Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CC4C7D1C454C11F1B9BEC2C1CE1D38B0.roa
File: CC4C7D1C454C11F1B9BEC2C1CE1D38B0.roa (raw, json)
Hash identifier: IvoEYGKMXf14GVJmBmZUBN2/yK4KBA+pPOizSlC1/c0=
Subject key identifier: 49:3F:B8:D2:2E:83:75:F7:13:FC:43:D9:71:D3:D3:BE:B5:F6:8F:60
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B073
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CC4C7D1C454C11F1B9BEC2C1CE1D38B0.roa
Signing time: Fri 01 May 2026 10:59:18 +0000
ROA not before: Fri 01 May 2026 10:59:13 +0000
ROA not after: Fri 05 Jun 2026 10:59:13 +0000
asID: 401701
IP address blocks: 156.238.224.0/19 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 08 May 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110707 (0x1b073)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 1 10:59:13 2026 GMT
Not After : Jun 5 10:59:13 2026 GMT
Subject: CN=69f48785-3bec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ed:47:eb:f2:61:60:39:5f:25:80:eb:c5:80:
9f:7c:cc:f7:f9:05:41:5d:83:94:3b:3d:9f:c8:1e:
20:77:a8:fc:09:04:9c:46:53:e7:50:e1:bb:40:d9:
a1:d4:c9:18:7f:22:22:23:b7:e0:b9:e7:cd:63:28:
4f:5c:02:94:6c:58:a3:b2:1b:a3:04:3f:db:40:7c:
fa:70:b7:ac:2a:03:a1:5a:a3:6c:2a:d4:86:bc:79:
bc:6a:be:3f:8a:41:e4:a8:fa:ff:d5:61:40:82:41:
c5:22:85:00:59:78:aa:10:82:76:5d:30:1d:70:1f:
bf:a0:81:87:83:b7:cf:59:fd:ac:1c:df:b1:f2:03:
26:24:ad:35:cd:6b:e3:4b:9a:b3:0d:13:ca:70:38:
a0:9a:12:d4:1d:7f:71:b5:eb:21:b1:8b:55:8a:fb:
d1:4c:a4:bc:98:2c:0c:1f:98:6b:cd:5b:88:4e:7c:
7c:4d:76:0e:c4:e3:18:bd:06:5d:5d:fd:cf:66:77:
06:ab:29:ba:5d:df:8a:65:67:c4:03:d1:2e:dc:62:
e2:d8:15:c4:df:bb:07:7e:cf:03:31:a5:57:b6:af:
87:3f:8b:fc:9e:90:4d:78:0c:03:4f:c2:8e:31:d5:
f1:c0:0d:1a:dd:5f:56:a1:c0:ff:84:55:b0:03:00:
bd:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:3F:B8:D2:2E:83:75:F7:13:FC:43:D9:71:D3:D3:BE:B5:F6:8F:60
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/CC4C7D1C454C11F1B9BEC2C1CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.238.224.0/19
Signature Algorithm: sha256WithRSAEncryption
17:8d:c2:2b:12:fe:00:f2:8b:55:2f:7c:fa:49:24:b0:1a:11:
f4:d1:5e:49:94:86:f6:da:28:61:0c:db:16:08:c2:25:70:6a:
34:48:88:ab:90:72:37:85:ec:57:bb:cb:a8:fb:76:86:ab:d2:
c1:b4:dd:b2:23:cc:a3:51:53:af:e4:02:71:25:13:15:82:0a:
8f:a7:d8:cc:44:cd:10:2b:7d:5f:13:3f:c7:68:c0:69:db:3f:
d3:42:b9:18:4a:54:fa:35:cb:46:1c:83:ab:e8:e0:40:f3:0a:
a8:94:b6:2b:1b:fd:57:ca:c0:d1:58:64:71:52:b8:97:83:70:
d7:74:05:84:98:5e:30:cf:03:bb:fe:be:85:9e:b8:37:4b:9d:
03:50:1e:9c:99:6d:5d:e3:77:4b:3d:db:6c:85:a4:74:51:ee:
64:e7:c5:ee:70:ae:a8:fd:36:0c:5d:78:28:e2:ce:44:4a:c3:
c8:8c:a1:df:f8:d0:6a:00:b8:05:8e:a0:4e:10:63:12:f9:6f:
f2:0d:cc:19:e4:d7:12:df:ab:eb:67:10:c0:03:99:7c:7a:86:
f3:f5:04:b3:a3:cf:9e:d2:46:bc:71:1a:9d:68:bf:49:60:23:
1e:26:ca:a9:8b:2f:81:71:52:f8:99:5a:64:89:be:4f:5a:84:
eb:94:0f:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 6 05:35:43 2026 by rpki-client