Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9F3C84AC507811F1A9AC86ACCE1D38B0.roa
File: 9F3C84AC507811F1A9AC86ACCE1D38B0.roa (raw, json)
Hash identifier: gCb/iIgsywy7YGdJ9mI/FltNDLQmo7d/voMxaK1Pp0I=
Subject key identifier: 66:79:D4:07:54:BD:22:23:5B:5D:B1:37:13:F9:AA:90:DC:CD:0E:AF
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B4D2
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9F3C84AC507811F1A9AC86ACCE1D38B0.roa
Signing time: Fri 15 May 2026 16:10:43 +0000
ROA not before: Fri 15 May 2026 16:10:38 +0000
ROA not after: Mon 22 Jun 2026 16:10:38 +0000
asID: 401696
IP address blocks: 156.225.16.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111826 (0x1b4d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 15 16:10:38 2026 GMT
Not After : Jun 22 16:10:38 2026 GMT
Subject: CN=6a074582-8b39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:6b:2d:ad:d0:86:f6:6a:37:57:3e:0f:3b:c0:
e0:72:c6:45:d2:70:d0:ac:4a:54:7f:35:38:df:2c:
d2:6f:bb:eb:8a:eb:9d:e0:2b:c5:5c:fa:64:b8:89:
74:60:7e:41:00:33:91:ab:87:1b:e7:d9:c1:c4:64:
6a:88:a3:0f:26:51:2f:73:f4:e8:5e:18:fe:ae:46:
6f:55:26:3c:ce:ad:05:ea:40:79:f1:fa:90:4b:d1:
f3:3c:d4:20:cf:84:e0:79:4a:78:09:cc:83:a8:9d:
85:e5:23:85:b5:e5:5b:bd:fb:e9:1e:57:08:f5:fa:
c1:5e:8b:57:95:7c:ee:7d:8e:1a:49:ca:c7:b7:fd:
fe:8e:45:06:73:13:e4:a3:99:e6:8e:0b:af:24:d8:
1d:4a:87:d6:75:e0:79:95:b3:27:31:44:f8:0d:0e:
75:b3:1f:4c:4c:6e:05:38:00:7c:41:33:c0:fa:41:
e6:69:32:d8:e3:cc:c4:f4:ce:01:bc:a7:2a:62:8f:
21:d4:36:96:1b:16:10:63:38:d2:54:32:aa:e3:1c:
6a:68:e6:b5:5e:63:59:5f:31:c8:2b:1d:91:f4:e1:
c8:00:dd:1f:a8:16:68:18:21:c8:3f:1d:3b:95:10:
d5:bf:61:f4:41:21:e5:09:2f:08:59:c1:0a:b8:f8:
52:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:79:D4:07:54:BD:22:23:5B:5D:B1:37:13:F9:AA:90:DC:CD:0E:AF
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/9F3C84AC507811F1A9AC86ACCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.16.0/20
Signature Algorithm: sha256WithRSAEncryption
20:df:7e:e2:fb:67:57:aa:b3:94:03:3d:cd:bb:a1:d8:9f:14:
6a:94:6e:d4:a5:8e:78:e7:63:0e:22:fe:51:48:e7:21:ef:41:
2c:05:53:80:2c:1d:c9:d7:e0:69:f9:ee:97:fa:95:57:46:50:
03:66:09:a7:25:67:72:40:98:9a:d3:e7:90:40:03:2f:00:08:
a7:59:4f:18:67:fa:ab:10:5b:58:4d:f1:f6:ca:fe:47:91:3f:
1c:01:90:b5:60:f9:4f:87:b1:90:6b:17:59:0d:f4:c4:55:52:
72:55:91:ed:32:fb:cb:6a:65:72:89:34:77:ad:d6:05:93:2f:
f9:4c:70:b2:80:0f:26:e7:26:4e:15:ae:01:e8:de:4a:5d:41:
57:a2:e0:09:8d:f1:88:e6:61:d4:35:53:bb:e4:9b:4d:0e:e9:
54:26:f7:f2:c9:2b:06:b4:b1:b9:f6:cc:4d:7c:08:9d:dd:c7:
44:e3:06:69:12:82:c6:4f:6b:92:f8:3e:d4:1f:65:d3:5e:49:
dc:cc:12:d2:14:56:f4:d0:ba:74:7f:5e:a3:d5:8b:54:97:1a:
98:4b:47:70:66:cd:bc:55:33:d8:ac:a2:4b:1e:f8:a6:bf:2d:
10:8c:21:6d:7f:57:c3:69:bc:c0:00:f4:20:08:d7:97:b5:11:
0d:b4:95:f4
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDAbTSMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjYwNTE1MTYxMDM4WhcNMjYwNjIyMTYxMDM4WjAYMRYw
FAYDVQQDEw02YTA3NDU4Mi04YjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA3mstrdCG9mo3Vz4PO8DgcsZF0nDQrEpUfzU43yzSb7vriuud4CvFXPpk
uIl0YH5BADORq4cb59nBxGRqiKMPJlEvc/ToXhj+rkZvVSY8zq0F6kB58fqQS9Hz
PNQgz4TgeUp4CcyDqJ2F5SOFteVbvfvpHlcI9frBXotXlXzufY4aScrHt/3+jkUG
cxPko5nmjguvJNgdSofWdeB5lbMnMUT4DQ51sx9MTG4FOAB8QTPA+kHmaTLY48zE
9M4BvKcqYo8h1DaWGxYQYzjSVDKq4xxqaOa1XmNZXzHIKx2R9OHIAN0fqBZoGCHI
Px07lRDVv2H0QSHlCS8IWcEKuPhSlQIDAQABo4ICojCCAp4wHQYDVR0OBBYEFGZ5
1AdUvSIjW12xNxP5qpDczQ6vMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC85RjNDODRBQzUwNzgxMUYxQTlBQzg2QUNDRTFEMzhCMC5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEnOEQMA0GCSqGSIb3DQEBCwUA
A4IBAQAg337i+2dXqrOUAz3Nu6HYnxRqlG7UpY5452MOIv5RSOch70EsBVOALB3J
1+Bp+e6X+pVXRlADZgmnJWdyQJia0+eQQAMvAAinWU8YZ/qrEFtYTfH2yv5HkT8c
AZC1YPlPh7GQaxdZDfTEVVJyVZHtMvvLamVyiTR3rdYFky/5THCygA8m5yZOFa4B
6N5KXUFXouAJjfGI5mHUNVO75JtNDulUJvfyySsGtLG59sxNfAid3cdE4wZpEoLG
T2uS+D7UH2XTXknczBLSFFb00Lp0f16j1YtUlxqYS0dwZs28VTPYrKJLHvimvy0Q
jCFtf1fDabzAAPQgCNeXtRENtJX0
-----END CERTIFICATE-----
Generated at Tue Jun 2 21:06:50 2026 by rpki-client