Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367FECC/511FD0D0EA3E11EBA62EAE39D8A014CE/C0A771882CDD11F1B650E2A7DAE4EC9C.roa
File: C0A771882CDD11F1B650E2A7DAE4EC9C.roa (raw, json)
Hash identifier: CKEp1S+fF/YhW86kKOtc+qToTDiDcurFzBgPAdbR8qE=
Subject key identifier: 4F:62:92:D0:66:56:6C:37:8D:3A:2A:90:B3:7E:46:1B:AF:B8:71:3D
Certificate issuer: /CN=F367FECCAR/serialNumber=7088ECB52F441CB541291AD20C8BA907BBD44052
Certificate serial: 06E2
Authority key identifier: 70:88:EC:B5:2F:44:1C:B5:41:29:1A:D2:0C:8B:A9:07:BB:D4:40:52
Authority info access: rsync://rpki.afrinic.net/repository/arin/cIjstS9EHLVBKRrSDIupB7vUQFI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367FECC/511FD0D0EA3E11EBA62EAE39D8A014CE/C0A771882CDD11F1B650E2A7DAE4EC9C.roa
Signing time: Tue 31 Mar 2026 08:43:56 +0000
ROA not before: Tue 31 Mar 2026 08:43:51 +0000
ROA not after: Mon 31 Mar 2036 08:43:51 +0000
asID: 328210
IP address blocks: 156.0.216.0/22 maxlen: 22
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F367FECC/511FD0D0EA3E11EBA62EAE39D8A014CE/cIjstS9EHLVBKRrSDIupB7vUQFI.crl
rsync://rpki.afrinic.net/repository/member_repository/F367FECC/511FD0D0EA3E11EBA62EAE39D8A014CE/cIjstS9EHLVBKRrSDIupB7vUQFI.mft
rsync://rpki.afrinic.net/repository/arin/cIjstS9EHLVBKRrSDIupB7vUQFI.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:26:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1762 (0x6e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367FECCAR, serialNumber=7088ECB52F441CB541291AD20C8BA907BBD44052
Validity
Not Before: Mar 31 08:43:51 2026 GMT
Not After : Mar 31 08:43:51 2036 GMT
Subject: CN=69cb894c-e4bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:50:8c:c6:f4:31:52:18:4e:07:74:cb:55:01:
19:7e:91:71:3e:2a:d9:13:ee:df:eb:61:20:11:d6:
e3:44:f4:7e:38:f4:5c:d2:97:e0:d1:10:cf:a9:f7:
14:44:32:91:18:c1:9b:3c:60:55:64:47:36:42:fb:
83:4f:6f:b3:dd:af:da:bb:ec:90:16:62:bd:d2:6d:
47:ef:fd:91:0c:0c:f3:23:f6:7e:78:8a:73:17:99:
e9:2b:9a:dc:a5:9b:ea:b5:94:8b:15:a0:c0:4e:b5:
03:f9:d8:dd:34:88:e0:16:05:9f:5d:de:32:2b:8d:
08:3e:e3:8f:ff:79:49:f2:fd:75:c4:4d:1b:56:80:
db:b8:a8:5c:e8:0b:6f:31:98:9b:e8:98:ea:10:27:
45:8b:83:34:ac:d1:36:e4:54:9b:9a:7b:33:d8:33:
48:ab:75:61:d3:eb:b7:f5:94:d7:5b:80:ad:72:b5:
54:b9:6c:1b:0b:52:56:1b:a8:d1:7c:a1:10:74:de:
f0:98:e7:90:9d:2f:3a:73:06:3a:2e:0d:e5:52:06:
aa:59:8d:d1:12:62:42:b9:b1:b8:c6:9b:ff:5e:e0:
6c:41:56:00:e8:10:f7:60:d1:a8:25:ee:2c:34:9c:
23:0c:a8:a0:6b:81:57:c7:fa:38:e9:a9:2b:b9:b7:
fb:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:62:92:D0:66:56:6C:37:8D:3A:2A:90:B3:7E:46:1B:AF:B8:71:3D
X509v3 Authority Key Identifier:
keyid:70:88:EC:B5:2F:44:1C:B5:41:29:1A:D2:0C:8B:A9:07:BB:D4:40:52
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367FECC/511FD0D0EA3E11EBA62EAE39D8A014CE/cIjstS9EHLVBKRrSDIupB7vUQFI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/cIjstS9EHLVBKRrSDIupB7vUQFI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367FECC/511FD0D0EA3E11EBA62EAE39D8A014CE/C0A771882CDD11F1B650E2A7DAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.0.216.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:4c:67:71:b0:92:48:c1:17:03:a3:63:2e:3f:f1:6c:12:a6:
21:1d:5f:4c:8d:41:be:65:d8:34:28:52:e4:44:5d:6e:43:a8:
ac:bd:18:bf:7f:59:7b:c6:9e:85:90:e5:2f:97:51:d8:78:60:
21:e4:a1:fb:d7:5f:4b:22:53:c7:b1:e5:26:01:1d:44:e7:9a:
f9:0f:a5:c2:3e:f9:15:61:13:c0:0a:63:66:8e:17:c7:5c:ad:
91:d4:24:07:39:30:37:e6:e3:c2:66:69:62:c1:9f:44:a5:08:
ac:df:6b:17:90:e2:5c:b9:26:f4:56:89:41:8a:f1:e3:1c:ce:
ed:ba:21:da:0d:18:2a:a4:58:a8:bc:45:10:5d:4f:a6:98:5d:
82:66:a2:33:f4:27:cd:6f:36:cd:29:bc:b0:7a:dc:d5:b1:7d:
e3:a1:78:3f:43:b4:9e:2c:84:a8:db:8c:68:17:05:40:2c:76:
ec:93:5e:4d:e9:f0:16:b5:9e:0b:79:e9:ca:63:5c:5e:e2:a6:
8d:72:c5:e3:4c:b1:8a:eb:63:32:42:5a:e9:4c:ee:58:7d:fb:
c1:03:7d:42:83:96:89:77:a5:dd:8f:96:5a:d0:4d:e6:3b:f9:
eb:71:1d:d0:af:11:e9:cd:4a:6c:93:76:5d:4c:bf:4f:5c:71:
b9:cc:1d:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:27:58 2026 by rpki-client