Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4CBC7426535211F18FA38C08CF1D38B0.roa
File: 4CBC7426535211F18FA38C08CF1D38B0.roa (raw, json)
Hash identifier: X2Myk7IA+hlaUqDhKX4DBe7D2J9QRFqyA/qh9Qbtg8g=
Subject key identifier: 7F:09:F3:3D:DA:96:BB:1F:47:CE:C2:AB:6E:30:3F:3C:51:BB:29:CE
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B59E
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4CBC7426535211F18FA38C08CF1D38B0.roa
Signing time: Tue 19 May 2026 07:13:57 +0000
ROA not before: Tue 19 May 2026 07:13:52 +0000
ROA not after: Wed 19 Aug 2026 07:13:52 +0000
asID: 137951
IP address blocks: 156.224.32.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112030 (0x1b59e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 19 07:13:52 2026 GMT
Not After : Aug 19 07:13:52 2026 GMT
Subject: CN=6a0c0db5-efeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e7:da:b4:7f:fd:4e:9a:9a:00:8e:12:b5:9d:
29:17:09:4f:15:ae:19:84:61:e5:d5:73:ee:8c:ab:
5e:62:f9:2e:46:fa:9f:8a:3a:89:b5:3c:1a:a5:ed:
6d:a4:5a:71:b6:de:63:98:b4:ee:71:8b:a5:a7:3c:
26:35:5b:ef:0b:08:f8:c9:f0:5e:20:35:00:1a:ba:
5e:bc:e8:b8:3f:10:ed:f1:82:26:5e:f9:56:17:42:
07:12:1c:1c:25:77:96:72:09:88:12:6c:b3:13:33:
8a:e1:96:dd:dd:52:f2:81:e2:88:d9:09:58:98:12:
a0:75:58:b0:96:da:ab:d2:90:7c:36:22:a8:95:6e:
4e:51:df:c1:02:55:e4:54:5f:4c:5a:8c:90:eb:64:
76:c0:d3:e1:3c:b3:1c:0b:0c:b2:d3:09:f0:29:1b:
d0:36:8d:31:89:d8:c0:a8:e8:49:aa:06:99:23:33:
1e:dc:e1:7b:47:25:07:a0:22:fd:b8:75:e6:91:d1:
9c:ca:2c:2d:e3:65:ba:fa:6e:49:08:4a:1b:85:6b:
9e:e2:40:bb:a3:8b:39:1e:99:39:80:ca:6b:b7:1d:
7b:52:45:a9:24:82:70:f6:3c:1d:da:95:ac:5b:02:
f4:51:64:e0:aa:c4:d8:cd:bb:6c:54:6c:2b:ad:61:
06:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:09:F3:3D:DA:96:BB:1F:47:CE:C2:AB:6E:30:3F:3C:51:BB:29:CE
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/4CBC7426535211F18FA38C08CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.224.32.0/19
Signature Algorithm: sha256WithRSAEncryption
3f:01:dd:8b:a6:a8:98:e9:77:ab:96:16:b1:d8:13:28:15:1f:
6f:52:4c:fc:82:ae:09:01:b3:8f:1f:f6:fa:26:3d:25:b2:42:
00:e7:6d:e6:ba:c8:c6:d5:b3:f8:88:68:bd:9e:66:9c:0c:81:
e2:0b:2d:63:14:fa:d0:ef:a9:02:23:31:3d:ed:1d:d8:e1:2b:
7e:c3:49:89:98:6a:82:53:f5:6c:dd:bf:14:5e:9b:08:b2:6e:
28:d7:83:3f:60:28:c5:d2:54:54:c4:ed:34:42:8a:de:b4:06:
df:6a:c8:b0:2a:82:7d:3a:37:4d:38:7b:7c:b9:7c:88:95:8d:
9b:0e:63:d4:eb:cc:e0:74:af:de:4d:bd:f5:f8:d9:59:c9:a5:
a7:c9:67:e6:5e:bb:e8:09:e9:3d:d4:8b:a1:35:96:99:3a:a4:
07:83:ee:39:25:28:69:df:88:32:36:1b:78:3d:51:8f:b7:89:
e0:28:e6:f1:17:6c:59:e7:0c:ce:5b:b5:db:de:1f:09:33:cd:
c7:ae:8e:7a:27:02:82:47:88:05:18:f0:97:00:a0:18:a1:aa:
d7:e9:bf:0e:21:43:4c:af:6a:bb:83:4d:49:12:8e:ae:95:49:
66:b4:16:b5:3c:39:61:1a:88:3d:ad:b6:84:05:37:73:71:4d:
b1:30:9f:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:07:11 2026 by rpki-client