Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3F694DE0569411F1AB32DFEBCE1D38B0.roa
File: 3F694DE0569411F1AB32DFEBCE1D38B0.roa (raw, json)
Hash identifier: 9ytPiJDDhWZKayJZHKfN2TAQ+pxB0iCT60YsvNOXWSM=
Subject key identifier: AD:18:10:EA:9A:BC:7C:C4:5D:07:F9:71:95:7F:F3:2E:97:F1:67:0F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B881
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3F694DE0569411F1AB32DFEBCE1D38B0.roa
Signing time: Sat 23 May 2026 10:43:35 +0000
ROA not before: Sat 23 May 2026 10:43:30 +0000
ROA not after: Tue 16 Jun 2026 10:43:30 +0000
asID: 138648
IP address blocks: 156.247.62.0/24 maxlen: 32
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112769 (0x1b881)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 23 10:43:30 2026 GMT
Not After : Jun 16 10:43:30 2026 GMT
Subject: CN=6a1184d7-6b06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:d7:ca:c2:30:d4:93:87:86:50:22:07:20:3a:
6c:f0:5b:19:06:77:a5:49:7f:e7:f9:16:77:fb:dc:
fa:82:8c:ed:f3:26:6e:62:db:69:14:8d:f8:3b:45:
05:5d:01:8e:fa:02:46:02:62:d5:96:fe:54:5b:80:
7e:d0:8e:72:c6:94:ff:93:2d:99:68:15:92:5c:84:
e0:96:7c:72:65:f5:0c:a2:93:b5:a4:64:84:8f:53:
91:9d:d4:e9:7f:e1:df:a5:5f:05:60:93:1a:88:04:
79:08:ef:3c:50:19:c4:2e:42:e5:c2:ed:fb:47:38:
3d:b6:ec:22:e8:f4:e3:89:e1:b9:54:06:97:96:76:
8a:ff:dd:f5:e6:1b:f5:21:72:0a:49:b9:c6:0d:82:
da:82:74:1b:b8:2a:30:48:aa:46:50:27:e6:14:3c:
b3:6b:75:c2:f5:13:1c:c4:9a:ad:bb:b0:91:a4:24:
67:9c:6f:0a:04:ef:b3:73:13:24:fc:04:3b:5d:db:
5a:29:91:11:30:b9:48:a0:00:e7:d4:d9:cf:4d:0d:
c6:78:72:1e:6c:2f:78:f1:44:8d:9f:89:30:dc:53:
d4:45:0f:31:6f:18:45:83:35:08:7c:b4:47:60:a8:
86:40:ff:db:75:2b:da:32:69:5d:22:81:88:64:2a:
e7:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:18:10:EA:9A:BC:7C:C4:5D:07:F9:71:95:7F:F3:2E:97:F1:67:0F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/3F694DE0569411F1AB32DFEBCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.62.0/24
Signature Algorithm: sha256WithRSAEncryption
79:e5:cb:fb:22:95:3d:60:b3:f3:19:e8:20:85:63:84:22:a5:
5e:7c:bb:92:a0:48:f4:c8:e6:7f:7c:a4:06:bf:3a:fd:3e:2f:
cd:64:e8:12:c5:2d:ef:e7:93:ed:3a:aa:d8:59:21:66:8f:5d:
70:64:35:8c:c5:b2:37:6b:2e:5e:fe:18:b9:43:ef:74:96:64:
2f:bf:91:ef:29:52:86:a8:5d:ee:5b:39:b9:cd:ee:9f:3a:d7:
42:e7:a8:15:b9:1c:96:bc:eb:42:69:b7:56:9f:6a:da:b6:1a:
98:bb:90:85:42:f9:28:e8:f0:f5:46:e4:81:78:6f:e2:c2:cf:
c3:d3:c3:60:0b:bd:eb:93:6b:09:ce:28:14:a0:b4:41:f9:cb:
fb:47:a5:db:83:91:05:25:13:47:93:d0:c2:70:31:ac:71:af:
14:8e:16:6f:bf:2d:33:1c:ea:7b:ce:5e:e5:16:e2:72:e5:2f:
53:ec:8d:cb:e1:5e:c7:65:ff:4f:87:01:3b:7f:7d:20:50:13:
8d:db:3a:23:bc:0a:d1:c9:60:f0:31:7e:76:92:01:12:c1:a1:
57:66:43:74:44:62:2f:dc:f2:fe:c1:94:bd:46:23:16:29:91:
48:b5:98:6b:e7:60:42:da:c8:76:5a:b6:ed:ad:79:45:77:a0:
0e:e0:0b:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:14:15 2026 by rpki-client