Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/52E6DAF650FC11F19DDDC3D8CE1D38B0.roa
File: 52E6DAF650FC11F19DDDC3D8CE1D38B0.roa (raw, json)
Hash identifier: oplK5QoDFR7vgq3hI5d+MZuzkDA6L0CcWNFqftKjFwU=
Subject key identifier: 27:E4:2D:19:FD:FE:73:E3:7D:8C:F2:CE:7C:04:8F:76:BB:2D:CD:9A
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B4F7
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/52E6DAF650FC11F19DDDC3D8CE1D38B0.roa
Signing time: Sat 16 May 2026 07:53:28 +0000
ROA not before: Sat 16 May 2026 07:53:23 +0000
ROA not after: Sat 20 Jun 2026 07:53:23 +0000
asID: 400619
IP address blocks: 156.254.0.0/19 maxlen: 24
156.254.0.0/24 maxlen: 24
156.254.1.0/24 maxlen: 24
156.254.2.0/24 maxlen: 24
156.254.3.0/24 maxlen: 24
156.254.4.0/24 maxlen: 24
156.254.5.0/24 maxlen: 24
156.254.6.0/24 maxlen: 24
156.254.7.0/24 maxlen: 24
156.254.22.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111863 (0x1b4f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 16 07:53:23 2026 GMT
Not After : Jun 20 07:53:23 2026 GMT
Subject: CN=6a082278-5f25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d0:39:d7:21:5e:7a:a6:0e:8b:14:74:f6:80:
73:c2:36:5f:a6:a9:d7:e2:22:8b:cf:9d:48:ac:81:
2f:d1:5b:c8:a2:07:8a:f6:86:d1:61:88:dd:26:75:
f6:a4:e7:2f:5f:73:4d:d4:5e:8f:8d:e9:cd:3b:49:
de:89:2b:8c:29:74:f2:c9:f3:a5:73:89:ee:cb:ae:
00:45:67:c4:34:36:c6:d9:fd:cd:e8:1d:21:d2:f5:
e0:e6:44:67:53:2f:9e:95:e7:73:cf:4b:4e:94:6b:
d5:61:e0:f2:1e:67:13:24:80:69:69:0e:95:20:b9:
0f:48:07:7b:89:d8:6e:07:05:58:43:7c:11:56:03:
09:0a:2f:9a:69:48:4f:e8:61:f2:14:38:af:dc:29:
21:7c:5e:10:d6:3b:ac:ca:cd:1b:53:67:4d:95:ef:
41:01:7f:e9:ae:ac:ed:66:87:79:e3:d7:48:cb:11:
0d:15:e5:d7:a6:5e:b5:8f:40:1a:52:c4:20:77:a8:
03:48:08:5a:be:0c:c9:84:70:e0:67:48:d7:4f:74:
18:a6:d4:65:dc:d8:4b:e9:cb:6f:61:4b:67:e5:21:
be:11:e5:09:a4:c2:15:ad:52:70:64:e3:ee:3b:c0:
ed:80:59:1e:71:a0:3e:6b:b1:14:3f:be:a2:40:70:
43:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:E4:2D:19:FD:FE:73:E3:7D:8C:F2:CE:7C:04:8F:76:BB:2D:CD:9A
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/52E6DAF650FC11F19DDDC3D8CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.254.0.0/19
Signature Algorithm: sha256WithRSAEncryption
ba:48:6f:b0:a0:dd:dd:c3:38:a9:8c:df:49:48:10:72:94:34:
21:3a:e6:c1:8a:3c:7d:03:d2:67:48:c4:d4:e0:e7:4b:e8:30:
77:90:a9:4c:d8:d1:a3:74:4d:c7:af:2f:d3:4d:6d:e6:a3:29:
be:4f:e0:61:0d:c1:c3:6a:9b:b1:5b:d0:c2:50:92:04:f5:47:
9e:1d:c5:c6:68:9e:37:61:91:cf:23:5a:f1:8e:2c:9a:62:b3:
3e:58:eb:5e:92:bd:15:73:c8:96:25:b4:8b:9e:6b:10:fa:26:
51:22:3f:be:7b:55:64:49:76:31:71:e8:3e:f1:db:56:d5:fa:
1b:0e:e0:f9:82:27:dd:5c:cc:84:06:bf:f8:54:0c:c9:c3:8f:
a3:6e:89:f2:6f:a1:b7:89:39:df:ae:79:b5:96:1a:a5:24:dc:
ab:23:59:be:e2:87:7c:47:2b:0d:18:81:9a:13:b1:d5:f3:84:
85:d9:9b:b9:c4:56:9e:ff:30:5b:19:17:13:be:f7:5c:3c:e3:
01:83:5d:1e:5c:d5:a0:ac:3b:45:ff:e9:df:c7:1b:41:d7:36:
9e:22:6b:2c:97:4b:6a:bf:a6:27:c3:ca:2a:5c:65:ad:4f:27:
52:63:20:c0:7f:e8:09:ff:0b:e7:ed:bf:54:15:f0:4f:e7:8f:
a6:de:11:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:14:08 2026 by rpki-client