mc8rz9LQjEZQHqn3IWW
k6IDsyaEVkVe6nkLAQcRnVFn68oRRwkzIuquKjjF288V+x/Pz2bgV8qcn+LPtMHa
8PZG40wX2Xpz+4SvkbhGzruzuszqwQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFJEV
rTGYEVLpJ7rHu/7+NZI0LzX3MB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC8yNjlCOUU0MjUwNzQxMUYxQUU5OEYwMTFDRjFEMzhCMC5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEnOEQMA0GCSqGSIb3DQEBCwUA
A4IBAQBKmcYK8Zw5mx9iqT21ANBPuAguD/ptJrfCQCrDmwP0smXh9S3eSE5XKZ4q
TqB1nX7Ci+RbuMaupoHrci3nHuqzrbEtHbdbAaoA8g+FsbrdhesogAAgqM58GUW5
wsYEFBMKMWzKRsavYAN48E7BxhsVrVXAEM+nZhChAIT2vOa2sWDNxjEHgfM3Guz8
Brmdq2k440VnTybfFtHWyI8MEK+H5S3/tGBu6LRbGfbqX//Ld5iH2vJFP0RObKxb
TslgGvA5sIggphQtnzqbzLuOSzZ0EORNtv6tZR24GGOgQx1QckG/u51knSK50CQA
ynGZxv6GrZm08lLI1oA66iQMYayf
-----END CERTIFICATE-----
Generated at Tue Jun 2 21:07:20 2026 by rpki-client