Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/41E25C065A6D11F19BF155D3CE1D38B0.roa
File: 41E25C065A6D11F19BF155D3CE1D38B0.roa (raw, json)
Hash identifier: 7aqxmplyTIp91a3sRJyuIYvMlo0C4YOWVi17OhyWyqQ=
Subject key identifier: 1F:47:A0:D2:D9:9B:1F:AA:9A:46:C1:A7:D1:CC:88:4E:AE:80:4F:49
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01BA6F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/41E25C065A6D11F19BF155D3CE1D38B0.roa
Signing time: Thu 28 May 2026 08:14:33 +0000
ROA not before: Thu 28 May 2026 08:14:29 +0000
ROA not after: Sun 05 Jul 2026 08:14:29 +0000
asID: 138415
IP address blocks: 156.234.0.0/16 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113263 (0x1ba6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 28 08:14:29 2026 GMT
Not After : Jul 5 08:14:29 2026 GMT
Subject: CN=6a17f969-f369
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:bc:9c:06:08:0b:eb:ff:6e:6a:38:57:9e:02:
f4:8b:00:1c:71:ad:16:b2:da:61:6f:2e:9c:12:94:
65:a5:45:bd:7f:0e:d6:1d:98:cf:4c:e2:d4:74:e9:
db:67:c3:01:b1:f8:a2:7d:ed:33:cb:f2:b8:08:0c:
a6:76:73:bd:83:76:fc:b3:51:1e:38:2f:57:2f:11:
75:b2:e8:97:e5:33:f7:9c:1a:ac:c0:e3:a2:f4:de:
80:a2:c1:6d:16:91:60:c1:26:aa:99:e8:56:25:75:
b6:67:de:0a:97:f9:87:94:19:66:f6:83:93:e3:25:
65:cf:e3:91:49:d9:72:84:b1:b3:42:c0:df:f0:bb:
6e:e3:0a:6a:57:17:c1:76:09:10:03:42:5c:73:2a:
ff:41:9f:b8:ed:64:a9:f9:71:64:b3:2c:17:88:82:
5d:b6:f2:8b:67:79:d7:d7:dc:35:6d:28:15:8b:a9:
ca:3b:73:0d:81:80:71:3f:27:60:55:00:0c:3f:8f:
95:63:6b:c7:cb:6a:25:f4:14:92:4a:40:ae:02:38:
cc:a7:f2:0e:e3:89:68:f3:36:e5:ae:97:c6:2c:5f:
69:de:0c:dc:c9:da:3e:d4:a2:e2:a4:5e:b5:0b:0d:
34:da:42:03:de:f3:2b:08:dc:2b:b9:df:31:2c:47:
5a:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:47:A0:D2:D9:9B:1F:AA:9A:46:C1:A7:D1:CC:88:4E:AE:80:4F:49
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/41E25C065A6D11F19BF155D3CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.234.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a5:c4:09:5d:c8:02:6c:e7:19:04:76:f0:45:76:e9:53:fa:d7:
19:78:80:c0:3c:c1:b7:28:13:92:6b:6d:8b:4b:53:a5:08:96:
2b:d7:62:9c:10:6a:74:c0:31:c2:c7:c6:fa:58:ff:f6:c6:6b:
80:3a:3e:03:f6:73:b1:cc:f7:5d:9c:99:7c:79:32:96:f9:51:
e4:96:0d:78:ac:6e:2f:9c:38:e5:ee:4c:51:2f:a5:82:7e:4e:
86:9a:9d:60:00:a0:bb:e7:91:98:36:13:66:93:bc:2e:39:5b:
da:04:fe:c8:6c:90:10:57:79:4c:e6:8f:d4:50:2a:3f:13:19:
6e:d4:f0:dd:2a:ff:78:90:8f:93:5b:c5:cc:88:b3:d3:5c:4d:
b3:5a:72:bb:06:d6:67:0c:69:2e:3a:24:0d:a8:6f:38:51:00:
1c:c9:34:81:fa:5a:28:33:23:fa:09:31:fc:05:8b:71:3a:98:
01:48:a6:86:3a:0c:bc:43:ab:6f:4f:ed:39:03:29:37:20:78:
92:9f:7e:7e:48:91:d4:76:94:9a:fa:76:f2:88:db:9a:6a:21:
92:ac:e8:ab:17:e4:97:f5:30:78:7b:70:2b:a3:1a:80:4a:23:
66:5e:74:57:9a:ce:a0:c8:2e:a0:0b:3a:63:9b:4b:56:ef:8c:
49:9a:3d:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:29:01 2026 by rpki-client