Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/79B9510A65CD11F1A63FC8E6CE1D38B0.roa
File: 79B9510A65CD11F1A63FC8E6CE1D38B0.roa (raw, json)
Hash identifier: R2SPldTpaE1s952XJTCigVLSrYYau5+ZLa7oAYO4TQI=
Subject key identifier: 43:21:CF:5C:BC:3F:B8:05:29:12:97:A3:AC:8C:4C:D3:1A:DF:6C:58
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01BCF5
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/79B9510A65CD11F1A63FC8E6CE1D38B0.roa
Signing time: Thu 11 Jun 2026 19:41:01 +0000
ROA not before: Thu 11 Jun 2026 19:40:56 +0000
ROA not after: Sat 20 Jun 2026 19:40:56 +0000
asID: 135097
IP address blocks: 156.254.128.0/17 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 13 Jun 2026 19:56:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113909 (0x1bcf5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 11 19:40:56 2026 GMT
Not After : Jun 20 19:40:56 2026 GMT
Subject: CN=6a2b0f4d-4799
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:b7:26:da:54:97:b7:b0:fa:f9:85:89:95:41:
60:ca:2f:c4:3c:60:6e:ae:64:c3:c2:fd:3e:b1:1e:
74:5c:95:b5:8c:7f:ee:7e:81:28:b1:9e:7f:92:62:
09:21:e2:2f:0a:56:1b:82:92:3f:64:0d:df:70:75:
7b:59:e9:bf:e3:10:e6:06:ae:7b:09:ee:51:d1:61:
8e:6a:1a:ee:42:97:36:49:3f:f1:df:6d:39:db:6c:
98:e5:59:37:07:f7:78:b3:71:be:3a:2a:ee:ee:42:
f9:12:53:87:9f:35:27:b5:57:df:93:09:5e:d0:d9:
85:9f:cb:e9:a3:4f:b4:4c:b7:3b:b2:a2:33:d8:dc:
25:d5:39:77:36:17:1a:35:92:5f:5e:9b:19:d9:83:
e0:23:a1:5e:f4:36:84:66:26:d4:a4:76:57:e4:8a:
ed:d4:f5:a7:6e:48:04:85:4a:d3:a3:c7:6b:d6:65:
ff:9e:19:11:55:34:bb:c9:dd:87:70:3b:08:e9:9e:
3d:11:96:40:dc:7a:ec:84:5c:d5:a5:96:32:aa:66:
f2:ae:fe:b2:76:66:23:dc:86:a1:b1:d5:57:28:6e:
c6:d5:db:21:58:49:b2:92:e3:59:28:ee:17:c3:67:
6f:5e:a0:8b:62:9e:5c:f0:18:6f:11:52:d8:06:51:
4f:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:21:CF:5C:BC:3F:B8:05:29:12:97:A3:AC:8C:4C:D3:1A:DF:6C:58
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/79B9510A65CD11F1A63FC8E6CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.254.128.0/17
Signature Algorithm: sha256WithRSAEncryption
95:0c:3b:39:18:8a:30:55:e6:91:a8:9a:34:5c:ed:78:cf:a9:
c7:45:16:d9:47:a2:3a:a1:82:f0:88:f7:05:3a:9a:b4:20:13:
2a:8d:da:4a:e7:bd:5a:c7:c7:39:93:9e:16:a5:af:3c:f6:86:
48:e9:a0:72:21:7a:05:86:2c:a0:d5:00:34:4e:28:83:80:b5:
3c:15:b8:1b:ee:24:7d:03:25:86:b8:f8:d6:ff:cd:4e:ab:33:
86:f5:bf:4a:e7:1f:03:b2:d1:90:1b:ee:62:45:70:37:87:57:
d1:10:f2:d6:98:90:2b:ab:ea:8d:8c:72:c3:25:52:27:e1:5e:
10:01:04:44:4e:e7:9f:a6:25:33:5a:61:20:78:25:94:92:59:
08:cd:34:7e:08:bf:fd:07:0c:df:f7:fa:83:a8:0b:f0:68:4e:
72:50:b8:72:c8:58:e8:c9:ed:c7:ca:3a:02:57:14:38:44:8b:
cc:f6:df:2c:72:76:52:7a:01:11:c7:65:80:e5:3e:0d:57:df:
fc:b2:7c:ec:25:3b:ef:62:a6:de:6f:0d:d1:ef:4f:fd:21:15:
dc:70:a4:e9:8f:b9:62:e1:34:a2:dd:34:f6:78:e9:ad:4b:70:
03:70:b9:ac:39:85:18:f6:05:44:23:71:49:64:23:39:a7:c6:
b2:15:22:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 02:41:11 2026 by rpki-client