Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A038FC1069AE11F1B833B2FCCE1D38B0.roa
File: A038FC1069AE11F1B833B2FCCE1D38B0.roa (raw, json)
Hash identifier: ysKGJfMNW61ciFxzZdko1nUmI+nsGg2Tm8mr1NqpzKg=
Subject key identifier: 42:22:F3:06:12:31:7D:C6:31:7E:32:2C:9F:93:67:CB:92:DF:89:70
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01BE55
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A038FC1069AE11F1B833B2FCCE1D38B0.roa
Signing time: Tue 16 Jun 2026 18:10:16 +0000
ROA not before: Tue 16 Jun 2026 18:10:11 +0000
ROA not after: Wed 22 Jul 2026 18:10:11 +0000
asID: 401701
IP address blocks: 156.233.224.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 22 Jun 2026 00:26:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114261 (0x1be55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 16 18:10:11 2026 GMT
Not After : Jul 22 18:10:11 2026 GMT
Subject: CN=6a319188-2829
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:a6:a0:5f:30:1f:ae:69:03:26:71:24:83:85:
7b:7e:7c:42:50:91:1d:7b:98:62:31:9e:42:a0:c4:
63:e4:3a:ee:c9:63:21:28:65:36:18:d5:46:46:de:
bd:1b:a7:f2:dc:e1:bc:6d:fe:6f:eb:1b:a0:77:c9:
86:2b:d5:bb:d9:33:97:1f:13:06:f3:c8:50:56:14:
0c:ad:11:0a:b2:a4:8a:55:20:57:f3:58:f7:85:cb:
29:6e:4e:31:ef:93:2b:40:69:a7:8f:3d:67:31:76:
1d:40:f5:7a:41:ae:ef:e4:87:2c:55:e7:98:48:0f:
1b:70:57:32:20:35:61:59:b3:b6:1b:69:9c:16:a7:
2d:f3:e2:dd:12:71:83:23:11:fa:71:50:7c:0c:80:
96:90:a5:be:61:62:b3:52:92:14:ed:b8:11:e8:b0:
4e:0e:96:ab:40:4e:72:d2:35:62:86:af:8a:fc:23:
12:80:6b:32:ca:2a:1d:1a:c6:a3:95:93:ea:30:ea:
86:37:d8:77:66:ed:b8:8a:bf:5f:f8:d7:f4:b3:f4:
bd:10:0f:ef:65:48:61:ce:a5:bb:0f:5e:a0:e3:90:
02:75:dc:e7:14:45:8e:83:c5:bf:1a:d6:ea:25:45:
70:e8:b5:0e:c2:1b:82:82:e8:f4:64:7a:02:8b:c5:
50:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:22:F3:06:12:31:7D:C6:31:7E:32:2C:9F:93:67:CB:92:DF:89:70
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/A038FC1069AE11F1B833B2FCCE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.224.0/20
Signature Algorithm: sha256WithRSAEncryption
b5:49:90:63:f3:a8:4d:08:2e:34:a6:15:8f:47:f8:b2:5c:eb:
8f:54:7c:3b:66:78:2a:35:35:2a:a0:b3:12:74:d3:dc:b0:77:
f2:7d:09:5f:be:1d:9a:c3:e0:25:50:2b:f0:a6:fd:21:6f:4b:
50:5d:ae:10:d1:c6:7f:7a:fd:ad:15:40:57:e0:f2:7d:45:22:
04:33:00:11:08:39:59:ad:ad:26:ef:c3:99:bc:60:9e:f2:e3:
80:0c:35:83:81:66:9d:9c:9e:fd:99:e9:bf:22:b9:5c:c3:d0:
eb:0d:30:79:95:c0:ad:21:b7:20:da:61:a3:bf:87:51:ef:7d:
d7:bd:58:b4:0d:9d:7a:76:a0:3d:f8:bf:d9:b7:b3:71:b5:5d:
15:0b:0a:61:ac:17:07:c6:5b:11:e4:4c:ab:32:e4:91:17:f3:
5f:02:81:15:59:e6:d7:cd:0e:91:4b:85:2f:bc:aa:4a:61:48:
c8:67:53:1b:bb:56:8b:80:3e:40:66:c2:86:28:25:5d:37:22:
c1:7f:3d:34:96:fb:62:b8:33:9a:e7:36:af:2c:73:d3:9b:96:
26:f6:ec:a3:c2:6d:25:95:d5:04:c5:1f:15:8c:54:c7:b6:e2:
31:c0:04:6c:92:50:5f:c8:ef:2c:0d:cb:8d:5d:8d:cb:35:d6:
87:80:d1:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 20 14:57:13 2026 by rpki-client