Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CBBBCADA554E11F18051441CCF1D38B0.roa
File: CBBBCADA554E11F18051441CCF1D38B0.roa (raw, json)
Hash identifier: I86FbgtabZ8bxvlk92o2DWJkCplImqKdtFLgRyV28io=
Subject key identifier: 19:40:73:B9:24:C3:E2:21:DE:49:32:B7:C8:46:E3:06:6C:89:00:7E
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B7AD
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CBBBCADA554E11F18051441CCF1D38B0.roa
Signing time: Thu 21 May 2026 19:53:54 +0000
ROA not before: Thu 21 May 2026 19:53:49 +0000
ROA not after: Sat 22 May 2027 19:53:49 +0000
asID: 150293
IP address blocks: 156.242.83.0/24 maxlen: 24
156.255.6.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112557 (0x1b7ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 21 19:53:49 2026 GMT
Not After : May 22 19:53:49 2027 GMT
Subject: CN=6a0f62d2-dc4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:c0:74:e6:b7:ea:21:dc:a7:35:41:c6:d9:de:
4c:8b:de:d8:a0:14:d3:2e:61:0c:c5:05:ed:0b:81:
04:9d:fb:0a:e5:98:58:4c:06:1f:d1:a7:43:5f:e2:
32:e4:94:7a:24:2d:c6:9c:d1:9c:af:e6:88:12:94:
13:b0:49:03:da:cb:d7:03:ae:17:0f:2f:99:b0:28:
52:b2:d7:e6:d2:9c:6b:58:dc:a7:ac:c3:e0:dd:9d:
da:0d:1d:48:bf:ff:4b:4d:c9:02:53:74:c9:67:53:
67:a7:24:a8:c0:29:02:2e:96:db:33:b9:d7:f4:ad:
5c:72:e8:c3:24:80:92:48:f8:1c:e8:a2:fa:0d:84:
70:28:31:fe:23:39:a9:5b:c8:d5:83:13:ff:60:51:
19:e4:77:fc:f0:f2:1b:b5:35:e3:bc:18:11:2b:8f:
72:98:ac:6f:32:f7:1b:ab:63:ba:55:35:a7:ee:19:
43:6c:b6:f4:3c:7c:3b:cc:1e:cd:75:34:0f:e5:12:
b0:32:05:fc:d2:60:e3:f9:f4:00:68:11:32:6e:92:
d4:27:d6:db:cc:51:86:ff:16:e2:91:a5:8b:56:25:
d9:da:b3:8c:c6:27:06:28:2b:1e:c3:1c:14:b8:5e:
99:1d:b9:51:31:1b:57:c6:8b:a3:d6:fb:11:27:94:
cd:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:40:73:B9:24:C3:E2:21:DE:49:32:B7:C8:46:E3:06:6C:89:00:7E
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CBBBCADA554E11F18051441CCF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.242.83.0/24
156.255.6.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:c2:66:79:eb:ea:e9:7a:0e:82:ea:73:e4:59:1c:e4:39:e2:
1f:22:b1:e8:4c:a4:d1:94:a5:e3:c9:ef:9e:56:63:26:47:85:
24:4d:16:b8:6d:07:de:34:6d:1b:ce:8f:00:a5:27:f9:f7:33:
f2:4c:09:35:53:1c:00:12:54:7e:8a:b8:a9:a8:62:31:4c:c0:
d0:bc:35:8a:29:17:ad:ca:36:e0:9c:46:65:5a:95:64:82:e7:
39:75:57:7a:cd:c8:8f:03:44:da:9a:a6:9f:35:30:9a:6b:21:
51:0b:b6:85:23:f2:12:a0:2c:a2:c4:d5:86:c4:43:0d:20:0c:
34:9f:74:06:78:98:64:7e:c7:bf:ad:ec:06:07:bd:6a:f9:2b:
dc:4b:d7:d0:14:fd:1b:61:bc:c5:6b:c3:95:cf:ce:06:ba:4b:
a9:77:a8:0b:08:56:0f:e3:d6:ac:ce:6a:6e:b7:a9:f3:80:9a:
40:19:c9:62:7a:4d:16:c0:58:7c:5f:d8:4f:c2:22:82:c1:94:
b3:d0:4d:65:e7:89:ca:06:15:5f:20:49:03:e3:c6:c7:0b:35:
86:ae:2c:2f:63:df:c8:58:b5:72:8d:6b:d1:cf:63:56:92:4f:
97:a8:61:45:f3:8a:21:31:07:ad:98:39:b6:1e:da:a9:3f:7f:
81:7a:f4:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:14:17 2026 by rpki-client