Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6CC74538334611F194418CB8CE1D38B0.roa
File: 6CC74538334611F194418CB8CE1D38B0.roa (raw, json)
Hash identifier: 4vAWeO0Q0U1z6w5wYvvtbkXnbvJOXn9C0EnY2DyIy+c=
Subject key identifier: E6:C1:7D:A8:1D:10:2B:A5:CA:B4:F9:5E:A6:CA:DD:0E:7E:5E:F2:1D
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01AB0D
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6CC74538334611F194418CB8CE1D38B0.roa
Signing time: Wed 08 Apr 2026 12:28:19 +0000
ROA not before: Wed 08 Apr 2026 12:28:14 +0000
ROA not after: Fri 08 May 2026 12:28:14 +0000
asID: 24435
IP address blocks: 156.238.82.0/24 maxlen: 24
156.238.83.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 Apr 2026 00:26:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109325 (0x1ab0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 8 12:28:14 2026 GMT
Not After : May 8 12:28:14 2026 GMT
Subject: CN=69d649e3-dc75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:41:80:c3:13:36:6e:d2:01:e2:8c:3a:23:b5:
e6:4d:4b:d8:7e:3c:af:5d:98:1d:a0:0d:5d:33:44:
ad:c5:70:af:d0:9f:1f:15:1c:d3:c1:de:cd:fc:9f:
7c:97:35:ad:18:d9:46:54:69:c8:90:7c:f6:e2:3e:
0e:1c:31:5e:4b:f9:a4:6f:22:e9:16:c0:59:b2:64:
55:f3:01:9c:62:ff:b8:5f:04:49:43:e2:6a:02:cb:
92:88:c2:1d:f9:3b:af:da:c4:5c:f5:44:fa:6e:de:
3b:ac:ce:8a:e6:7f:8e:f2:58:d8:3e:19:dd:04:c5:
ed:77:5d:84:cf:df:c2:40:8d:ba:3d:d8:76:68:fd:
1e:57:d0:1c:43:88:f0:66:21:dd:30:96:b9:2f:46:
60:07:f3:e4:02:a9:dc:f1:58:a5:27:63:bd:af:1b:
0f:d1:cb:e8:5c:73:a4:41:7c:d4:41:26:25:ad:14:
51:50:ce:f5:3a:21:86:cb:c5:16:4c:08:d5:46:7a:
90:b2:14:1b:de:c5:95:86:16:cc:54:b9:6d:69:00:
3b:f4:8b:32:3c:1f:16:bd:41:5e:62:5f:fe:0e:5f:
e4:29:c7:df:a6:21:df:e2:e0:bf:18:de:3e:97:af:
2c:24:ad:7b:09:9b:3f:20:c7:1f:06:4b:b5:49:2f:
2f:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:C1:7D:A8:1D:10:2B:A5:CA:B4:F9:5E:A6:CA:DD:0E:7E:5E:F2:1D
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6CC74538334611F194418CB8CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.82.0/23
Signature Algorithm: sha256WithRSAEncryption
52:04:97:6d:b8:e7:23:63:ec:e6:8c:0a:fe:24:07:e6:d9:0a:
8d:ea:52:26:e4:d3:7d:5c:81:99:36:56:04:1a:39:69:ba:af:
fc:12:fd:af:4c:b7:b8:60:a5:51:9f:22:49:8e:61:a6:2a:36:
8e:14:bd:66:74:97:52:70:d5:6d:3c:f4:4c:d3:22:4f:85:fc:
21:93:02:b3:9d:92:56:bc:fe:9f:36:75:c8:b8:c5:b2:42:84:
7f:17:3c:cc:2a:b5:b1:75:35:0e:7a:e4:33:24:3f:bf:1f:5d:
73:92:0d:cc:a0:82:d0:dd:b7:73:26:c1:a8:6f:32:1c:1d:98:
e1:1c:2d:f0:d5:37:88:cd:92:5a:5d:75:59:13:7f:f5:2c:95:
3f:70:f4:7d:fb:65:83:5b:ff:1c:7b:8d:01:f6:44:74:f0:50:
c4:93:9c:a2:ba:78:cb:1d:6f:d6:5a:6c:46:65:74:0b:13:9e:
b5:b6:d0:7d:73:f4:90:68:a1:a1:30:76:83:f8:08:95:3c:2c:
88:53:14:dc:5c:f3:9e:7c:6f:2d:2a:15:0a:2e:5f:66:4f:fc:
01:3d:9a:79:cb:a7:01:a0:df:8e:5d:ab:78:7e:97:6f:de:aa:
26:53:5e:3f:ca:12:c6:00:3f:32:4f:9f:b7:2b:a6:b1:a1:bb:
01:bd:75:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 14:30:32 2026 by rpki-client