Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3651254/CD02A612C85311E69198EA57F8AEA228/1F692D645D9011F1A42A5FE1CE1D38B0.roa
File: 1F692D645D9011F1A42A5FE1CE1D38B0.roa (raw, json)
Hash identifier: uxAtL7RSV0BjHxdvqeNpVW2xDoTXmaoYGo4ecxWsfYg=
Subject key identifier: 39:8C:4C:83:F9:DE:31:0D:2B:99:CF:F7:48:4D:D1:8F:4D:8D:FD:A9
Certificate issuer: /CN=F3651254AR/serialNumber=1D43E41D01CF85FF940F6606E1646147D8728B28
Certificate serial: 0DCB
Authority key identifier: 1D:43:E4:1D:01:CF:85:FF:94:0F:66:06:E1:64:61:47:D8:72:8B:28
Authority info access: rsync://rpki.afrinic.net/repository/arin/HUPkHQHPhf-UD2YG4WRhR9hyiyg.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3651254/CD02A612C85311E69198EA57F8AEA228/1F692D645D9011F1A42A5FE1CE1D38B0.roa
Signing time: Mon 01 Jun 2026 08:01:41 +0000
ROA not before: Mon 01 Jun 2026 08:01:37 +0000
ROA not after: Sun 01 Jun 2036 08:01:37 +0000
asID: 37670
IP address blocks: 164.160.72.0/21 maxlen: 24
164.160.72.0/24 maxlen: 24
164.160.73.0/24 maxlen: 24
164.160.74.0/24 maxlen: 24
164.160.75.0/24 maxlen: 24
164.160.76.0/24 maxlen: 24
164.160.77.0/24 maxlen: 24
164.160.78.0/24 maxlen: 24
164.160.79.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F3651254/CD02A612C85311E69198EA57F8AEA228/HUPkHQHPhf-UD2YG4WRhR9hyiyg.crl
rsync://rpki.afrinic.net/repository/member_repository/F3651254/CD02A612C85311E69198EA57F8AEA228/HUPkHQHPhf-UD2YG4WRhR9hyiyg.mft
rsync://rpki.afrinic.net/repository/arin/HUPkHQHPhf-UD2YG4WRhR9hyiyg.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:26:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3531 (0xdcb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3651254AR, serialNumber=1D43E41D01CF85FF940F6606E1646147D8728B28
Validity
Not Before: Jun 1 08:01:37 2026 GMT
Not After : Jun 1 08:01:37 2036 GMT
Subject: CN=6a1d3c65-75b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:3f:ba:0a:01:d8:c1:8e:3b:7f:a8:ff:cc:17:
46:48:87:44:f5:f6:cd:54:7a:8b:e4:7e:8d:9d:35:
04:fd:9b:ae:cd:b2:2d:2b:43:0a:e0:c0:2f:ac:ec:
3c:ba:3e:f7:0e:6a:f8:00:bd:1f:e6:c9:d3:2a:6b:
bf:ca:61:5b:c5:0e:95:c6:7d:cd:fe:27:78:38:4a:
61:93:2a:d6:e1:42:07:d4:c1:d4:f0:60:05:87:72:
c8:81:83:78:05:6a:27:44:c9:d9:8a:99:0b:61:bc:
cb:c4:09:17:2d:a0:1c:b1:74:2f:84:69:a6:a9:a5:
4d:db:f1:80:0f:9a:1f:38:d5:45:93:81:bf:e0:bd:
f9:66:a2:27:6d:78:a3:80:97:15:a0:57:32:29:fa:
e4:30:6f:55:e7:23:10:85:b7:71:48:2b:39:11:90:
99:01:b6:e9:0c:4a:2e:17:1d:36:26:1f:45:10:a1:
7a:1b:0c:66:6c:17:13:de:39:b1:9a:7e:9d:dc:d4:
e7:24:38:ab:26:b2:7e:bf:20:49:9c:cd:fd:7c:ae:
00:6f:74:dc:f7:e0:2f:d8:89:88:2d:fa:ad:5c:34:
51:e1:90:bd:f8:80:df:32:17:a2:b6:0f:ff:35:c2:
ba:84:06:6a:56:4f:df:cf:f6:cb:16:31:76:8b:3e:
ac:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:8C:4C:83:F9:DE:31:0D:2B:99:CF:F7:48:4D:D1:8F:4D:8D:FD:A9
X509v3 Authority Key Identifier:
keyid:1D:43:E4:1D:01:CF:85:FF:94:0F:66:06:E1:64:61:47:D8:72:8B:28
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3651254/CD02A612C85311E69198EA57F8AEA228/HUPkHQHPhf-UD2YG4WRhR9hyiyg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/HUPkHQHPhf-UD2YG4WRhR9hyiyg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3651254/CD02A612C85311E69198EA57F8AEA228/1F692D645D9011F1A42A5FE1CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
164.160.72.0/21
Signature Algorithm: sha256WithRSAEncryption
98:54:80:13:14:b3:f7:0a:6e:a3:26:e4:c0:db:19:5d:d5:3e:
5e:be:91:3e:49:3e:ac:0b:a5:17:0d:3d:0d:22:02:03:94:de:
ce:d6:26:d5:d1:8c:1a:86:26:7c:b9:e7:22:9e:57:6b:66:79:
ba:6a:78:8e:8d:54:38:3e:67:08:4c:2b:b6:dd:32:03:09:b6:
8e:a6:a0:22:15:ef:ab:78:1c:32:f9:bc:7e:63:98:9f:df:1d:
9c:a7:e8:18:80:fb:d8:01:25:f3:be:a1:47:25:1a:1c:2a:48:
8f:07:ba:72:eb:f0:59:f0:fb:20:12:02:dd:9f:5f:ed:db:f6:
f5:a4:47:12:e1:df:10:1b:f5:2b:24:54:8d:99:af:6e:30:5c:
16:98:d3:3c:ae:a6:d9:4d:6e:c3:62:d6:21:56:62:34:28:4d:
56:97:fd:17:8a:18:8b:3e:5e:28:b8:ec:3a:5b:10:2f:ad:08:
90:3c:aa:9c:68:8d:75:9c:6e:a4:2b:63:58:3b:64:78:2a:4c:
82:31:6a:2f:8d:d2:70:e0:56:4c:52:ab:37:27:2d:dc:2f:39:
78:ed:6f:c3:69:28:c4:fe:db:a7:35:2b:f9:d9:f5:61:4d:84:
87:e7:33:a9:d4:44:d8:4a:f0:7b:f7:db:5c:a7:a6:4c:54:ab:
21:2c:30:90
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICDcswDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
NTEyNTRBUjExMC8GA1UEBRMoMUQ0M0U0MUQwMUNGODVGRjk0MEY2NjA2RTE2NDYx
NDdEODcyOEIyODAeFw0yNjA2MDEwODAxMzdaFw0zNjA2MDEwODAxMzdaMBgxFjAU
BgNVBAMTDTZhMWQzYzY1LTc1YjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDWP7oKAdjBjjt/qP/MF0ZIh0T19s1Ueovkfo2dNQT9m67Nsi0rQwrgwC+s
7Dy6PvcOavgAvR/mydMqa7/KYVvFDpXGfc3+J3g4SmGTKtbhQgfUwdTwYAWHcsiB
g3gFaidEydmKmQthvMvECRctoByxdC+EaaappU3b8YAPmh841UWTgb/gvflmoidt
eKOAlxWgVzIp+uQwb1XnIxCFt3FIKzkRkJkBtukMSi4XHTYmH0UQoXobDGZsFxPe
ObGafp3c1OckOKsmsn6/IEmczf18rgBvdNz34C/YiYgt+q1cNFHhkL34gN8yF6K2
D/81wrqEBmpWT9/P9ssWMXaLPqw3AgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUOYxM
g/neMQ0rmc/3SE3Rj02N/akwHwYDVR0jBBgwFoAUHUPkHQHPhf+UD2YG4WRhR9hy
iygwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjUxMjU0L0NEMDJBNjEyQzg1MzExRTY5MTk4RUE1N0Y4QUVBMjI4L0hVUGtI
UUhQaGYtVUQyWUc0V1JoUjloeWl5Zy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L0hVUGtIUUhQaGYtVUQyWUc0V1JoUjloeWl5Zy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjUxMjU0L0NEMDJBNjEyQzg1MzExRTY5MTk4RUE1N0Y4QUVB
MjI4LzFGNjkyRDY0NUQ5MDExRjFBNDJBNUZFMUNFMUQzOEIwLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAOkoEgwDQYJKoZIhvcNAQELBQAD
ggEBAJhUgBMUs/cKbqMm5MDbGV3VPl6+kT5JPqwLpRcNPQ0iAgOU3s7WJtXRjBqG
Jny55yKeV2tmebpqeI6NVDg+ZwhMK7bdMgMJto6moCIV76t4HDL5vH5jmJ/fHZyn
6BiA+9gBJfO+oUclGhwqSI8HunLr8Fnw+yASAt2fX+3b9vWkRxLh3xAb9SskVI2Z
r24wXBaY0zyuptlNbsNi1iFWYjQoTVaX/ReKGIs+Xii47DpbEC+tCJA8qpxojXWc
bqQrY1g7ZHgqTIIxai+N0nDgVkxSqzcnLdwvOXjtb8NpKMT+26c1K/nZ9WFNhIfn
M6nURNhK8Hv321ynpkxUqyEsMJA=
-----END CERTIFICATE-----
Generated at Sat Jun 13 23:04:30 2026 by rpki-client