Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EC1DC648695311F18F481AE1CE1D38B0.roa
File: EC1DC648695311F18F481AE1CE1D38B0.roa (raw, json)
Hash identifier: O/bQ70cAYeK31b/+pzOxZEiDeBRP97NB/a+ewXxSmNY=
Subject key identifier: 41:35:E2:E1:3C:2A:E9:F6:D2:2F:10:94:27:54:0F:D4:8D:0F:85:92
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01BDE0
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EC1DC648695311F18F481AE1CE1D38B0.roa
Signing time: Tue 16 Jun 2026 07:20:59 +0000
ROA not before: Tue 16 Jun 2026 07:20:55 +0000
ROA not after: Wed 22 Jul 2026 07:20:55 +0000
asID: 395886
IP address blocks: 156.233.224.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 00:26:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114144 (0x1bde0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Jun 16 07:20:55 2026 GMT
Not After : Jul 22 07:20:55 2026 GMT
Subject: CN=6a30f95b-048f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:06:59:4d:3f:39:b0:78:bd:c6:d0:ca:08:2c:
68:c7:04:f8:11:03:e6:8d:c4:d7:f6:ff:62:f5:b7:
b8:d6:c7:24:d6:67:1a:b5:5e:8a:c8:13:68:3b:7a:
15:14:51:7e:25:23:97:8b:9c:07:b6:b0:e8:a7:2b:
2b:15:25:6b:f0:01:81:f1:22:df:b4:83:4c:af:8f:
69:80:c8:02:da:af:c4:86:67:e0:60:11:53:c6:f6:
60:4f:28:0e:0f:93:4e:73:fa:5f:6c:38:51:b8:bb:
e5:83:b3:6f:51:b7:bc:6c:55:17:6e:28:85:a5:e4:
7a:86:cb:fe:30:af:91:87:0a:80:46:45:5f:62:79:
2f:60:32:34:22:29:99:41:ab:6a:92:ee:64:4d:34:
6d:af:1e:74:38:6c:76:1e:4b:aa:2e:b5:43:5d:f5:
9b:1e:5f:5c:b8:c4:a9:18:7a:b2:39:29:eb:30:18:
14:04:30:f2:5d:41:bf:86:f7:48:b2:75:84:27:ae:
f7:c8:b6:45:1b:65:1b:d7:cc:54:a4:48:7a:c8:b5:
63:ad:ee:b3:d4:8c:c6:5c:4a:a7:2d:05:77:3a:c9:
6d:ee:91:b6:76:6c:a3:ec:6d:d1:5e:aa:e2:3d:ef:
9a:d1:98:a0:01:1a:d1:7d:eb:af:a8:6e:f3:6f:00:
14:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:35:E2:E1:3C:2A:E9:F6:D2:2F:10:94:27:54:0F:D4:8D:0F:85:92
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/EC1DC648695311F18F481AE1CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.233.224.0/20
Signature Algorithm: sha256WithRSAEncryption
31:2d:51:f7:2c:bb:88:87:34:e4:83:b2:72:56:48:30:f9:ea:
0a:5a:46:c9:0d:93:0e:c7:62:c4:bc:a5:8b:41:aa:43:a7:0f:
f1:07:57:c7:10:eb:5e:37:2a:c0:13:6a:f0:bd:79:e5:7b:5d:
ec:37:17:10:25:25:5f:57:55:79:1c:8a:e9:77:c1:91:99:df:
bf:d0:4a:1a:22:6e:61:b5:e6:c9:85:d5:35:f3:e9:be:e9:a0:
45:50:3d:b1:88:e4:b4:9c:c5:e5:e0:72:15:ed:8e:3a:a1:d2:
7a:bd:60:32:08:32:6a:33:8c:e5:1f:99:35:75:76:0e:7e:6e:
27:3c:60:dc:30:1e:ef:7f:03:df:60:41:62:8b:19:bb:b9:a5:
51:df:41:13:65:b1:2d:17:74:35:8c:db:ed:a8:2f:87:78:6f:
16:45:0f:90:db:96:02:d9:47:aa:21:e4:8e:91:34:9d:2d:31:
a9:27:ff:43:60:e2:d0:4c:fd:94:3a:b1:bd:eb:93:55:54:5b:
71:3a:9c:62:6b:02:24:a7:50:0a:4e:ed:70:f9:9d:f5:ef:9d:
2a:ba:4b:38:8f:f5:65:4f:5f:c6:ab:c8:b6:eb:36:b8:c2:b0:
67:d9:5d:6a:d6:0e:cf:b1:37:00:c8:96:b8:39:b9:e0:30:49:
09:e8:fb:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 20:00:18 2026 by rpki-client