Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/67F2FCAC510311F199FE7201CF1D38B0.roa
File: 67F2FCAC510311F199FE7201CF1D38B0.roa (raw, json)
Hash identifier: Sh3nl75JLvYsJ4PgoAe6xHoPRp1ZgolCEspULpby3HQ=
Subject key identifier: D5:DA:92:01:CE:2F:C3:1F:05:1D:8E:C2:45:C1:74:44:ED:0A:4F:F3
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B509
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/67F2FCAC510311F199FE7201CF1D38B0.roa
Signing time: Sat 16 May 2026 08:44:10 +0000
ROA not before: Sat 16 May 2026 08:44:05 +0000
ROA not after: Tue 23 Jun 2026 08:44:05 +0000
asID: 138648
IP address blocks: 156.247.62.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111881 (0x1b509)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 16 08:44:05 2026 GMT
Not After : Jun 23 08:44:05 2026 GMT
Subject: CN=6a082e5a-af7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:78:4f:88:1f:2d:a8:42:64:31:2e:04:64:e8:
bb:f2:72:b7:4f:22:b0:f6:88:38:c3:fc:c9:99:ae:
2f:f1:3a:64:f2:84:42:49:63:67:08:63:a3:ec:c6:
fb:b1:2e:bc:51:08:1b:0e:6f:40:15:17:72:f8:ea:
e4:a2:a1:2b:0a:6d:7f:9a:2c:1f:e5:ca:0d:b3:95:
4e:b0:1a:12:d4:a7:d9:2e:cd:39:75:9b:5b:87:4f:
ee:91:2c:2d:87:c9:8a:ff:40:04:6f:db:27:b1:ed:
b3:31:1f:4a:f4:ec:5f:10:e1:6e:f4:a2:80:64:13:
82:e1:68:1b:55:08:b6:bc:17:71:6f:74:9f:50:fe:
1d:f6:fd:ba:75:32:d0:bb:2d:07:31:0a:38:2b:af:
18:60:df:fc:7a:92:d0:2e:13:3f:43:40:22:cb:ab:
15:5c:06:f9:43:39:a1:21:c2:2d:93:65:12:a9:24:
59:be:f2:a8:dc:9c:fe:0c:7a:10:92:48:6e:5d:bb:
44:c6:f8:0e:ea:eb:2e:ea:8b:03:c7:9f:27:30:8f:
3b:12:88:bb:a5:dd:c1:fc:d1:ef:01:8e:ff:d3:4b:
b0:7c:25:8c:09:88:72:32:3b:bc:9b:99:c0:e8:c0:
ba:df:17:f4:44:9d:7d:30:87:aa:46:e9:86:26:6a:
0b:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:DA:92:01:CE:2F:C3:1F:05:1D:8E:C2:45:C1:74:44:ED:0A:4F:F3
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/67F2FCAC510311F199FE7201CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.62.0/24
Signature Algorithm: sha256WithRSAEncryption
64:85:ea:a9:3f:d9:0e:11:3a:8f:1e:35:c8:9e:11:78:21:90:
3a:9c:0a:9c:f5:c8:4d:e0:3a:d5:ac:f9:a1:33:82:18:7f:41:
48:44:c3:8e:ef:d1:f6:63:77:c1:dc:5b:1c:84:16:3b:5c:a5:
88:e8:7b:7a:79:9b:8d:d9:65:04:d8:99:c0:25:f3:3d:c0:0c:
9f:37:5d:14:58:ef:a2:5a:ee:b7:97:fd:c4:a0:38:d8:e0:79:
27:a1:a0:96:ab:89:94:d5:52:36:ab:17:f3:35:f4:7c:7d:0c:
92:aa:f5:f1:2a:a0:c4:8d:91:45:b5:01:3b:80:79:29:01:93:
26:6d:d0:f3:71:ca:e9:34:c9:62:c8:32:49:22:59:db:a3:7b:
51:b1:97:d3:e0:f2:46:65:9c:7f:ea:a0:04:dd:c1:53:8b:b6:
ac:ee:2c:dc:e8:9a:39:67:61:bc:df:49:28:92:b2:bc:30:aa:
bf:46:3b:ae:dd:a7:b1:60:6c:dc:7d:ac:ed:af:25:39:29:2a:
00:e3:1e:29:06:81:70:34:95:09:23:2f:c6:0c:66:5b:26:d0:
58:63:50:a4:12:a8:44:b9:b1:22:e5:f8:a1:a4:ff:45:40:08:
46:da:79:89:6e:55:3b:4e:42:50:c0:54:80:d3:cd:1c:a3:34:
08:d1:9d:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:14:07 2026 by rpki-client