Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EB874F50543711F19BD5F6FACE1D38B0.roa
File: EB874F50543711F19BD5F6FACE1D38B0.roa (raw, json)
Hash identifier: NswDXxbv2ZtbOR7+oIqikVD48UGM/cqyZHBoQAOGkks=
Subject key identifier: 34:B1:5D:61:55:30:77:98:F9:F0:15:9B:18:E9:95:AB:26:C0:EE:73
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01B62C
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EB874F50543711F19BD5F6FACE1D38B0.roa
Signing time: Wed 20 May 2026 10:37:38 +0000
ROA not before: Wed 20 May 2026 10:37:33 +0000
ROA not after: Tue 23 Jun 2026 10:37:33 +0000
asID: 13335
IP address blocks: 156.247.36.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 04 Jun 2026 00:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112172 (0x1b62c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: May 20 10:37:33 2026 GMT
Not After : Jun 23 10:37:33 2026 GMT
Subject: CN=6a0d8ef2-c021
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:7b:d2:bc:d6:74:ae:4d:79:15:6c:c8:cd:90:
ff:6e:cf:17:cd:cc:e2:d1:20:28:81:66:48:90:c1:
a6:b0:41:11:fc:d4:22:f9:28:28:b9:14:8c:fd:8e:
a0:8f:52:5f:36:75:66:46:77:db:c6:d6:02:ce:ec:
41:c4:90:06:bd:29:5c:2c:50:85:75:1d:44:7d:c8:
94:97:41:da:e7:80:25:92:c3:42:38:1d:f4:4c:c1:
8b:48:5a:44:3c:b5:09:51:63:0e:5b:4e:d4:57:32:
b1:2b:b5:4e:6e:b1:35:f3:c1:66:90:81:5e:e1:98:
42:ee:10:4a:ef:32:1d:d1:f1:e7:46:6d:08:e6:8d:
10:af:c8:89:1c:89:69:c3:c5:84:bf:73:72:d1:c4:
a0:f6:5d:5b:c8:59:72:c4:c3:88:09:18:d9:fe:de:
98:50:e0:73:44:7a:87:3a:9a:6b:40:45:e6:21:31:
45:82:ed:bc:f7:7a:e0:fc:47:0a:b4:78:7b:3e:eb:
5c:7e:72:9a:5c:23:e6:ee:48:aa:d9:63:25:7d:aa:
6b:d8:44:14:b4:54:f0:88:67:7b:bf:02:ff:b0:74:
45:38:7f:47:9f:4a:02:77:27:22:f3:d5:0d:ab:31:
4d:a4:cd:87:92:a3:b6:b5:c9:86:f1:54:13:f2:dd:
c8:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:B1:5D:61:55:30:77:98:F9:F0:15:9B:18:E9:95:AB:26:C0:EE:73
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EB874F50543711F19BD5F6FACE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.247.36.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:ad:09:f5:35:9a:35:05:56:75:6f:60:1a:28:0d:e1:8f:c1:
17:41:fb:58:e7:28:5a:f5:dc:6e:ba:5e:73:bf:4b:3e:90:97:
3b:16:c4:0c:7c:87:28:11:8e:23:6c:6a:2b:6b:5f:c1:ac:e1:
2e:55:7f:14:88:33:7e:8e:a5:2f:43:69:90:64:4a:d9:1b:32:
ed:fe:73:e0:07:50:d3:cf:e2:50:93:30:d1:db:cc:d9:29:f5:
a2:83:3a:b6:78:04:23:b9:1f:39:0f:2d:0b:37:7b:9a:cf:21:
29:11:02:00:9f:a5:be:6c:de:76:0a:32:44:20:14:1a:61:0b:
8d:47:3f:7c:61:75:da:12:78:30:0b:8e:0c:63:58:d6:12:c0:
4a:a5:19:b6:3d:14:e4:16:e2:dd:bf:40:1e:0e:be:b6:80:01:
a5:34:17:13:c0:76:5b:95:cc:a3:1b:28:c9:18:82:fc:f9:0f:
71:aa:71:4f:e2:1d:a3:29:c8:2c:03:66:16:cd:52:9a:ab:2e:
b6:aa:b0:14:e2:5d:28:75:65:11:7a:d2:ae:d2:5a:b7:77:05:
8a:47:b0:4b:d8:4f:25:c7:4c:3c:f6:09:1c:ec:42:4a:b0:d0:
85:26:f1:96:ad:4a:08:a3:56:4d:99:a5:4c:e1:75:e7:fd:18:
19:3a:8a:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 2 21:07:00 2026 by rpki-client