Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6FB18A7450FB11F1A9AA10D1CE1D38B0.roa
File: 6FB18A7450FB11F1A9AA10D1CE1D38B0.roa (raw, json)
Hash identifier: FxWjRX/KzKSbI/SekdepVYMA4KVJMgQbUAL4h7FF+ls=
Subject key identifier: F6:25:8A:5F:3A:D2:00:10:3F:D4:25:8E:BB:93:6B:79:B7:50:00:FD
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B4F5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6FB18A7450FB11F1A9AA10D1CE1D38B0.roa
Signing time: Sat 16 May 2026 07:47:07 +0000
ROA not before: Sat 16 May 2026 07:47:02 +0000
ROA not after: Sat 20 Jun 2026 07:47:02 +0000
asID: 55020
IP address blocks: 156.254.0.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111861 (0x1b4f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 16 07:47:02 2026 GMT
Not After : Jun 20 07:47:02 2026 GMT
Subject: CN=6a0820fb-a42b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:dd:bd:19:9e:69:31:22:12:57:e3:f8:2f:64:
fc:89:20:ad:83:5a:93:13:24:2f:d9:2b:c6:da:17:
2d:69:e7:7c:67:3f:a4:7c:a8:da:6c:18:32:30:97:
45:0b:32:28:33:fd:0a:23:4c:e1:88:1f:83:d1:16:
73:d2:ae:b6:3f:f3:6a:91:14:25:8c:f1:4e:9e:f5:
f2:5b:0a:d4:ca:2d:27:6c:e2:e0:a7:88:d2:6d:ae:
98:e5:65:4c:9b:92:88:88:e7:a0:9a:c7:e6:08:d3:
24:20:ff:de:c3:64:c9:f1:96:23:d8:a8:58:cf:e3:
fc:c7:98:d0:c5:52:e9:3e:69:a3:93:55:66:1a:66:
63:93:54:43:6e:06:f0:79:50:da:ec:5d:7e:8d:bd:
18:16:96:11:f5:f2:ca:d8:54:59:45:ba:24:77:38:
78:a8:a2:9e:23:c3:04:64:1d:2b:3c:46:c6:6a:21:
41:5a:e6:c9:32:49:00:e5:ae:21:e3:92:25:ff:69:
cb:07:97:e5:75:4f:29:ed:69:1d:ea:84:b6:0d:f7:
fe:c2:3c:13:af:45:aa:e6:89:25:03:64:80:31:09:
40:a2:54:5c:1c:b7:13:ea:6e:9b:c8:52:d2:52:04:
62:0c:c7:7b:e5:a5:66:64:d8:d3:4c:85:81:6f:63:
08:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:25:8A:5F:3A:D2:00:10:3F:D4:25:8E:BB:93:6B:79:B7:50:00:FD
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6FB18A7450FB11F1A9AA10D1CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.254.0.0/19
Signature Algorithm: sha256WithRSAEncryption
a4:5b:a6:b4:e9:ec:ec:01:91:f4:8d:d1:a4:ac:28:43:6d:1e:
f1:85:4e:e9:43:f8:32:a0:45:43:7c:5d:e6:01:9f:08:a0:ac:
0a:a5:e4:28:18:1b:63:c6:99:56:72:ab:0b:4f:ac:b7:fa:fc:
31:fa:94:dd:26:6e:cf:0e:62:18:c8:15:d1:3c:5d:a9:57:b5:
6a:d6:57:9a:d7:a4:6f:58:7f:f2:45:4b:9a:63:23:d2:ce:71:
ec:ce:db:1c:01:75:3f:a1:73:df:bc:f0:af:9d:9f:e7:f1:72:
f8:76:33:37:f4:6c:19:2f:fc:36:e8:0e:4d:90:1a:b3:66:27:
a3:4b:9a:0b:b7:28:8d:02:ee:5a:e0:70:d5:a5:4b:a9:35:46:
38:e7:2e:30:42:5c:7d:39:81:17:17:b2:8d:bd:5c:e1:c1:d1:
b5:18:da:e6:78:a1:5d:63:d5:53:87:fa:5a:c9:0f:01:c6:63:
04:c6:4f:07:45:cf:43:22:49:aa:cb:07:e7:21:5c:74:dd:af:
40:e2:65:52:6d:72:a8:e1:6e:0d:2e:72:13:0f:7f:68:49:4f:
fb:80:df:71:10:db:fe:55:c9:70:86:ea:21:fe:de:6a:9d:80:
b7:27:ca:e6:f8:59:5c:e8:f2:3c:dd:05:a3:c0:65:84:3d:4e:
ab:ea:b9:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:07:31 2026 by rpki-client