Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6B31F6682A9611F19EEA8F9EDAE4EC9C.roa
File: 6B31F6682A9611F19EEA8F9EDAE4EC9C.roa (raw, json)
Hash identifier: TKLXaWLX08EOMT+Mh4yBcsbDNBwDPJRKkHrP8wc6ed0=
Subject key identifier: 5E:58:E4:0A:95:B9:FB:58:E4:B6:AF:20:7A:57:96:E7:04:C0:E5:D6
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A7E7
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6B31F6682A9611F19EEA8F9EDAE4EC9C.roa
Signing time: Sat 28 Mar 2026 11:08:16 +0000
ROA not before: Sat 28 Mar 2026 11:08:11 +0000
ROA not after: Tue 05 May 2026 11:08:11 +0000
asID: 142032
IP address blocks: 156.238.224.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 Apr 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108519 (0x1a7e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 28 11:08:11 2026 GMT
Not After : May 5 11:08:11 2026 GMT
Subject: CN=69c7b6a0-92ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:dd:89:22:a8:df:29:a4:f2:ff:cc:c7:ef:6a:
e2:09:bb:04:fa:4b:fc:f0:8a:d7:66:dd:44:7f:02:
dd:7c:1a:b8:a9:be:27:a0:19:4d:19:e3:96:2b:c3:
fa:be:30:16:3c:7c:a8:ed:8e:a4:c9:c5:39:2a:43:
c4:23:37:42:db:ce:a9:42:9d:8d:d6:54:88:cb:47:
c9:b7:e1:73:93:87:0f:27:29:0d:82:e7:3d:22:51:
3a:77:09:ae:43:76:a7:94:43:9a:fd:d4:ae:0e:b5:
e5:f4:3b:26:29:98:b2:30:44:b4:a2:7c:a4:8d:92:
37:c4:8d:36:be:36:02:c2:d6:fd:c7:7d:d9:37:0b:
a0:ed:12:5b:04:81:aa:98:43:2b:09:04:a3:a5:33:
39:1f:1b:38:b5:af:e6:d0:49:e5:52:57:df:88:b1:
25:8c:13:71:f8:36:d4:05:e8:2f:00:86:88:67:b4:
31:11:93:cf:1e:60:d6:04:ab:30:f1:93:cb:c9:77:
97:81:ff:de:6e:ce:1e:ae:f0:e5:1d:e2:ea:f8:bb:
8f:5c:80:11:69:fe:2e:02:65:89:1a:cd:b3:7e:5c:
b1:38:a1:1f:8b:64:58:10:b5:d3:7d:32:68:84:63:
76:c9:25:48:aa:b2:f6:f2:1f:55:ad:a8:33:74:52:
a0:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:58:E4:0A:95:B9:FB:58:E4:B6:AF:20:7A:57:96:E7:04:C0:E5:D6
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6B31F6682A9611F19EEA8F9EDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.224.0/19
Signature Algorithm: sha256WithRSAEncryption
43:6e:c6:1b:ee:e4:c4:e6:5b:9f:e9:68:a6:4b:5f:33:d9:bd:
f3:4b:7e:ce:3b:07:e7:88:b6:1e:16:5f:35:4c:4f:b3:92:6f:
aa:32:ed:5d:1c:53:ed:e2:1e:b9:f5:a4:3c:b3:b5:5e:0d:23:
d7:a6:bc:93:d5:19:1d:65:50:55:85:8f:38:38:1e:1e:60:7a:
cd:4e:ce:45:62:41:64:dc:d2:d6:54:21:fc:10:59:04:74:b5:
e0:9b:4c:65:ef:14:32:95:df:01:0b:0b:c3:74:f7:18:77:da:
af:42:03:57:52:97:2d:95:66:4c:9c:0b:f6:10:c8:8c:03:b3:
72:5a:38:2c:a4:99:aa:02:3d:e5:b6:7f:72:c6:97:6d:b3:f2:
6c:8d:9d:37:d2:eb:66:9a:23:b0:51:d2:46:4a:0e:8d:2b:ea:
69:33:a8:86:1e:74:65:81:17:c9:57:e1:3d:6c:81:64:27:1f:
49:43:d6:cb:75:18:72:aa:69:63:7f:72:2b:54:14:45:38:00:
b0:44:c6:ee:3c:82:45:54:42:99:e2:cf:ab:de:e0:da:b2:77:
3b:dc:75:18:9e:b7:bd:f3:7a:27:9e:c2:28:0e:2d:e0:94:54:
19:dc:ab:20:47:fc:d2:a1:64:19:50:71:6e:27:63:ef:35:88:
3a:e7:4f:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 14:29:35 2026 by rpki-client