Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3D099630577111F1A46B4BA8CE1D38B0.roa
File: 3D099630577111F1A46B4BA8CE1D38B0.roa (raw, json)
Hash identifier: jO3jYo9bS8nG7aLRFV8I06LxcujVQXsWphtls4TBKPI=
Subject key identifier: 4C:66:F8:BF:51:BD:60:A0:31:64:8A:C4:86:0D:81:24:B3:E3:2F:65
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B8EA
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3D099630577111F1A46B4BA8CE1D38B0.roa
Signing time: Sun 24 May 2026 13:05:30 +0000
ROA not before: Sun 24 May 2026 13:05:25 +0000
ROA not after: Sun 05 Jul 2026 13:05:25 +0000
asID: 20326
IP address blocks: 156.246.30.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112874 (0x1b8ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 24 13:05:25 2026 GMT
Not After : Jul 5 13:05:25 2026 GMT
Subject: CN=6a12f799-b719
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:50:77:43:77:ea:a2:f1:fe:5a:5c:f7:d6:b5:
b2:8b:11:47:8a:d3:c4:c5:28:b4:af:a7:ef:b9:2d:
60:65:14:4c:50:8d:29:1d:68:6b:89:5a:d4:29:46:
48:50:ec:9d:5a:7d:bf:f4:29:28:dd:4d:44:93:dd:
f5:f8:28:76:8a:dd:86:aa:84:df:0c:2e:f4:70:fe:
da:f2:a4:c5:aa:97:12:fc:6f:8d:b1:ce:80:dd:d0:
24:09:a6:c7:bb:58:ca:e6:9f:76:96:b9:5a:0a:67:
2e:ab:0a:c0:47:6f:fb:bb:48:4a:de:fc:35:41:78:
a1:6d:a2:0d:ad:48:7a:d7:da:9a:0b:d4:ce:fe:3d:
28:20:97:c1:31:57:22:0a:74:7d:c2:8f:ad:d3:ce:
c4:ec:39:dd:5b:f1:1b:d6:58:a4:58:14:d4:b2:db:
bc:d4:37:cd:29:2f:9e:ab:4f:c6:cd:ae:46:58:b1:
c0:c3:b1:ce:47:b6:3c:e9:a3:82:ef:62:d2:09:cd:
ba:85:1e:69:a5:39:45:96:0a:15:6f:61:2e:6a:70:
c7:af:f2:a2:ad:8a:5d:22:6f:b1:c6:9a:38:11:83:
56:7e:29:b7:6c:02:ff:e9:3e:91:0c:7f:6d:62:d4:
a1:aa:89:ec:62:d2:ae:52:52:a1:a0:d8:76:b5:01:
86:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:66:F8:BF:51:BD:60:A0:31:64:8A:C4:86:0D:81:24:B3:E3:2F:65
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3D099630577111F1A46B4BA8CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.246.30.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:2f:d8:55:3d:1d:d8:0d:ff:b0:51:d3:4e:77:13:ac:cc:98:
3d:79:0d:3c:96:9e:0b:cc:1e:e8:95:fd:ab:63:b9:8b:8a:9b:
7e:94:78:eb:56:c7:e6:40:1e:f3:ef:09:39:0b:b4:5f:4b:1e:
d6:9b:dd:bc:8d:c2:8e:29:27:c7:18:e8:a9:76:6e:03:4c:3a:
24:b7:8d:bd:b3:f6:66:4d:f1:ed:e1:1d:d1:f3:8d:af:aa:b2:
20:70:08:74:2e:6b:fb:a3:ee:13:68:4c:93:08:5c:cb:50:d7:
8b:9b:2f:02:a1:7d:f5:97:dc:b1:e1:b4:d0:0b:ab:84:8a:b7:
dc:f5:9b:e9:40:9c:a5:34:64:5a:61:7a:ab:aa:1e:22:16:d4:
86:a5:d9:aa:04:ce:47:0f:8b:5c:8a:6b:16:61:f5:77:90:aa:
fc:4a:02:1f:2d:bc:09:07:9a:9f:39:db:3d:9d:81:4d:c2:07:
a6:07:a1:23:3f:83:c5:96:c5:fc:44:44:63:5a:d1:7e:43:64:
a6:82:63:31:0c:cd:8c:24:4a:86:30:58:e9:f7:c0:03:b3:c7:
f1:5a:0b:1a:a8:32:9e:5b:d4:53:61:d8:4d:9e:bb:11:3f:d5:
bb:60:02:b1:46:52:f5:e7:d4:4e:aa:b1:31:2d:33:88:54:6e:
95:e0:9a:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:07:11 2026 by rpki-client