Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/480D1A942AE811F1B42DB3EFDAE4EC9C.roa
File: 480D1A942AE811F1B42DB3EFDAE4EC9C.roa (raw, json)
Hash identifier: ApY6excZzxX7IzAFRaTED4oW0uABZw0498Q1EfKwSVQ=
Subject key identifier: 19:A1:27:C0:68:8F:C2:41:19:AA:F8:BB:A2:77:42:CF:59:50:30:0F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 01A88F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/480D1A942AE811F1B42DB3EFDAE4EC9C.roa
Signing time: Sat 28 Mar 2026 20:54:16 +0000
ROA not before: Sat 28 Mar 2026 20:54:11 +0000
ROA not after: Fri 22 May 2026 20:54:11 +0000
asID: 401696
IP address blocks: 156.225.16.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 19 Apr 2026 00:26:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108687 (0x1a88f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Mar 28 20:54:11 2026 GMT
Not After : May 22 20:54:11 2026 GMT
Subject: CN=69c83ff8-a96c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:6c:69:bb:0f:98:ac:dc:14:9f:84:0c:5b:36:
e0:bc:cd:7f:e5:ef:35:25:d1:89:02:5a:15:12:21:
ff:7f:dc:95:78:28:c1:60:9f:cc:2a:3e:51:9b:24:
26:7f:78:1e:31:0c:f8:0a:28:ef:80:47:45:30:06:
67:a7:88:1c:38:b9:3b:4d:29:3a:c9:8b:65:42:a6:
53:75:fa:ed:d1:e0:4d:85:53:e4:55:a0:f4:94:9f:
4c:37:71:31:53:6b:ab:0f:9d:e4:74:02:ab:19:6f:
71:9e:97:e4:4c:f5:9b:04:eb:4f:e9:e6:27:85:34:
0b:0d:78:20:b0:d8:f2:0d:0f:6a:43:b1:1a:9d:e7:
e2:45:06:ed:c4:b8:8a:b3:dc:7a:e7:e4:f7:fd:ed:
eb:9a:ac:0c:17:3c:80:2c:50:db:1f:a0:33:7c:83:
18:1d:2e:9a:b1:12:bb:be:a3:d2:e3:61:ea:59:b5:
3f:a2:a6:2e:26:07:75:3e:a5:c8:1a:82:d7:d2:26:
29:8b:8d:62:1c:21:5c:46:82:19:1d:31:bd:c0:9a:
7e:32:d1:9f:1c:a2:4c:fc:b4:22:43:86:a7:e3:d6:
67:ca:95:a3:94:46:70:c2:1f:3b:e0:72:1d:33:d9:
29:56:40:4d:b8:3b:1e:a3:28:59:09:40:83:e0:81:
b0:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:A1:27:C0:68:8F:C2:41:19:AA:F8:BB:A2:77:42:CF:59:50:30:0F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/480D1A942AE811F1B42DB3EFDAE4EC9C.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.225.16.0/20
Signature Algorithm: sha256WithRSAEncryption
25:70:22:d2:4b:ec:c2:f3:58:e5:b0:6e:f0:ca:41:40:e8:3f:
85:12:01:40:ec:fd:42:c3:42:ce:8d:3c:c4:7f:d5:c6:96:50:
b7:3a:2d:c5:4f:2f:72:3d:82:e0:c7:35:1f:b9:fd:13:43:be:
f5:bd:08:91:33:64:6b:85:c6:ac:da:17:cc:58:b9:33:c7:10:
09:ad:0a:ce:fd:70:63:6c:ec:4f:23:be:58:59:ef:6e:5d:b4:
aa:c3:2b:a8:18:e9:e8:ae:65:5d:d3:52:2f:ab:3d:bf:92:ac:
5a:8b:3a:62:bb:35:d5:1d:05:b8:c8:d3:bc:94:fc:91:89:e4:
b9:32:2f:7f:93:aa:9e:9c:a8:8f:d6:db:01:eb:84:ce:e7:ba:
4e:ec:ac:49:8c:cd:eb:a6:2c:86:24:ef:01:b1:96:39:0a:cd:
e1:38:82:81:b2:93:82:45:ec:57:e3:c5:79:37:ec:78:23:28:
31:be:59:78:f5:5b:90:19:de:ef:ff:f0:27:00:dd:7b:67:f3:
0f:91:6a:42:9c:cf:5b:c7:15:84:6e:be:45:c2:5d:06:77:3d:
e8:c8:12:86:b1:96:c4:69:ae:d8:87:cf:75:fc:d0:c3:b3:ed:
df:b6:a7:f6:aa:b5:9c:b2:db:4d:e1:ad:21:2a:30:27:59:27:
53:aa:a0:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 15:34:22 2026 by rpki-client