Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7D095FFA569411F182663EECCE1D38B0.roa
File: 7D095FFA569411F182663EECCE1D38B0.roa (raw, json)
Hash identifier: z1Zn/r/arPuCbF5JrRqdy2yIQ5OKL/9ZYz3GtYftktE=
Subject key identifier: 41:52:27:2D:9D:3C:40:F6:DF:90:82:5A:03:51:D1:55:42:C0:8F:DB
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B883
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7D095FFA569411F182663EECCE1D38B0.roa
Signing time: Sat 23 May 2026 10:45:18 +0000
ROA not before: Sat 23 May 2026 10:45:13 +0000
ROA not after: Tue 16 Jun 2026 10:45:13 +0000
asID: 138648
IP address blocks: 156.247.62.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112771 (0x1b883)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 23 10:45:13 2026 GMT
Not After : Jun 16 10:45:13 2026 GMT
Subject: CN=6a11853e-26d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:87:5e:91:af:d5:c7:7e:f9:1e:28:36:da:a2:
0d:3c:e1:92:b7:e7:cb:47:6c:92:ea:7a:67:dc:7f:
74:45:83:c2:9b:3b:1b:77:92:c9:f7:68:01:42:54:
79:2c:5f:ae:fb:ef:75:c9:90:dc:99:e4:bb:14:1b:
e6:0b:23:5d:af:63:d5:c3:e6:f1:72:2d:72:73:0a:
e2:af:50:8c:a0:a9:25:ab:fd:70:5d:b2:19:0a:4e:
86:c1:8a:31:08:22:96:e7:db:a7:17:ec:11:32:12:
29:55:1c:14:0d:51:97:22:d8:03:ed:64:5d:2e:f7:
f9:a3:59:4f:af:e7:94:4f:ec:f2:ed:e8:22:36:41:
5f:b3:98:d0:a5:86:c8:4d:2b:ef:17:cb:c8:81:d5:
49:54:ee:0e:71:43:e7:c2:9d:17:2c:a4:ef:d1:0c:
81:a3:b6:27:fd:cd:be:28:32:73:9e:17:48:fe:1c:
3d:e4:d6:c7:c4:92:31:40:30:a7:37:a5:c4:4d:0a:
0f:e5:c5:ba:a3:ab:cb:22:f6:28:bc:53:1e:cd:b6:
39:04:68:b2:d1:48:32:ef:ca:04:36:1a:32:99:45:
e4:58:01:e4:50:46:04:12:e0:57:1c:e0:3a:04:2c:
dc:78:74:24:78:b4:5e:2c:15:ee:28:02:8d:a5:8f:
fa:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:52:27:2D:9D:3C:40:F6:DF:90:82:5A:03:51:D1:55:42:C0:8F:DB
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7D095FFA569411F182663EECCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.62.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:c9:7f:0e:4f:76:9f:88:76:8d:98:4d:5a:c0:f8:05:b5:db:
58:e5:a3:cb:31:83:ba:1e:62:4b:ac:c2:ae:ea:f5:f6:b7:80:
f1:b1:d8:e6:a8:43:8f:b8:ec:a0:25:10:51:b1:1a:7f:84:20:
6c:00:0c:cd:64:7e:b1:47:ac:82:51:1b:bb:22:75:69:89:77:
b6:38:68:aa:b3:cc:51:cf:c4:6b:c6:da:c7:e9:e5:53:85:21:
f8:2d:fa:13:35:fc:6a:55:28:28:c8:1f:46:f6:cb:0d:10:15:
74:57:72:95:b7:19:9c:9f:f9:60:8e:e1:8f:c9:57:9c:51:6a:
6c:25:c0:2f:a2:e6:db:ac:2c:a3:48:be:2b:3a:83:3a:06:98:
e5:76:ab:68:d1:4f:4c:43:74:33:c7:80:e0:38:ce:fb:8c:17:
0e:49:c8:2d:e4:41:4d:03:75:be:1d:83:88:7b:0e:74:db:75:
50:94:c2:49:1a:ed:33:53:af:30:0a:93:70:68:c2:7f:9a:f7:
95:1e:29:8c:32:b5:7d:af:fe:8d:cc:f5:8a:a9:59:e6:3b:af:
81:28:c2:09:66:2a:4a:d5:35:bd:e3:06:d3:f3:8d:18:0d:e6:
03:e3:e9:37:9a:bd:f6:a0:6e:de:cd:fb:d8:c8:8b:6c:f1:e9:
37:1b:0e:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:07:13 2026 by rpki-client