Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B14D97A4535611F185F0DAA2CE1D38B0.roa
File: B14D97A4535611F185F0DAA2CE1D38B0.roa (raw, json)
Hash identifier: t6Oh9jKuEPi9UCX88EwLYSN3Nc76Q11MeUfnEVm3ZuA=
Subject key identifier: D6:A9:A6:69:3F:64:70:F8:C2:09:AD:88:40:45:2C:7A:1D:CD:05:93
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B5B3
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B14D97A4535611F185F0DAA2CE1D38B0.roa
Signing time: Tue 19 May 2026 07:45:23 +0000
ROA not before: Tue 19 May 2026 07:45:19 +0000
ROA not after: Wed 19 Aug 2026 07:45:19 +0000
asID: 40065
IP address blocks: 156.224.16.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112051 (0x1b5b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 19 07:45:19 2026 GMT
Not After : Aug 19 07:45:19 2026 GMT
Subject: CN=6a0c1513-e148
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:2e:ba:68:60:06:a7:93:59:73:ca:8a:21:7c:
52:f1:9a:40:1a:1b:bb:9a:15:56:de:86:37:79:4f:
96:75:36:8c:ca:87:c8:47:6d:0a:74:b0:eb:f5:46:
8c:4b:98:ba:e1:5d:d2:5e:f0:e3:e7:06:9c:2e:61:
0c:05:72:0e:29:c2:6e:28:61:75:b9:9d:cf:86:ba:
3a:06:d3:0b:3b:e1:a9:d0:a1:05:57:e0:f2:b5:1c:
07:03:86:db:c8:fb:6a:ec:57:6f:40:72:0d:03:05:
a3:e8:a9:82:3b:e3:3d:48:b0:66:8e:d5:b6:14:a4:
8d:21:67:00:2f:96:89:e4:7c:26:c6:a6:fe:c1:25:
ec:1a:b1:5d:6e:ee:d6:f3:60:73:67:a0:87:b2:03:
c0:67:c7:92:95:4d:08:32:11:73:d4:a0:f6:ed:d4:
bb:fc:40:0d:a7:23:3c:9a:c0:61:b4:f5:a5:48:e1:
15:4e:c6:e6:ff:86:77:5f:8b:03:e2:3c:4e:60:a0:
dc:96:26:e3:c9:0d:07:37:04:ac:43:a1:b7:f7:09:
6b:d8:e2:3b:4b:34:37:fd:19:bb:00:74:d5:a2:de:
04:50:5a:c5:d3:68:e6:f6:5a:60:5b:cf:73:47:e5:
0c:aa:5b:39:1a:49:7c:2f:9e:58:de:35:6f:31:eb:
56:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:A9:A6:69:3F:64:70:F8:C2:09:AD:88:40:45:2C:7A:1D:CD:05:93
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B14D97A4535611F185F0DAA2CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.224.16.0/23
Signature Algorithm: sha256WithRSAEncryption
3c:18:72:d9:37:98:f0:64:10:99:ce:4f:51:ad:22:d1:b2:60:
b3:84:42:b1:53:07:9a:69:d8:6e:de:53:47:2c:13:20:ee:a0:
fe:3e:e5:77:e0:32:74:f8:6c:49:02:f7:51:aa:64:9e:40:0c:
d2:02:08:b2:d3:b5:11:63:72:bf:bb:14:c3:73:65:fe:2f:f0:
3a:3c:49:09:0d:b3:5e:23:fc:a2:60:5a:12:43:0e:d0:06:06:
19:02:12:90:b2:66:93:50:15:2c:99:47:86:95:96:d3:4b:71:
ed:dc:08:c9:96:8e:50:01:5b:9c:09:0d:83:85:b8:6f:9a:33:
d1:6b:74:e9:76:f7:68:8c:59:ba:4d:6e:24:4f:77:7c:e6:dc:
69:4c:cb:18:16:da:3d:66:d3:9f:4c:e2:1e:91:87:8f:d5:09:
10:ec:e1:ee:10:20:8d:f6:11:3d:c2:40:56:bc:86:2f:13:9d:
6e:6a:93:fd:b9:51:0c:92:cd:27:d5:59:a7:6d:0a:ee:ec:78:
a5:f0:fc:a1:75:ee:da:10:e3:6e:30:c5:41:5a:1d:6b:bd:d1:
88:ca:0d:8c:dc:ba:5b:53:3a:0e:e6:7f:a6:1b:0e:dd:32:60:
a5:8a:a5:ba:c6:73:07:9f:1a:0d:b8:b2:04:ad:ee:76:76:e9:
d5:b6:7a:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:07:11 2026 by rpki-client