Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367FECC/511FD0D0EA3E11EBA62EAE39D8A014CE/5EB5D86A2CDE11F1BF05D1ABDAE4EC9C.roa
File: 5EB5D86A2CDE11F1BF05D1ABDAE4EC9C.roa (raw, json)
Hash identifier: KOo/Y7Wbydmp6an7q9BE0iI14LAf6ueJHOt1hZH6/Is=
Subject key identifier: 37:74:78:9B:59:87:BC:A8:6B:AB:05:79:B5:DC:6B:9E:27:B1:61:53
Certificate issuer: /CN=F367FECCAR/serialNumber=7088ECB52F441CB541291AD20C8BA907BBD44052
Certificate serial: 06E4
Authority key identifier: 70:88:EC:B5:2F:44:1C:B5:41:29:1A:D2:0C:8B:A9:07:BB:D4:40:52
Authority info access: rsync://rpki.afrinic.net/repository/arin/cIjstS9EHLVBKRrSDIupB7vUQFI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367FECC/511FD0D0EA3E11EBA62EAE39D8A014CE/5EB5D86A2CDE11F1BF05D1ABDAE4EC9C.roa
Signing time: Tue 31 Mar 2026 08:48:21 +0000
ROA not before: Tue 31 Mar 2026 08:48:17 +0000
ROA not after: Mon 31 Mar 2036 08:48:17 +0000
asID: 328210
IP address blocks: 156.0.216.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367FECC/511FD0D0EA3E11EBA62EAE39D8A014CE/cIjstS9EHLVBKRrSDIupB7vUQFI.crl
rsync://rpki.afrinic.net/repository/member_repository/F367FECC/511FD0D0EA3E11EBA62EAE39D8A014CE/cIjstS9EHLVBKRrSDIupB7vUQFI.mft
rsync://rpki.afrinic.net/repository/arin/cIjstS9EHLVBKRrSDIupB7vUQFI.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:26:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1764 (0x6e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367FECCAR, serialNumber=7088ECB52F441CB541291AD20C8BA907BBD44052
Validity
Not Before: Mar 31 08:48:17 2026 GMT
Not After : Mar 31 08:48:17 2036 GMT
Subject: CN=69cb8a55-b2fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:74:0b:b0:86:f0:5d:50:d0:4a:6d:87:54:4a:
56:33:15:7c:de:c7:02:84:83:0c:af:75:5d:62:f8:
31:ad:79:0b:ab:67:e4:62:62:a2:e5:f6:05:bf:a2:
e0:d4:b6:b4:a4:c9:ae:0e:b0:4f:39:c1:64:39:da:
ac:e1:a8:2b:ae:9f:6e:8d:ea:5d:7c:b6:ba:b4:f6:
69:14:95:30:30:da:31:39:43:4f:95:f2:54:b5:64:
38:6b:bd:36:ee:54:03:28:06:71:bd:6d:75:6d:ca:
bf:22:1f:8e:d0:59:2a:7d:0c:ec:d8:cf:4d:b5:de:
64:95:b5:85:52:50:93:0e:67:b6:ef:99:a3:e8:e2:
f8:39:0e:66:29:cd:dc:93:3f:0b:66:00:67:c1:f0:
e8:ab:55:ce:e8:91:da:5b:f9:eb:79:f2:7f:32:81:
42:b0:e0:86:e3:85:8f:86:c6:12:c5:bc:91:2a:38:
ac:47:7b:85:29:cc:38:9a:80:7e:6d:42:da:34:71:
1b:92:96:f8:c6:01:aa:37:30:d6:01:bc:10:c3:09:
58:f8:21:97:e8:55:e8:10:d8:9e:2e:16:56:60:f0:
90:62:92:3b:65:d7:17:87:ed:b8:e3:05:0a:f7:80:
d2:5c:72:c6:cd:d9:8d:2b:54:35:b9:7a:c4:27:5c:
2e:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:74:78:9B:59:87:BC:A8:6B:AB:05:79:B5:DC:6B:9E:27:B1:61:53
X509v3 Authority Key Identifier:
keyid:70:88:EC:B5:2F:44:1C:B5:41:29:1A:D2:0C:8B:A9:07:BB:D4:40:52
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367FECC/511FD0D0EA3E11EBA62EAE39D8A014CE/cIjstS9EHLVBKRrSDIupB7vUQFI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/cIjstS9EHLVBKRrSDIupB7vUQFI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367FECC/511FD0D0EA3E11EBA62EAE39D8A014CE/5EB5D86A2CDE11F1BF05D1ABDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.0.216.0/22
Signature Algorithm: sha256WithRSAEncryption
1c:24:84:1e:2f:73:29:bf:37:3e:cf:a2:04:8e:4b:20:85:df:
71:c0:3b:c9:59:69:17:cf:8d:e7:dd:c9:b0:50:c3:ab:96:33:
f2:96:33:69:b5:59:ee:30:f0:0e:83:38:c9:69:60:e6:87:54:
4a:09:28:36:04:6c:24:2c:2c:74:71:12:a4:6d:cc:fe:d1:79:
1b:a4:63:61:2f:27:0c:e9:d4:9f:4d:49:cb:8f:25:e0:60:29:
fe:ff:a8:03:2b:2d:74:71:55:82:4e:75:f5:97:29:de:f4:67:
35:e7:d7:2f:80:cc:4a:0c:4a:40:fd:57:5f:de:78:95:97:82:
e0:09:08:af:91:49:47:98:e6:93:50:4b:78:e9:4c:21:d0:37:
ff:7d:dc:56:58:b2:4f:f9:b8:8d:0e:f1:30:8d:45:34:63:29:
87:c0:e1:e8:00:04:04:8f:ce:af:83:82:3c:32:cf:f1:aa:62:
3f:cb:15:61:7b:64:27:87:06:61:a4:3e:45:de:07:12:60:64:
27:da:af:ce:12:34:61:3e:73:af:8d:d9:d2:59:16:71:4a:9c:
49:74:74:27:13:26:8e:bd:86:83:6a:b6:c7:76:82:dd:d3:8f:
13:49:71:1d:b2:42:d2:96:a4:21:95:7c:e2:40:bf:ec:7a:a6:
17:83:cd:bb
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICBuQwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
N0ZFQ0NBUjExMC8GA1UEBRMoNzA4OEVDQjUyRjQ0MUNCNTQxMjkxQUQyMEM4QkE5
MDdCQkQ0NDA1MjAeFw0yNjAzMzEwODQ4MTdaFw0zNjAzMzEwODQ4MTdaMBgxFjAU
BgNVBAMTDTY5Y2I4YTU1LWIyZmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDmdAuwhvBdUNBKbYdUSlYzFXzexwKEgwyvdV1i+DGteQurZ+RiYqLl9gW/
ouDUtrSkya4OsE85wWQ52qzhqCuun26N6l18trq09mkUlTAw2jE5Q0+V8lS1ZDhr
vTbuVAMoBnG9bXVtyr8iH47QWSp9DOzYz0213mSVtYVSUJMOZ7bvmaPo4vg5DmYp
zdyTPwtmAGfB8OirVc7okdpb+et58n8ygUKw4IbjhY+GxhLFvJEqOKxHe4UpzDia
gH5tQto0cRuSlvjGAao3MNYBvBDDCVj4IZfoVegQ2J4uFlZg8JBikjtl1xeH7bjj
BQr3gNJccsbN2Y0rVDW5esQnXC6RAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQUN3R4
m1mHvKhrqwV5tdxrniexYVMwHwYDVR0jBBgwFoAUcIjstS9EHLVBKRrSDIupB7vU
QFIwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjdGRUNDLzUxMUZEMEQwRUEzRTExRUJBNjJFQUUzOUQ4QTAxNENFL2NJanN0
UzlFSExWQktSclNESXVwQjd2VVFGSS5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2NJanN0UzlFSExWQktSclNESXVwQjd2VVFGSS5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjdGRUNDLzUxMUZEMEQwRUEzRTExRUJBNjJFQUUzOUQ4QTAx
NENFLzVFQjVEODZBMkNERTExRjFCRjA1RDFBQkRBRTRFQzlDLnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAKcANgwDQYJKoZIhvcNAQELBQAD
ggEBABwkhB4vcym/Nz7PogSOSyCF33HAO8lZaRfPjefdybBQw6uWM/KWM2m1We4w
8A6DOMlpYOaHVEoJKDYEbCQsLHRxEqRtzP7ReRukY2EvJwzp1J9NScuPJeBgKf7/
qAMrLXRxVYJOdfWXKd70ZzXn1y+AzEoMSkD9V1/eeJWXguAJCK+RSUeY5pNQS3jp
TCHQN/993FZYsk/5uI0O8TCNRTRjKYfA4egABASPzq+Dgjwyz/GqYj/LFWF7ZCeH
BmGkPkXeBxJgZCfar84SNGE+c6+N2dJZFnFKnEl0dCcTJo69hoNqtsd2gt3TjxNJ
cR2yQtKWpCGVfOJAv+x6pheDzbs=
-----END CERTIFICATE-----
Generated at Fri Apr 17 13:27:52 2026 by rpki-client